A talk to be given at the [Perth Linux Users' Group][PLUG] on 8 Feb 2022.
[PLUG]: http://www.plug.org.au/
The process of ad-hoc system administration, in which lengthy and possibly insecure installation commands are typed/pasted from software project websites or even Q&A sites, is both time-consuming and not recommended from a security perspective.
However, OS-provided software packages are often old versions or not present at all. And modern DevOps approaches like Ansible, Puppet, Vagrant or Docker are not always justified, especially for experimentation or work on one's own workstation.
Toolbelt fills the gap, by automating the recommended installation approach described on the provider's website for each supported piece of software.
This presentation will give an overview of Toolbelt, including a partial code walkthrough and a description of how to extend it to support additional software.
- Introduction
- Toolbelt
- What is Unix?
- Linux distributions and packages
- Linux Package Security
- 3rd-party Software Security
- Toolbelt principles
- Complexity level
- Verification methods
- Entities
- Dependencies
- Risks and trade-offs
- Toolbelt example
toolbelt list-entities
toolbelt install boring
- Toolbelt installation
- Remote: bootstrap/install.yaml (requires Ansible)
- Local: bootstrap/install.sh
- Extending Toolbelt
- Live demo: Sandstorm
- Future features
- Projects
- Components
- Riders
- Conclusion
- Questions?
Alastair is a Software Engineer and system administrator by trade. He has a BSc in Computer Science from Curtin University.
His computer-related interests lie in various areas within his trade; suffice to say that he is a "geek of many colours". :) Alastair is a die-hard FOSS user and Linux fan.
He is also a freelancer with his own business. Warpspace IT is a consultancy with a fairly broad focus on the technical side of IT.
1300 881744
TBA