Security Practices with CFEngine

Dimitrios Apostolou & Nick Anderson - Monday, February 1, 14:40-15:20 - B3.036

If not applied correctly, Configuration Management can be of great help to attackers, via means of information leakage or even remote execution across the infrastructure.

In this session we will discuss security practices for deploying configuration with CFEngine, policy management tactics, and methods for providing data isolated per host. We will also show examples of policy that score CIS benchmarks.

About Dimitrios Apostolou

Dimitrios aka Jimis is a core developer at CFEngine, he does much of the work related to CFEngines protocol and cf-serverd components.

About Nick Anderson

Nick is a Sr. Solutions Engineer at CFEngine. He assists customers in the design, implementation and deployment of CFEngine and helps to organize the CFEngine Community Advisory Board.