book

Security Automation with Ansible 2

by Akash Mahajan, MADHU AKULA

December 2017

Intermediate to advanced

364 pages

7h 30m

English

Packt Publishing

Read now

Unlock full access

Content preview from Security Automation with Ansible 2

Hardening WordPress

This includes basic checks for WordPress security misconfigurations. Some of them include:

Directory and file permissions:

    - name: update the file permissions      file:        path: "{{ WordPress_install_directory }}"        recurse: yes        owner: "{{ new_user_name }}"        group: www-data    - name: updating file and directory permissions      shell: "{{ item }}"      with_items:        - "find {{ WordPress_install_directory }} -type d -exec chmod         755 {} \;"        - "find {{ WordPress_install_directory }} -type f -exec chmod         644 {} \;"

Username and attachment enumeration blocking. The following code snippet is part of nginx's configuration:

    # Username enumeration block    if ($args ~ "^/?author=([0-9]*)"){        return 403;    }    # Attachment enumeration block if ($query_string ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Implementing DevOps with Ansible 2

Jonathan McAllister

Practical Ansible 2

Daniel Oh, James Freeman, Fabio Alessandro Locati

Learning Ansible 2 - Second Edition

Fabio Alessandro Locati

Practical Security Automation and Testing

Tony Hsiang-Chih Hsu

Publisher Resources

ISBN: 9781788394512Supplemental Content