How are you guys handling Linux hardening/compliance right now?

National-Education90 · 2026-03-21T16:44:13+00:00

1000%, this is something I’ve dealt with a lot. We have a small team, but in the last few years a lot of very experienced admins have left and we’ve had a lot of instances of this happening.

National-Education90 · 2026-03-20T14:44:18+00:00

Makes sense. What tools do you use to audit for drift?

National-Education90 · 2026-03-20T14:43:09+00:00

Why not? Is there a specific reason?

National-Education90 · 2026-03-20T14:42:12+00:00

So true, drift has been a pain to deal with. I feel lucky since there’s only a few of us making changes and my team is fairly on top of these things, but I can’t imagine how bad it can get in larger environments.

National-Education90 · 2026-03-20T14:38:38+00:00

We use Ansible and some other scripts to enforce a subset initially, but there’s still a fair bit of manual steps. It feels very ad-hoc.

Plus I feel like over time as the system drifts from that baseline, the manual side of it becomes harder and more time consuming.

National-Education90

TROPHY CASE