1

I am learning puppet, and I was supposed to enact this security measure on mount point /tmp:

/tmp /var/tmp none rw,noexec,nosuid,nodev,bind 0 0

I looked at fstab, and I see this: /tmp /var/tmp none bind 0 0

I have approximately 500 servers to enable this on. Is there a way to do this on puppet?

Thanks

arcee123
  • 50
  • 2
  • 14

1 Answers1

1

If you need to edit an existing file and make changes / replacements to lines with Puppet the usual method is to use Augeas. For details on how to do so see Using the Augeas Resource Type in the Puppet documentation.

Tim Brigham
  • 15,545
  • 10
  • 75
  • 115
  • 2
    In this specific case i think a mount resource type is fittier? Here's the official documentation: https://docs.puppet.com/puppet/latest/types/mount.html – Fredi Dec 12 '16 at 21:36
  • This is the /tmp folder. Can a Mount work that? if not, what I need to do in fstab is update a line, not insert one. How do I set it to locate the line to repace it? Thanks. – arcee123 Dec 13 '16 at 20:32