2025-02-04, 14:00–14:50, B.Con (Overflow + Main)
Modern IT environments require infrastructure testing to ensure that systems are reliable, secure, and functioning as expected. Without thorough testing, undetected issues can lead to system failures, security vulnerabilities, and significant downtime, which can be costly and damaging.
We share our experiences with tools such as testinfra, serverspec or goss to ensure the functionality of lab and customer environments. Framework such as DevSec can support achieving industry recognized security standards and benchmarks. Highlighting the challenges and best practices in testing multiple identically configured environments, the session provides insights in projects from the field.
In modern IT environments, it is crucial that deployed systems are reliable and functional. We present how we use tools like testinfra to ensure the functionality of lab environments that are regularly deployed and changed. We also share our key insights and best practices from the field in terms of achieving security compliance.
This session will give the participants an overview of different testing tools and their corresponding use cases. Also, we will focus on writing proper tests by the example of testinfra, serverspec and goss without neglecting simplicity. Participants will learn how to design tests that check the actual state of the system and receive practical tips for using Bash in combination with the proposed tools.
As security often requires quick actions and system landscapes are becoming more complex, automation has quickly become a key component. Without the usage of frameworks such as DevSec implementing security compliance across your fleet can be a daunting task.
In highly automated environments discovering configuration errors is challenging. Therefore infrastructure testing becomes important to detect configuration drift.
Leon Krass works as a System Engineer at SVA System Vertrieb Alexander GmbH. In his role, he consults clients from both the private and public sectors on various infrastructural and architectural topics. His favorite solutions to archive infrastructure automation and standardization include HashiCorp Vault, Kubernetes and Ansible.
https://www.linkedin.com/in/leonkrass/
Since 2006, Christian Stankowic has enjoyed working with the gray boxes that are supposed to help you solve problems that you wouldn't have had without them. He is particularly interested in Linux, virtualization and infrastructure as code. His favorite tools include: RHEL/CentOS, Foreman/Katello, SUSE Manager/Uyuni, Terraform and Ansible. He also collects ThinkPads and hosts the “FOCUS ON: Linux” podcast.