Update docs for Ansible hardening roles
This commit is contained in:
Mateusz Suski
@@ -16,8 +16,15 @@ flowchart TD
|
||||
|
||||
- `group_vars` - variables applied at group or environment level.
|
||||
- `host_vars` - variables tailored to individual nodes.
|
||||
- `hosts.yml` - sanitized example groups for Linux and AIX hardening targets.
|
||||
|
||||
## Current Inventory Shape
|
||||
|
||||
- `linux` - local example host for Linux hardening playbooks.
|
||||
- `aix` - empty sanitized group ready for AIX host definitions.
|
||||
- `group_vars/all.yml` - shared hardening defaults such as NTP servers, SSH behavior, audit/logging toggles, sysctl hardening, and optional mount management.
|
||||
|
||||
## Notes
|
||||
|
||||
- The structure is present even though the repository currently keeps this area sanitized and mostly empty.
|
||||
- This is the natural companion to future playbooks and roles under `infra-run/ansible`.
|
||||
- Inventory values are intentionally sanitized.
|
||||
- Override defaults per host, per group, or per run before applying any hardening playbook.
|
||||
|
||||
Reference in New Issue
Block a user