|Paul Walker on 27 Aug 2015 09:01:12 -0700|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|Re: [PLUG] Automatic provisioning of highly secure linux environments|
-----BEGIN PGP SIGNED MESSAGE-----
On 08/27/2015 10:58 AM, Paul Walker wrote:
> This is a pretty broad question, but there's a lot of talent on this
> list that I'd like to hear from..
> Assuming that I need to set up an arbitrary number of server
> environments for serving web applications and would like to create a
> repeatable (scripted), highly secure process for doing so, I'm curious
> what people's go-to tools are and especially:
> • is anyone using 3rd-party / paid services that they are happy with
> that include system provisioning, monitoring, firewalls and other strong
> security measures
> • what software / frameworks do people use for deployment / provisioning
> / monitoring and security
> Any thoughts / feelings are greatly appreciated..
No matter what you pick, I highly recommend iPXE (and serving the iPXE
image via vanilla PXE). The menu system supports scripting (and can even
be php-driven), making it a large win.
That aside, I ask which distro because many support this as part of
their base install methods. CentOS/RHEL (and others- I think SUSE as
well?) supports kickstart, Debian and Ubuntu support preseeding. From
there, you can execute arbitrary commands and such as part of the
install process. I can provide further information and documentation
depending on which distro you're trying to operate on.
If you'd like some interactive help with this, ping me (r00t^2) in #plug
or #sysadministrivia on Freenode IRC.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
-----END PGP SIGNATURE-----
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug
___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug