SlideShare a Scribd company logo

Puppet for Security Compliance - GOSCON 2010

Puppet, profile picture
Puppet

The document discusses Puppet, a model-driven framework for managing IT systems that enforces consistent security configurations while enabling cross-functional collaboration. It highlights its advantages such as repeatability of policies, context-sensitive enforcement, and comprehensive logging throughout the system lifecycle. Puppet is widely adopted in various sectors, including government, for configuration management and compliance purposes.

1 of 58
Downloaded 143 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
Puppet A Modern Approach to Systems Management and Compliance October 2010 Wednesday, December 15, 2010
The Compliance Problem Wednesday, December 15, 2010
The Olde Days Wednesday, December 15, 2010
The Security Analyst Wednesday, December 15, 2010
Not Aligned with Business Needs Wednesday, December 15, 2010
Tools and Custom Scripts Wednesday, December 15, 2010
The Auditor Wednesday, December 15, 2010
Networks Grow Wednesday, December 15, 2010
Networks Grow Wednesday, December 15, 2010
The Compliance Paradox Wednesday, December 15, 2010
Puppet: A New Approach Wednesday, December 15, 2010
Puppet: A New Approach ★ Is a model driven framework to centrally manage IT systems. Wednesday, December 15, 2010
Puppet: A New Approach ★ Is a model driven framework to centrally manage IT systems. ★ Enforces consistent, known secure, configurations of target systems. Wednesday, December 15, 2010
Puppet: A New Approach ★ Is a model driven framework to centrally manage IT systems. ★ Enforces consistent, known secure, configurations of target systems. ★ Enables cross-functional collaboration within IT. Wednesday, December 15, 2010
Puppet: A New Approach ★ Is a model driven framework to centrally manage IT systems. ★ Enforces consistent, known secure, configurations of target systems. ★ Enables cross-functional collaboration within IT. ★ Enables reuse of service configurations across departments and organizations. Wednesday, December 15, 2010
Puppet: a framework for configuration management Wednesday, December 15, 2010
Declarative Configuration Language Wednesday, December 15, 2010
A Language for Collaboration: DevOps Today: 99% of IT Silo’d Managed With Puppet Team OS Team App Team Config Team Sec SOX LAMP RAILS Puppet = dev/ops/sec Config OS App Config Security OS App Config Wednesday, December 15, 2010
Operating System Support Wednesday, December 15, 2010
Cross Platform Architecture Wednesday, December 15, 2010
Advantages? Wednesday, December 15, 2010
Advantages? ★ Puppet enforced policies can be applied over and over again. Wednesday, December 15, 2010
Advantages? ★ Puppet enforced policies can be applied over and over again. ★ Policies can be expressed as the desired state (not how to get there). Wednesday, December 15, 2010
Advantages? ★ Puppet enforced policies can be applied over and over again. ★ Policies can be expressed as the desired state (not how to get there). ★ Puppet’s enforced policies can be context sensitive. Wednesday, December 15, 2010
Advantages? ★ Puppet enforced policies can be applied over and over again. ★ Policies can be expressed as the desired state (not how to get there). ★ Puppet’s enforced policies can be context sensitive. ★ Puppet provides a log history over the lifecycle of a system. Wednesday, December 15, 2010
Advantages? ★ Puppet enforced policies can be applied over and over again. ★ Policies can be expressed as the desired state (not how to get there). ★ Puppet’s enforced policies can be context sensitive. ★ Puppet provides a log history over the lifecycle of a system. ★ Operates at cloud scale. Wednesday, December 15, 2010
With Puppet, auditing and remediation is a single automated configuration task. Wednesday, December 15, 2010
Demo Wednesday, December 15, 2010
Puppet and SCAP Wednesday, December 15, 2010
Puppet and SCAP ★ Current SCAP tools are auditing only. Wednesday, December 15, 2010
Puppet and SCAP ★ Current SCAP tools are auditing only. ★ Remediation tools are Windows only. Wednesday, December 15, 2010
Puppet and SCAP ★ Current SCAP tools are auditing only. ★ Remediation tools are Windows only. ★ Puppet provides auditing and remediation in a single step. Wednesday, December 15, 2010
Puppet and SCAP ★ Current SCAP tools are auditing only. ★ Remediation tools are Windows only. ★ Puppet provides auditing and remediation in a single step. ★ Puppet is being used for configuration and security management across government agencies. Wednesday, December 15, 2010
Puppet and SCAP ★ Current SCAP tools are auditing only. ★ Remediation tools are Windows only. ★ Puppet provides auditing and remediation in a single step. ★ Puppet is being used for configuration and security management across government agencies. ★ Puppet currently support AIX, HP-UX, LINUX, Mac OS X. Wednesday, December 15, 2010
Puppet and SCAP ★ Current SCAP tools are auditing only. ★ Remediation tools are Windows only. ★ Puppet provides auditing and remediation in a single step. ★ Puppet is being used for configuration and security management across government agencies. ★ Puppet currently support AIX, HP-UX, LINUX, Mac OS X. ★ Broadly adopted outside of GOV. Wednesday, December 15, 2010
Puppet and OVAL/ORVL Wednesday, December 15, 2010
Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. Wednesday, December 15, 2010
Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. ★ Each managed element is represented as an abstract resource. Wednesday, December 15, 2010
Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. ★ Each managed element is represented as an abstract resource. ★ Puppet is well suited and widely deployed for configuration management, security compliance is a subset of overall configuration management. Wednesday, December 15, 2010
Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. ★ Each managed element is represented as an abstract resource. ★ Puppet is well suited and widely deployed for configuration management, security compliance is a subset of overall configuration management. ★ Puppet Language is machine parse-able and the compiled catalog of resources cleanly represents the desired state of each resource on a system. Wednesday, December 15, 2010
Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. ★ Each managed element is represented as an abstract resource. ★ Puppet is well suited and widely deployed for configuration management, security compliance is a subset of overall configuration management. ★ Puppet Language is machine parse-able and the compiled catalog of resources cleanly represents the desired state of each resource on a system. ★ Each resource is audited for state and the result of that audit is logged as an event. Wednesday, December 15, 2010
Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. ★ Each managed element is represented as an abstract resource. ★ Puppet is well suited and widely deployed for configuration management, security compliance is a subset of overall configuration management. ★ Puppet Language is machine parse-able and the compiled catalog of resources cleanly represents the desired state of each resource on a system. ★ Each resource is audited for state and the result of that audit is logged as an event. ★ High level Puppet language is machine readable. Wednesday, December 15, 2010
Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. ★ Each managed element is represented as an abstract resource. ★ Puppet is well suited and widely deployed for configuration management, security compliance is a subset of overall configuration management. ★ Puppet Language is machine parse-able and the compiled catalog of resources cleanly represents the desired state of each resource on a system. ★ Each resource is audited for state and the result of that audit is logged as an event. ★ High level Puppet language is machine readable. ★ Puppet managed resources can be generated from external datasources. Wednesday, December 15, 2010
Who is using this approach? Wednesday, December 15, 2010
Who is using this approach? ★ Los Alamos National Laboratories Wednesday, December 15, 2010
Who is using this approach? ★ Los Alamos National Laboratories ★ SPAWAR (STIG compliance) Wednesday, December 15, 2010
Who is using this approach? ★ Los Alamos National Laboratories ★ SPAWAR (STIG compliance) ★ Lockheed Martin Wednesday, December 15, 2010
Who is using this approach? ★ Los Alamos National Laboratories ★ SPAWAR (STIG compliance) ★ Lockheed Martin ★ Northrup Grumman Wednesday, December 15, 2010
Who is using this approach? ★ Los Alamos National Laboratories ★ SPAWAR (STIG compliance) ★ Lockheed Martin ★ Northrup Grumman ★ SecState (An SCAP audit and remediation tool.) Wednesday, December 15, 2010
What is next? Wednesday, December 15, 2010
Puppet as a constraint language. Wednesday, December 15, 2010
Post Catalog Processing Wednesday, December 15, 2010
Device Management Wednesday, December 15, 2010
Zero Day Automated Fixes Wednesday, December 15, 2010
Supported Compliance Modules in the Puppet Forge Wednesday, December 15, 2010
Links ★ https://fedorahosted.org/secstate/ ★ http://scap.nist.gov/specifications/xccdf/ ★ https://svn.forge.mil/svn/repos/slim/slim/docs/ ★ https://svn.forge.mil/svn/repos/slim/slim/base/dev/rhel5/rpm/ trunk/channels/x86_64/puppet/ ★ http://oval.mitre.org/adoption/supporters.html ★ http://www.puppetlabs.com/blog/los-alamos-national-laborator- publishes-puppet-white-paper-for-mac-os-x-configuration- management ★ http://github.com/jamtur01/puppet-hardening ★ http://docs.puppetlabs.com/guides/introduction.html Wednesday, December 15, 2010
Questions? Wednesday, December 15, 2010
Puppet Labs is hiring! jobs@puppetlabs.com twitter: @brainfinger email: teyo@puppetlabs.com Wednesday, December 15, 2010

More Related Content

PDF
Auditing/Security with Puppet - PuppetConf 2014
Puppet
 
ODP
Automating OpenSCAP with Foreman
szadok
 
PDF
Drupal In The Cloud
Chapter Three
 
PDF
PuppetConf track overview: Puppet 4
Puppet
 
PPTX
Flutter not yet another mobile cross-platform framework - i ox-kl19
oradoe
 
PDF
PuppetConf track overview: Puppet Applied
Puppet
 
PPTX
Apple IT Managing Containers
Claire Priester Papas
 
PDF
PuppetConf track overview: Inside Puppet
Puppet
 
Auditing/Security with Puppet - PuppetConf 2014
Puppet
 
Automating OpenSCAP with Foreman
szadok
 
Drupal In The Cloud
Chapter Three
 
PuppetConf track overview: Puppet 4
Puppet
 
Flutter not yet another mobile cross-platform framework - i ox-kl19
oradoe
 
PuppetConf track overview: Puppet Applied
Puppet
 
Apple IT Managing Containers
Claire Priester Papas
 
PuppetConf track overview: Inside Puppet
Puppet
 

Similar to Puppet for Security Compliance - GOSCON 2010 (20)

PDF
PuppetConf 2016: Successful Puppet Implementation in Large Organizations – Ja...
Puppet
 
PDF
UX Terror. Know your rights. (Front Trends 2015)
Natalia Rozycka
 
PDF
GoLightly: Building VM-based language runtimes in Go
Eleanor McHugh
 
PDF
CrossMark Sneak Peek 2010 CrossRef Workshops
Crossref
 
PDF
Scaling with Postgres (Highload++ 2010)
Robert Treat
 
PDF
Make it or Break It: Evolutionary or Throwaway Prototyping
jsokohl
 
ODP
Continous Delivery of your Infrastructure
Kris Buytaert
 
PDF
GT Logiciel Libre - Convention Systematic 2011
Stefane Fermigier
 
PDF
Open Source Monitoring in 2015
Kris Buytaert
 
PDF
Phingified ci and deployment strategies ipc 2012
TEQneers GmbH & Co. KG
 
PDF
Run stuff, Deploy Stuff
Kris Buytaert
 
PDF
Agile Enterprise Devops and Cloud - Interop 2010 NYC
Chef Software, Inc.
 
PDF
How AI is Changing Day-to-Day Work of a Product Manager
Francesco Corti
 
PPTX
Agile metteg 9(agile tooling)-draft-v1.0
APjrousset
 
PDF
Run stuff, Deploy Stuff, Jax London 2017 Edition
Kris Buytaert
 
PPTX
Understanding the DevOps Tooling Landscape
XebiaLabs
 
PPTX
Watching Somebody Else's Computer: Cloud Native Observability
Ronald McCollam
 
PDF
PuppetConf track overview: Windows
Puppet
 
PDF
Journey over Destination: creating an effective framework with UX tools
stephtroeth
 
PDF
Scaling with Postgres (Robert Treat)
Ontico
 
PuppetConf 2016: Successful Puppet Implementation in Large Organizations – Ja...
Puppet
 
UX Terror. Know your rights. (Front Trends 2015)
Natalia Rozycka
 
GoLightly: Building VM-based language runtimes in Go
Eleanor McHugh
 
CrossMark Sneak Peek 2010 CrossRef Workshops
Crossref
 
Scaling with Postgres (Highload++ 2010)
Robert Treat
 
Make it or Break It: Evolutionary or Throwaway Prototyping
jsokohl
 
Continous Delivery of your Infrastructure
Kris Buytaert
 
GT Logiciel Libre - Convention Systematic 2011
Stefane Fermigier
 
Open Source Monitoring in 2015
Kris Buytaert
 
Phingified ci and deployment strategies ipc 2012
TEQneers GmbH & Co. KG
 
Run stuff, Deploy Stuff
Kris Buytaert
 
Agile Enterprise Devops and Cloud - Interop 2010 NYC
Chef Software, Inc.
 
How AI is Changing Day-to-Day Work of a Product Manager
Francesco Corti
 
Agile metteg 9(agile tooling)-draft-v1.0
APjrousset
 
Run stuff, Deploy Stuff, Jax London 2017 Edition
Kris Buytaert
 
Understanding the DevOps Tooling Landscape
XebiaLabs
 
Watching Somebody Else's Computer: Cloud Native Observability
Ronald McCollam
 
PuppetConf track overview: Windows
Puppet
 
Journey over Destination: creating an effective framework with UX tools
stephtroeth
 
Scaling with Postgres (Robert Treat)
Ontico
 
Ad

More from Puppet (20)

PPTX
Puppet Community Day: Planning the Future Together
Puppet
 
PPTX
The Evolution of Puppet: Key Changes and Modernization Tips
Puppet
 
PPTX
Can You Help Me Upgrade to Puppet 8? Tips, Tools & Best Practices for Your Up...
Puppet
 
PPTX
Bolt Dynamic Inventory: Making Puppet Easier
Puppet
 
PPTX
Customizing Reporting with the Puppet Report Processor
Puppet
 
PPTX
Puppet at ConfigMgmtCamp 2025 Sponsor Deck
Puppet
 
PPTX
The State of Puppet in 2025: A Presentation from Developer Relations Lead Dav...
Puppet
 
PPTX
Let Red be Red and Green be Green: The Automated Workflow Restarter in GitHub...
Puppet
 
PDF
Puppet camp2021 testing modules and controlrepo
Puppet
 
PPTX
Puppetcamp r10kyaml
Puppet
 
PDF
2021 04-15 operational verification (with notes)
Puppet
 
PPTX
Puppet camp vscode
Puppet
 
PDF
Modules of the twenties
Puppet
 
PDF
Applying Roles and Profiles method to compliance code
Puppet
 
PPTX
KGI compliance as-code approach
Puppet
 
PDF
Enforce compliance policy with model-driven automation
Puppet
 
PDF
Keynote: Puppet camp compliance
Puppet
 
PPTX
Automating it management with Puppet + ServiceNow
Puppet
 
PPTX
Puppet: The best way to harden Windows
Puppet
 
PPTX
Simplified Patch Management with Puppet - Oct. 2020
Puppet
 
Puppet Community Day: Planning the Future Together
Puppet
 
The Evolution of Puppet: Key Changes and Modernization Tips
Puppet
 
Can You Help Me Upgrade to Puppet 8? Tips, Tools & Best Practices for Your Up...
Puppet
 
Bolt Dynamic Inventory: Making Puppet Easier
Puppet
 
Customizing Reporting with the Puppet Report Processor
Puppet
 
Puppet at ConfigMgmtCamp 2025 Sponsor Deck
Puppet
 
The State of Puppet in 2025: A Presentation from Developer Relations Lead Dav...
Puppet
 
Let Red be Red and Green be Green: The Automated Workflow Restarter in GitHub...
Puppet
 
Puppet camp2021 testing modules and controlrepo
Puppet
 
Puppetcamp r10kyaml
Puppet
 
2021 04-15 operational verification (with notes)
Puppet
 
Puppet camp vscode
Puppet
 
Modules of the twenties
Puppet
 
Applying Roles and Profiles method to compliance code
Puppet
 
KGI compliance as-code approach
Puppet
 
Enforce compliance policy with model-driven automation
Puppet
 
Keynote: Puppet camp compliance
Puppet
 
Automating it management with Puppet + ServiceNow
Puppet
 
Puppet: The best way to harden Windows
Puppet
 
Simplified Patch Management with Puppet - Oct. 2020
Puppet
 
Ad

Puppet for Security Compliance - GOSCON 2010

  • 1. Puppet A Modern Approach to Systems Management and Compliance October 2010 Wednesday, December 15, 2010
  • 3. The Olde Days Wednesday, December 15, 2010
  • 5. Not Aligned with Business Needs Wednesday, December 15, 2010
  • 6. Tools and Custom Scripts Wednesday, December 15, 2010
  • 11. Puppet: A New Approach Wednesday, December 15, 2010
  • 12. Puppet: A New Approach ★ Is a model driven framework to centrally manage IT systems. Wednesday, December 15, 2010
  • 13. Puppet: A New Approach ★ Is a model driven framework to centrally manage IT systems. ★ Enforces consistent, known secure, configurations of target systems. Wednesday, December 15, 2010
  • 14. Puppet: A New Approach ★ Is a model driven framework to centrally manage IT systems. ★ Enforces consistent, known secure, configurations of target systems. ★ Enables cross-functional collaboration within IT. Wednesday, December 15, 2010
  • 15. Puppet: A New Approach ★ Is a model driven framework to centrally manage IT systems. ★ Enforces consistent, known secure, configurations of target systems. ★ Enables cross-functional collaboration within IT. ★ Enables reuse of service configurations across departments and organizations. Wednesday, December 15, 2010
  • 16. Puppet: a framework for configuration management Wednesday, December 15, 2010
  • 18. A Language for Collaboration: DevOps Today: 99% of IT Silo’d Managed With Puppet Team OS Team App Team Config Team Sec SOX LAMP RAILS Puppet = dev/ops/sec Config OS App Config Security OS App Config Wednesday, December 15, 2010
  • 22. Advantages? ★ Puppet enforced policies can be applied over and over again. Wednesday, December 15, 2010
  • 23. Advantages? ★ Puppet enforced policies can be applied over and over again. ★ Policies can be expressed as the desired state (not how to get there). Wednesday, December 15, 2010
  • 24. Advantages? ★ Puppet enforced policies can be applied over and over again. ★ Policies can be expressed as the desired state (not how to get there). ★ Puppet’s enforced policies can be context sensitive. Wednesday, December 15, 2010
  • 25. Advantages? ★ Puppet enforced policies can be applied over and over again. ★ Policies can be expressed as the desired state (not how to get there). ★ Puppet’s enforced policies can be context sensitive. ★ Puppet provides a log history over the lifecycle of a system. Wednesday, December 15, 2010
  • 26. Advantages? ★ Puppet enforced policies can be applied over and over again. ★ Policies can be expressed as the desired state (not how to get there). ★ Puppet’s enforced policies can be context sensitive. ★ Puppet provides a log history over the lifecycle of a system. ★ Operates at cloud scale. Wednesday, December 15, 2010
  • 27. With Puppet, auditing and remediation is a single automated configuration task. Wednesday, December 15, 2010
  • 29. Puppet and SCAP Wednesday, December 15, 2010
  • 30. Puppet and SCAP ★ Current SCAP tools are auditing only. Wednesday, December 15, 2010
  • 31. Puppet and SCAP ★ Current SCAP tools are auditing only. ★ Remediation tools are Windows only. Wednesday, December 15, 2010
  • 32. Puppet and SCAP ★ Current SCAP tools are auditing only. ★ Remediation tools are Windows only. ★ Puppet provides auditing and remediation in a single step. Wednesday, December 15, 2010
  • 33. Puppet and SCAP ★ Current SCAP tools are auditing only. ★ Remediation tools are Windows only. ★ Puppet provides auditing and remediation in a single step. ★ Puppet is being used for configuration and security management across government agencies. Wednesday, December 15, 2010
  • 34. Puppet and SCAP ★ Current SCAP tools are auditing only. ★ Remediation tools are Windows only. ★ Puppet provides auditing and remediation in a single step. ★ Puppet is being used for configuration and security management across government agencies. ★ Puppet currently support AIX, HP-UX, LINUX, Mac OS X. Wednesday, December 15, 2010
  • 35. Puppet and SCAP ★ Current SCAP tools are auditing only. ★ Remediation tools are Windows only. ★ Puppet provides auditing and remediation in a single step. ★ Puppet is being used for configuration and security management across government agencies. ★ Puppet currently support AIX, HP-UX, LINUX, Mac OS X. ★ Broadly adopted outside of GOV. Wednesday, December 15, 2010
  • 36. Puppet and OVAL/ORVL Wednesday, December 15, 2010
  • 37. Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. Wednesday, December 15, 2010
  • 38. Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. ★ Each managed element is represented as an abstract resource. Wednesday, December 15, 2010
  • 39. Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. ★ Each managed element is represented as an abstract resource. ★ Puppet is well suited and widely deployed for configuration management, security compliance is a subset of overall configuration management. Wednesday, December 15, 2010
  • 40. Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. ★ Each managed element is represented as an abstract resource. ★ Puppet is well suited and widely deployed for configuration management, security compliance is a subset of overall configuration management. ★ Puppet Language is machine parse-able and the compiled catalog of resources cleanly represents the desired state of each resource on a system. Wednesday, December 15, 2010
  • 41. Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. ★ Each managed element is represented as an abstract resource. ★ Puppet is well suited and widely deployed for configuration management, security compliance is a subset of overall configuration management. ★ Puppet Language is machine parse-able and the compiled catalog of resources cleanly represents the desired state of each resource on a system. ★ Each resource is audited for state and the result of that audit is logged as an event. Wednesday, December 15, 2010
  • 42. Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. ★ Each managed element is represented as an abstract resource. ★ Puppet is well suited and widely deployed for configuration management, security compliance is a subset of overall configuration management. ★ Puppet Language is machine parse-able and the compiled catalog of resources cleanly represents the desired state of each resource on a system. ★ Each resource is audited for state and the result of that audit is logged as an event. ★ High level Puppet language is machine readable. Wednesday, December 15, 2010
  • 43. Puppet and OVAL/ORVL ★ Puppet provides a high level auditing and configuration management language. ★ Each managed element is represented as an abstract resource. ★ Puppet is well suited and widely deployed for configuration management, security compliance is a subset of overall configuration management. ★ Puppet Language is machine parse-able and the compiled catalog of resources cleanly represents the desired state of each resource on a system. ★ Each resource is audited for state and the result of that audit is logged as an event. ★ High level Puppet language is machine readable. ★ Puppet managed resources can be generated from external datasources. Wednesday, December 15, 2010
  • 44. Who is using this approach? Wednesday, December 15, 2010
  • 45. Who is using this approach? ★ Los Alamos National Laboratories Wednesday, December 15, 2010
  • 46. Who is using this approach? ★ Los Alamos National Laboratories ★ SPAWAR (STIG compliance) Wednesday, December 15, 2010
  • 47. Who is using this approach? ★ Los Alamos National Laboratories ★ SPAWAR (STIG compliance) ★ Lockheed Martin Wednesday, December 15, 2010
  • 48. Who is using this approach? ★ Los Alamos National Laboratories ★ SPAWAR (STIG compliance) ★ Lockheed Martin ★ Northrup Grumman Wednesday, December 15, 2010
  • 49. Who is using this approach? ★ Los Alamos National Laboratories ★ SPAWAR (STIG compliance) ★ Lockheed Martin ★ Northrup Grumman ★ SecState (An SCAP audit and remediation tool.) Wednesday, December 15, 2010
  • 50. What is next? Wednesday, December 15, 2010
  • 51. Puppet as a constraint language. Wednesday, December 15, 2010
  • 54. Zero Day Automated Fixes Wednesday, December 15, 2010
  • 55. Supported Compliance Modules in the Puppet Forge Wednesday, December 15, 2010
  • 56. Links ★ https://fedorahosted.org/secstate/ ★ http://scap.nist.gov/specifications/xccdf/ ★ https://svn.forge.mil/svn/repos/slim/slim/docs/ ★ https://svn.forge.mil/svn/repos/slim/slim/base/dev/rhel5/rpm/ trunk/channels/x86_64/puppet/ ★ http://oval.mitre.org/adoption/supporters.html ★ http://www.puppetlabs.com/blog/los-alamos-national-laborator- publishes-puppet-white-paper-for-mac-os-x-configuration- management ★ http://github.com/jamtur01/puppet-hardening ★ http://docs.puppetlabs.com/guides/introduction.html Wednesday, December 15, 2010
  • 58. Puppet Labs is hiring! jobs@puppetlabs.com twitter: @brainfinger email: teyo@puppetlabs.com Wednesday, December 15, 2010