Learning Puppet Security

Secure your IT environments with the powerful security tools of Puppet
Preview in Mapt

Learning Puppet Security

Jason Slagle

1 customer reviews
Secure your IT environments with the powerful security tools of Puppet
Mapt Subscription
FREE
$29.99/m after trial
eBook
$22.40
RRP $31.99
Save 29%
Print + eBook
$39.99
RRP $39.99
What do I get with a Mapt Pro subscription?
  • Unlimited access to all Packt’s 5,000+ eBooks and Videos
  • Early Access content, Progress Tracking, and Assessments
  • 1 Free eBook or Video to download and keep every month after trial
What do I get with an eBook?
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with Print & eBook?
  • Get a paperback copy of the book delivered to you
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with a Video?
  • Download this Video course in MP4 format
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
$0.00
$22.40
$39.99
$29.99 p/m after trial
RRP $31.99
RRP $39.99
Subscription
eBook
Print + eBook
Start 30 Day Trial

Frequently bought together


Learning Puppet Security Book Cover
Learning Puppet Security
$ 31.99
$ 22.40
Mastering Machine Learning Algorithms Book Cover
Mastering Machine Learning Algorithms
$ 35.99
$ 25.20
Buy 2 for $35.00
Save $32.98
Add to Cart

Book Details

ISBN 139781784397753
Paperback236 pages

Book Description

As application and server environments become more complex, managing security and compliance becomes a challenging situation. By utilizing Puppet and the tools associated with it, you can simplify and automate many of the more repetitive security-related tasks.

Beginning with the simplest cases, you will quickly get up and running by looking at an example Puppet manifest. Moving on, you will learn how to use Puppet to track changes to environments and how this can be used for compliance. As your knowledge increases, you will then get to explore community modules and learn how they can help simplify the deployment of your Puppet environment by using pre-written code contributed by community members. By the end of this book, you will be able to implement a complete centralized logging solution using Logstash and community modules.

Table of Contents

Chapter 1: Puppet as a Security Tool
What is Puppet?
Installing and configuring Puppet
Preparing the environment for examples
Puppet for security and compliance
Example – using Puppet to secure openssh
Summary
Chapter 2: Tracking Changes to Objects
Change tracking with Puppet
The audit meta-parameter
Using audit on files
Auditing the password file
Audit on other resource types
Auditing a package
Things to know about audit
Alternatives to auditing
Using noop
Summary
Chapter 3: Puppet for Compliance
Using manifests to document the system state
Tracking history with version control
Facts for compliance
The PCI DSS and how Puppet can help
Summary
Chapter 4: Security Reporting with Puppet
Basic Puppet reporting
PuppetDB and reporting
Reporting for compliance
Summary
Chapter 5: Securing Puppet
Puppet security related configuration
SSL and Puppet
Autosigning certificates
Summary
Chapter 6: Community Modules for Security
The Puppet Forge
The herculesteam/augeasproviders series of modules
The arildjensen/cis module
The saz/sudo module
The hiera-eyaml gem
Summary
Chapter 7: Network Security and Puppet
Introducing the firewall module
The firewall type
The firewallchain type
Creating pre and post rules
Adding firewall rules to other modules
Summary
Chapter 8: Centralized Logging
Welcome to logging happiness
Logstash and Puppet
Installing Elasticsearch
Reporting on log data
Configuring hosts to report log data
Summary
Chapter 9: Puppet and OS Security Tools
Introducing SELinux and auditd
SELinux and Puppet
Configuring SELinux with community modules
Configuring auditd with community modules
Summary

What You Will Learn

  • Use Puppet manifests to show system compliance and track changes to the operating system resources
  • Generate security reports using PuppetDB to show that the systems are up to date
  • Automate CIS compliance using community modules
  • Configure firewalls automatically based on roles
  • Demystify the Puppet SSL stack
  • Set up centralized logging with dashboard search functionality using Elasticsearch, Logstash, and Kibana
  • Configure your systems to be secure automatically using SELinux with Puppet
  • Use Puppet to assist with PCI DSS compliance

Authors

Table of Contents

Chapter 1: Puppet as a Security Tool
What is Puppet?
Installing and configuring Puppet
Preparing the environment for examples
Puppet for security and compliance
Example – using Puppet to secure openssh
Summary
Chapter 2: Tracking Changes to Objects
Change tracking with Puppet
The audit meta-parameter
Using audit on files
Auditing the password file
Audit on other resource types
Auditing a package
Things to know about audit
Alternatives to auditing
Using noop
Summary
Chapter 3: Puppet for Compliance
Using manifests to document the system state
Tracking history with version control
Facts for compliance
The PCI DSS and how Puppet can help
Summary
Chapter 4: Security Reporting with Puppet
Basic Puppet reporting
PuppetDB and reporting
Reporting for compliance
Summary
Chapter 5: Securing Puppet
Puppet security related configuration
SSL and Puppet
Autosigning certificates
Summary
Chapter 6: Community Modules for Security
The Puppet Forge
The herculesteam/augeasproviders series of modules
The arildjensen/cis module
The saz/sudo module
The hiera-eyaml gem
Summary
Chapter 7: Network Security and Puppet
Introducing the firewall module
The firewall type
The firewallchain type
Creating pre and post rules
Adding firewall rules to other modules
Summary
Chapter 8: Centralized Logging
Welcome to logging happiness
Logstash and Puppet
Installing Elasticsearch
Reporting on log data
Configuring hosts to report log data
Summary
Chapter 9: Puppet and OS Security Tools
Introducing SELinux and auditd
SELinux and Puppet
Configuring SELinux with community modules
Configuring auditd with community modules
Summary

Book Details

ISBN 139781784397753
Paperback236 pages
Read More
From 1 reviews

Read More Reviews

Recommended for You

Troubleshooting Puppet Book Cover
Troubleshooting Puppet
$ 27.99
$ 19.60
Learning Puppet for Windows Server Book Cover
Learning Puppet for Windows Server
$ 35.99
$ 25.20
Mastering Puppet - Second Edition Book Cover
Mastering Puppet - Second Edition
$ 39.99
$ 28.00
Extending Puppet  Book Cover
Extending Puppet
$ 16.99
$ 11.90
Puppet 4 Essentials - Second Edition Book Cover
Puppet 4 Essentials - Second Edition
$ 35.99
$ 25.20
Extending Puppet - Second Edition Book Cover
Extending Puppet - Second Edition
$ 31.99
$ 22.40