Ansible Role for Linux hardening

If you treat security as the first-class citizen, this a go-to blog for implementing the CIS practices in your current environment.

\#Linux #CIS #Security #Opstree

[https://blog.opstree.com/2020/04/29/linux-os-hardening-cis-benchmarks/](https://blog.opstree.com/2020/04/29/linux-os-hardening-cis-benchmarks/)

https://redd.it/gau1va
@r_devops

Buildah, Dive, Skopeo: 3 Container Tools for building images on Kubernetes Cluster, with Gitlab CI

You don't need Docker (or any special rights) to build, test and promote container images on top of Kubernetes. In new video, I will show you 3 tools how to do it, with Gitlab CI: https://youtu.be/aViKsSEGwOc

https://redd.it/ib9do8
@r_devops

SaaS — Smokeping as a Service Tech Talk

Tech Talk I wrote and delivered about converting a legacy linux cluster service (smokeping) into a modern CI/CD bootstrapped, intuitive cloud app. I talk business drivers, linux tech, and devops automation. #Cloud #automation #linux

https://medium.com/faun/saas-smokeping-as-a-service-tech-talk-be2078861c2c

https://redd.it/lfflna
@r_devops

Podman 3 and Docker Compose - How Does the Dockerless Compose Work?

One of the main Podman 3 features is the support of Docker Compose. You can take any of your existing docker-compose.yml and just use it with Podman. In my new short video, I am showing how I moved from Docker to Podman in a real docker-composed application:


https://www.youtube.com/watch?v=15PFfjuxtvM

https://redd.it/nl9e8v
@r_devops

Create a symbolic link (also symlink or soft link) in Linux - Ansible module file

How to create an "example" symbolic link that references "/proc/cpuinfo" in Linux with Ansible. Simple Ansible code and verification included.

https://youtu.be/uZF671e924k

\#ansible #symlink #softlink #file #linux #filesystem

https://redd.it/rgkwhz
@r_devops

Vulnerability Scanner/Detector Log4Shell Remote Code Execution Log4j (CVE-2021–44228) — Ansible log4j-cve-2021–44228 How to automate the Vulnerability Scanner/Detector provided by Red Hat RHSB-2021–009 Log4Shell — Remote Code Execution — log4j (CVE-2021–44228) with Ansible Playbook.



https://youtu.be/YXKXQy66MAA

https://redd.it/rmfjog
@r_devops

Vulnerability Scanner/Detector Log4Shell Remote Code Execution Log4j (CVE-2021–44228) — Ansible log4j-cve-2021–44228 How to automate the Vulnerability Scanner/Detector provided by Red Hat RHSB-2021–009 Log4Shell — Remote Code Execution — log4j (CVE-2021–44228) with Ansible Playbook. Installation of



https://youtu.be/YXKXQy66MAA

https://redd.it/rmffwf
@r_devops

Spice up your old #Linux commands

Here are some of the modern alternatives to classic #Linux commands that you will love more:
- wget/curl -> HTTPie
- cat -> bat
- du -> ncdu
- df -> duf
- top -> htop
- find -> fd
- ls -> exa
- man -> tldr

Let's comment if you know some others.

(Taken from the Twitter post: https://twitter.com/rajkbnp/status/1480800872120696837)

https://redd.it/s17mbj
@r_devops

BunkerWeb - The open-source and next-gen Web Application Firewall (WAF)

BunkerWeb is a next-generation and open-source Web Application Firewall (WAF).

Being a full-featured web server (based on [NGINX](https://nginx.org/) under the hood), it will protect your web services to make them "secure by default". BunkerWeb integrates seamlessly into your existing environments ([Linux](https://docs.bunkerweb.io/1.5.9/integrations/?utm_campaign=self&utm_source=github#linux), [Docker](https://docs.bunkerweb.io/1.5.9/integrations/?utm_campaign=self&utm_source=github#docker), [Swarm](https://docs.bunkerweb.io/1.5.9/integrations/?utm_campaign=self&utm_source=github#swarm), [Kubernetes](https://docs.bunkerweb.io/1.5.9/integrations/?utm_campaign=self&utm_source=github#kubernetes), …) and is fully configurable (don't panic, there is an [awesome web UI](https://docs.bunkerweb.io/1.5.9/web-ui/?utm_campaign=self&utm_source=github) if you don't like the CLI) to meet your own use-cases . In other words, cybersecurity is no more a hassle.

BunkerWeb contains primary [security features](https://docs.bunkerweb.io/1.5.9/security-tuning/?utm_campaign=self&utm_source=github) as part of the core but can be easily extended with additional ones thanks to a [plugin system](https://docs.bunkerweb.io/1.5.9/plugins/?utm_campaign=self&utm_source=github).


Links :

* Website : [https://www.bunkerweb.io](https://www.bunkerweb.io)
* GitHub : [https://github.com/bunkerity/bunkerweb](https://github.com/bunkerity/bunkerweb)
* Documentation : [https://docs.bunkerweb.io](https://docs.bunkerweb.io)

https://redd.it/1efrxwb
@r_devops

🚀 Milestone Unlocked: 2K Stars! 🌟

🚀 Milestone Unlocked: 2K Stars! 🌟

My Cheat-Sheet Collection just hit 2,000 stars on GitHub!
Huge thanks to everyone who starred, shared, and contributed. Your support keeps this project growing. 🙌

If you haven't checked it out yet — it's a curated collection of high-quality PDF cheat sheets for developers, DevOps engineers, and tech enthusiasts. 📚💻

Feel free to explore, contribute, and share!
\#DevOps #CheatSheet #GitHub #OpenSource #Infosec #DevSecOps #Kubernetes #Linux

https://redd.it/1kuxk2d
@r_devops

#devops #infrastructureascode #kvm #virtualization #opensource #linux #automation #cloudnative #techinnovation #github #virsh #bash #terraform #kickstart #qemu #kvm | Ahmad M Waddah

Check KVMSpinUps

https://redd.it/1qbyxld
@r_devops