Security hardening using infrastructure as code
Damir Regvart (),
Jasmin Redžepagić (),
Adriano Bubnjek () and
Robert Petrunić ()
Edelweiss Applied Science and Technology, 2025, vol. 9, issue 2, 1147-1155
Abstract:
This paper examines Infrastructure as Code (IaC) with Ansible to automate and enhance security hardening in Linux environments. As IT infrastructures grow more complex, manual security configurations become error-prone, inefficient, and inconsistent. IaC addresses these issues by allowing organizations to define and deploy infrastructure configurations as code, ensuring a consistent security baseline. Focusing on key settings for Firewalld, SELinux, and SSH, the study demonstrates how Ansible enforces these configurations in a scalable, repeatable, and resilient manner. Results show that using Ansible for security hardening reduces deployment times, minimizes manual errors, and ensures uniform security standards across diverse systems. This research offers a practical foundation for organizations seeking to improve their cybersecurity posture, emphasizing IaC's transformative potential in achieving secure, efficient, and adaptable infrastructure management.
Keywords: Ansible; Security hardening; Configuration management; Linux automation. (search for similar items in EconPapers)
Date: 2025
References: Add references at CitEc
Citations:
Downloads: (external link)
https://learning-gate.com/index.php/2576-8484/article/view/4697/1789 (application/pdf)
Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.
Export reference: BibTeX
RIS (EndNote, ProCite, RefMan)
HTML/Text
Persistent link: https://EconPapers.repec.org/RePEc:ajp:edwast:v:9:y:2025:i:2:p:1147-1155:id:4697
Access Statistics for this article
More articles in Edelweiss Applied Science and Technology from Learning Gate
Bibliographic data for series maintained by Melissa Fernandes ().