An open source tool is only as good as its community, and Puppet has a great one. Now that we've covered the basics and you have a functional Puppet setup, including reporting, we'll move on to how you can quickly improve that infrastructure. In many ways, the communities behind Puppet, right from the users to the vendors and sponsors, are what set Puppet apart from its competitors.
In this chapter, we will explore community-maintained modules that assist with security. There are a great number of modules available, so we'll try to focus on some that have good benefits or a module structure to model your own modules on. In particular, we'll cover the following in this chapter:
The importance of the Puppet Forge
The
augeasprovider
module by herculesteam, which allows you to use augeas to manage a variety of files in a native Puppet mannerThe
CIS
module by arildjensen, which allows you to apply most of the Center for Internet Security standards to a machine...