Set correct owner/permissions for chef-client sensitive files
The following platforms and versions are tested and supported using Opscode's test-kitchen:
Ubuntu 12.04Ubuntu 14.04Debian 7Debian 8Centos 6Centos 7Fedora 21Fedora 22
This recipe will set owner & group to root for /etc/chef/ and /var/chef directories and their sub directories/files.
Directories permissions are set to 0700 and files to 0600.
{
"name":"my_node",
"run_list": [
"recipe[chef-client-hardening]"
]
}You can use rake to invoke testing tasks (See Rakefile for details):
$ rake test:checkstyle
Will run foodcritic and cookstyle.
$ rake test:chefspec
Will run unit tests with ChefSpec.
$ rake test:kitchen
Will test all kitchen instances declared in .kitchen.yml.
Docker driver is used for integration testing with test-kitchen. You will need to have docker installed to run integration testing, or adapt the existing .kitchen.yml for your driver.
$ kitchen list
$ kitchen test [instance]
- Fork the repository on Github
- Create a named feature branch (like
add_component_x) - Write your change
- Write tests for your change (if applicable)
- Run the tests, ensuring they all pass
- Submit a Pull Request using Github
Authors: Sliim [email protected]
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.