On 2024-02-21, Andre Rodier wrote: > A few years ago, I created a set of Ansible scripts to code what I was already > doing manually, so I could rebuild my server from scratch.
What makes you chose ansible instead of a debian package applying your scripts and configurations? > - What is the best approach to check if there is any vulnerability in the > packages configuration ? > - Is there any service that could audit the deployment code or the > configuration files ? There is some debian packages for internal checks: rkhunter, tiger, lynis, checksecurity, john, etc Also OpenVAS https://openvas.org/ (fork from nessus) and other tools in Kali Linux (debian-based)
