Giter VIP home page Giter VIP logo

amazon-linux-cis's Introduction

amazon-linux-cis

CircleCI Codacy Badge

Bootstrap script for Amazon Linux to comply with CIS Amazon Linux Benchmark v2.0.0.

Usage

$ git clone [email protected]:nozaq/amazon-linux-cis.git .
$ python ./amazon-linux-cis

Available Arguments

Argument (default value) What it does
--time (169.254.169.123) Specify the upstream time server
--chrony boolean (true) Use chrony for time synchronization
--no-backup Automatic config backup is disabled
--clients comma seperate list Specify a comma separated list of hostnames and host IP addresses
-v --verbose Enable verbose logging of utility
--disable-tcp-wrappers Disable installation of TCP Wrappers package
--disable-pam Disable installation of TCP Wrappers package
--disable-iptables Disable the hardening of the PAM module
--disable-mount-options Disable replacing the default /etc/fstab mounting config file

Amazon Linux 2 Support

Although the differences between Amazon Linux and Amazon Linux 2 are extensive (listed here), the majority of the changes to reach CIS compliance for Amazon Linux 2 are minor. Here's the minimum required command line needed to install the hardening on Amazon Linux 2 instances.

python ./amazon-linux-cis --disable-mount-options

Tested Environments

  • Amazon Linux 2017.09
  • Amazon Linux AMI 2018.03.0 (HVM)
  • Amazon Linux 2 - 2017.12

amazon-linux-cis's People

Contributors

codacy-badger avatar nozaq avatar zenjabba avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.