Monday, April 27, 2009

automatic Security-Testing of Beta-Versions

Today I finished my little project of creating an easy way to automatically verify the security settings of a new openSUSE/SLES.

Tools I used:

  1. qemu
  2. setupgrubfornfsinstall.sh (script by Ludwig Nussel to make network installations, great tool!)
  3. lighttpd to provide autoinstallation profile for...
  4. autoyast + add-on products (also a great tool)
  5. use an own and an openSUSE repositories to...
  6. install various shell scripts and tools (Lynis, etc.) for verifying local security settings of a Linux system
  7. a button to press ;)
Now everything that I need to do when a new beta-testing phase starts is run setupgrubfornfsinstall.sh, installing the beta in qemu, letting autoyast configure the system to include as many software packages as possible, create a root and test account, use the additional repos to install the security tools that run automatically at the end of the boot process. Fun! :)

kostenloser Counter


Posted by Thomas at 6:54 AM
Labels: ,

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)