Coder Social home page Coder Social logo

jsf0 / standoff Goto Github PK

View Code? Open in Web Editor NEW
3.0 3.0 0.0 45 KB

agentless configuration management over SSH

Home Page: https://kernelpanic.life/software/lazy-configuration-management.html

License: ISC License

Shell 6.16% Perl 93.84%
configuration-management agentless ssh ansible

standoff's Introduction

Codacy Badge

standoff

Standoff is a Perl program to automate remote configuration of machines via SSH. It is intended to be a much simpler alternative to Ansible. Its configuration files do not require any knowledge of markup languages, nor does it require any setup on the remote machines at all beyond running SSH.

As of right now, standoff is an unrefined work-in-progress.

Installing

You will need the following Perl modules: Net::OpenSSH and Config::IniFiles. If they are not present, install them first:

# cpan -i Net::OpenSSH
# cpan -i Config::IniFiles

OpenBSD users are advised to use pkg_add(1) to install these modules rather than cpan(1):

# pkg_add p5-Net-OpenSSH p5-Config-IniFiles

To install standoff and its man page, run:

# ./install.sh

You may need to tweak the install locations for your platform.

Usage

See the man page (standoff.1) for full usage examples. Below is a brief explanation to get you running.

Standoff requires a payload file in INI format. A simple example might look like this:

[Target]
target=172.16.1.1
ssh_key=/path/to/ssh_key

[Files]
file=httpd.conf

[Commands]
command=doas cp httpd.conf /etc
command=doas rcctl reload httpd

Then, to run standoff, run:

standoff -f payload_file.ini

This will upload a file called httpd.conf into the remote user's home directory, then execute the commands in the Commands section. Any files are always uploaded before commands are executed on the remote machine, so if you need to move them to the correct locations on the target, you can put the commands to do so in the commands section. The ssh_key parameter is optional. If you don't provide one, standoff will attempt to connect to the target with passphrase-based authentication.

More complex example payload files can be found in the examples/ directory.

standoff can also be run in "pull" mode by specifying the -p option. This will connect to the server in the [Target] section, download any files requested in the [Files] section, and then locally run the commands from the [Commands] section. This is especially useful when combined with cron, as it can be used to remotely manage endpoints even if they are behind NAT and/or firewalls.

Limitations

The user-facing connection options for SSH are limited. This is to avoid too many knobs, but some edge cases may require more fine-tuning for successful connections.

standoff's People

Contributors

jsf0 avatar

Stargazers

avatar avatar avatar

Watchers

avatar avatar avatar

standoff's Issues

Provide more useful examples and label them with what they do

The examples/ directory contains example config payload files but these were made in a hurry. It would be nice to have real life examples that actually do something. Some ideas:

1.) Payload file that installs, enables, and starts Nginx or Apache with a config file on a Linux server.

2.) Payload + config files that runs through the steps for configuring an OpenBSD router according to their FAQ: https://www.openbsd.org/faq/pf/example1.html

3.) Configure a Linux/BSD workstation post-install with packages and dotfiles

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.