I haven't tried this yet, but I love the idea of it! ShellCheck [0] is a similar... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		TheAceOfHearts on May 11, 2017 \| parent \| context \| favorite \| on: Gixy: Nginx Configuration Static Analyzer I haven't tried this yet, but I love the idea of it! ShellCheck [0] is a similar tool for shell scripts. I'd love something similar for common configurations like ssh servers, apache, etc. For many of these tools there's objectively wrong configurations, where you'd only use certain settings for legacy reasons. But it's not always clear for newcomers. [0] https://www.shellcheck.net

viraptor on May 11, 2017 [–]

There are a few solutions for that. I worked on https://github.com/HewlettPackard/reconbf another popular one is https://github.com/CISOfy/lynis

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact