Linux-Help
/
cookbook-yum-ossec
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
Chef Cookbook: OSSEC YUM Repository
3 Commits 2 Branches 0 Tags 80 KiB
Ruby 100%
Go to file
Eric Renfro f910a6935a Fixed previous gitignored file 2016-07-18 22:10:27 -04:00
attributes Initial commit 2016-07-18 22:07:36 -04:00
recipes Initial commit 2016-07-18 22:07:36 -04:00
.gitignore Added gitignore 2016-07-18 22:09:29 -04:00
Berksfile Initial commit 2016-07-18 22:07:36 -04:00
CHANGELOG.md Initial commit 2016-07-18 22:07:36 -04:00
README.md Initial commit 2016-07-18 22:07:36 -04:00
metadata.rb Initial commit 2016-07-18 22:07:36 -04:00

README.md

yum-ossec Cookbook

The yum-ossec cookbook takes over management of the default repositoryids that ship with CentOS systems. It allows attribute manipulation of atomic

Requirements

Platforms

  • RHEL/CentOS and derivatives

Chef

  • Chef 11+

Cookbooks

  • yum version 3.2.0 or higher

Attributes

The following attributes are set by default

default['yum']['atomic']['repositoryid'] = 'atomic'
default['yum']['atomic']['enabled'] = true
default['yum']['atomic']['managed'] = true
default['yum']['atomic']['gpgkey'] = 'https://www.atomicorp.com/RPM-GPG-KEY.atomicorp.txt https://www.atomicorp.com/RPM-GPG-KEY.art.txt'
default['yum']['atomic']['gpgcheck'] = true
default['yum']['atomic']['priority'] = 5
default['yum']['atomic']['description'] = 'CentOS / Red Hat Enterprise Linux $releasever - atomicrocketturtle.com'
default['yum']['atomic']['mirrorlist'] = 'http://updates.atomicorp.com/channels/mirrorlist/atomic/centos-$releasever-$basearch'

Recipes

  • default - Walks through node attributes and feeds a yum_resource
  • parameters. The following is an example a resource generated by the
  • recipe during compilation.
  yum_repository 'atomic' do
    mirrorlist 'http://updates.atomicorp.com/channels/mirrorlist/atomic/centos-$releasever-$basearch'
    description 'CentOS / Red Hat Enterprise Linux $releasever - atomicrocketturtle.com'
    enabled true
    gpgcheck true
    priority 5
    gpgkey 'https://www.atomicorp.com/RPM-GPG-KEY.atomicorp.txt https://www.atomicorp.com/RPM-GPG-KEY.art.txt'
  end

Usage Example

To disable the atomic repository through a Role or Environment definition

default_attributes(
  'yum' => {
    'atomic' => {
      'enabled' => false
    }
  }
)

More Examples

Point the base and debuginfo repositories at an internally hosted server.

node.default['yum']['atomic']['enabled'] = true
node.default['yum']['atomic']['mirrorlist'] = nil
node.default['yum']['atomic']['baseurl'] = 'https://internal.example.com/centos/6/os/x86_64'
node.default['yum']['atomic']['sslverify'] = false

include_recipe 'yum-ossec'

License & Authors

Author: Eric Renfro (psi-jack@linux-help.org)

Copyright: 2016, Linux-Help.org.

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.