security

Learn how to use the "ansible-sign" command line utility to sign and verify using a GPG signature in your Ansible project and how to get started with Event-Driven Ansible and Ansible Rulebooks.

How to verify a GPG signature for an Ansible project signed with GPG using the ansible-sign command line utility.

How to sign an Ansible project using GPG and ansible-sign command line utility.

In this IT Ops session, you’ll learn how to use the "ansible-sign" command line utility to sign and verify using a GPG signature in your Ansible project.

How to use an Ansible Vault in an Ansible Playbook to store a password variable encrypted on disk.

How to decrypt an Ansible vault file using the ansible-vault command line utility.

How to store variables and files in an encrypted way using the ansible-vault command line utility.

How to automate the mitigation of Polkit Privilege Escalation — PWNKIT (CVE-2021–4034) on RedHat-like systems using the Ansible Playbook 1.0 published on RHSB-2022–001. Line by line comment and live demo on vulnerable Red Hat Enterprise Linux 8.5.

How to automate the configuration of Kernel Parameters (sysctl, sysfs, and hugepages) in RedHat-like Linux systems using Linux System Role "linux-system-role.kernel_settings" from Ansible Galaxy.

How to automate the Linux Kernel module loading of the "dummy" module with parameters on an example machine with Ansible.

How to automate the Vulnerability Scanner/Detector provided by Red Hat RHSB-2021–009 Log4Shell — Remote Code Execution — log4j (CVE-2021–44228) with Ansible Playbook. Installation of dependency, GPG key verification, Vulnerability Scanner/Detector run, and result display on target Linux machine.

How to automate the setting or verification of the Linux sysctl kernel parameter “vm.swappiness” to 5 with Ansible.