Skip to content
This repository has been archived by the owner on Feb 3, 2023. It is now read-only.

Latest commit

 

History

History
22 lines (14 loc) · 948 Bytes

README.md

File metadata and controls

22 lines (14 loc) · 948 Bytes

mwser-base

A re-write of ucla/chef-ectg.

Supported Platforms

CentOS 6.x Ubuntu 12.04, 14.04

Usage

Most likely, you'll just want to scan through the 100 or so lines in the default recipe to see exactly what is being done. A few notes on quirky things are below though:

  • Applies mwser-iptables::sshd to all hosts except those noted (ucnext hosts). This is generally acceptable since we don't want to allow SSH outside the UCLA network unless needed.
  • SELinux is set to permissive mode. A historical necessity that I haven't had the opportunity to fix/test.
  • Manages users. See ucla/chef-mwser-data_bags for the user list
  • Manages sysadmin group and provides full sudo access to this group.
  • Lines 75-87 (or so) provide an example for managing an additional user group and specific sudo privileges.

License and Authors

Author:: Steve Nolen ([email protected])