| === kadams54-away is now known as kadams54 | ||
| === kadams54 is now known as kadams54-away | ||
| my_chiguai | Morning | 04:09 |
|---|---|---|
| my_chiguai | Just curious if there are pointers on setting up secure juju machines | 04:10 |
| my_chiguai | like a charm for securing a box | 04:10 |
| my_chiguai | fail2ban, etc. | 04:10 |
| my_chiguai | ok I see fail2ban | 04:23 |
| my_chiguai | https://jujucharms.com/fail2ban/trusty/2 | 04:23 |
| my_chiguai | Are there other recommended ones? | 04:32 |
| lazyPower | my_chiguai: thats the only security related charm that i've produced thus far. Most of the other security related topics are baked into teh charms themselves | 06:09 |
| lazyPower | as in apparmor profiles, firewall rulesets, et-al | 06:09 |
| lazyPower | my_chiguai: if this is a topic that interests you though - those would be a welcome contribution to the ecosystem :) | 06:10 |
| my_chiguai | lazyPower: really I wasn't aware of that! | 06:49 |
| my_chiguai | I am new to juju and unfortunately am a time strapped developer hence the desire to use juju | 06:49 |
| my_chiguai | I have done some with ansible and getting some deploy books prepped for use on digital ocean | 06:50 |
| my_chiguai | and charms don't seem to crazy… | 06:50 |
| my_chiguai | one day… one day… | 06:50 |
| lazyPower | my_chiguai: not all charms implement the security practices - but there are a few that do. Such as the new wordpress charm thats in dev (apparmor), and our Elastic Search charm (firewall) | 06:50 |
| lazyPower | and juju works with Digital Ocean :) | 06:50 |
| my_chiguai | learning that myself now. I've spun up a few. | 06:50 |
| lazyPower | but its 3am, i'm about to head out. ANy final questions i can answer before I go? | 06:50 |
| my_chiguai | Elastic Search is one specifically. | 06:51 |
| my_chiguai | You've given me some to look at so much obliged | 06:51 |
| my_chiguai | Thank you! | 06:51 |
| lazyPower | sure, np | 06:52 |
| * lazyPower doffs hat | 06:52 | |
| lazyPower | Enjoy the adventure | 06:52 |
| === kadams54 is now known as kadams54-away | ||
| === scuttle|afk is now known as scuttlemonkey | ||
| === kadams54 is now known as kadams54-away | ||
| jaywink | hi, anyone have any ideas why local environment giving this? "juju.provisioner provisioner_task.go:531 cannot start instance for machine after a retry "1": container failed to start and was destroyed:" .. juju 1.22-beta5-utopic-amd64 | 20:07 |
| === kadams54 is now known as kadams54-away | ||
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!