Harden sysctl.conf by Sparrow checks
Harden sysctl.conf by Sparrow checks
Rules, and a bit of … Raku note: Harden sysctl.conf note: Rules taken from note: note: Controls the use of TCP syncookies note: Turn on SYN-flood protections note: regexp: ^^ “net.ipv4.…
You definitely shouldn't copy and paste things like this.
you are seemed to have edited your initial reply - "it should be sysctl.conf not syslog.conf " - anyway thanks for that, now it's fixed, this was just overlook typo
So... What is this? It looks like a config file generator? How is this better than Ansible?
Not generator, validator. It validates configuration files . Ansible is not flexible in comparison with Sparrow, you'd need to write more boilerplate code to do the same ... Also core ansible modules search is limited by "one line" mode, thus it does not allow to search for example within nested structures, like if we want something in between or in nested blocks, or search for sequences, like when we want to search a sequence of strings, a,b,c,d etc, Sparrow does allow al thatl as it has ranges/sequential/SLN search by design. Sparrow allows to generate check rules in runtime as well, Ansible can't