[clug] old-school remote sys configuration/management options
clug at csmart.io
Thu May 7 06:10:30 UTC 2020
On Thu, 7 May 2020, at 15:49, Bob Edwards via linux wrote:
> The reason I didn't was largely influenced by:
> - tracked by AusCERT as:
> "ESB-2020.1595 - [Debian] ansible: Multiple vulnerabilities"
> I was actually keeping my eye out for:
> "ESB-2020.1607 - [Debian] salt: Multiple vulnerabilities"
> but when I saw the slightly earlier Ansible one (without actually
> reading it), I became further convinced that this wasn't the solution...
> my bad.
IMO one of the cool things about Ansible is that it's agentless. So when there's a vulnerability, you just update the package on the host which is going to run the jobs and you're good to go (as opposed to having vulnerable services/agents running on each node on your network).
More information about the linux