What does HackerNews think of ansible-collection-hardening?

This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL

Language: Jinja

#5 in Ansible
#159 in Hacktoberfest
#87 in Linux
Ask HN: What open-source projects are you currently contributing to and why? | Jun 2023
An ansible collection for hardening Linux systems I mostly wrote: https://github.com/dev-sec/ansible-collection-hardening

Another ansible collection to manage Icinga: https://github.com/T-Systems-MMS/ansible-collection-icinga-d...

And the yunohost app for invoice ninja: https://github.com/YunoHost-Apps/invoiceninja5_ynh

Ask HN: How to secure Ubuntu VPS in 2022? | Jan 2022
Have a look at https://github.com/dev-sec/ansible-collection-hardening
The Streisand project has been archived | Sep 2021
There’s Dev-Sec which is more about multi-OS-platform as well as multi-IaS (Ansible, Puppet, Chef).

Covers SSH, NGINX, Apache, Windows hardening, MySQL, and Linux hardening.

Free, to boot.

https://github.com/dev-sec/ansible-collection-hardening

Linux Hardening Guide | Dec 2020
While I did not read this properly yet, it seems like a good primer.

There is also a great set of ansible playbooks and roles that should cover this and more that is a good base for Linux servers: https://github.com/dev-sec/ansible-collection-hardening