On Tue, Sep 17, 2013 at 06:18:48AM -0700, jcbollinger wrote:
>
>
> On Tuesday, September 17, 2013 1:20:40 AM UTC-5, huangm...@gmail.com wrote:
> >
> > I want the puppetmaster can sign the manifest. avoid some guys publish
> > dangerous manifest to agent. like exec{"foo": command=>"rm / -rf";}
>
On Tuesday, September 17, 2013 1:20:40 AM UTC-5, huangm...@gmail.com wrote:
>
> I want the puppetmaster can sign the manifest. avoid some guys publish
> dangerous manifest to agent. like exec{"foo": command=>"rm / -rf";}
>
> there is a software named samhain. it's a integrity checker and host
I want the puppetmaster can sign the manifest. avoid some guys publish
dangerous manifest to agent. like exec{"foo": command=>"rm / -rf";}
there is a software named samhain. it's a integrity checker and host
intrusion detection system . when compile the source code of the software,
you can c
On Monday, September 16, 2013 2:20:21 AM UTC-5, huangm...@gmail.com wrote:
>
> hi,guys
>
> when you use the puppet manage all you production server. the
> security of the puppet master is very very very very import.
> because if the hacker control the puppet master server. the can
