Augeas module
Language
The module's DSL is an extension of the Augeas DSL with some Rudder-specific
features.
The specific features are audit-oriented, and implemented with a new check keyword.
Comparisons
The supported comparison types are:
Type checks
The known types are:
ipipv4ipv6ip_rangeiv4_rangeipv6_rangebytesintuintfloatbool
Password checks
These checks allow checking for password strength and compliance with policies. They never output the password itself.
password tluds
The password tluds directive is used to define a password policy in Rudder, based on a minimal number
of character classes.
- total length
- number of lowercase letters
- number of uppercase letters
- number of digits
- number of special characters
Example:
check /files/etc/config/pass tluds 8 1 1 1 1
password score
The password score directive is used to check the strength of a password based on a scoring system.
It uses the zxcvbn algorithm to compute the score, and outputs a value between 0 and 4.