Harden Debian based hosts.
cd terraform
terraform init
terraform plan
terraform apply
-
firewalld
- Install basic firewall -
ssh
- Secure SSH daemon:1.1. Disable root login
1.1. Disable passwords
1.1. Only allow user in group
ssh
-
Create
user
1.1.
sudo
- Install and allow users in groupadm
1.1. Create
user
in groupsadm
andssh
1.1. Add Public SSH key to
authorized_keys
-
unattend-updates
Install -
apt full-upgrade
cd ansible
ansible-playbook --ask-vault-pass linode.yml