Hello there o/
I made an audit script for coincashew node installations.
This v1 collects information by running the following checks (the script doesn’t modify anything, of course !) :
- Environnement Variables
- Systemd cardano-node file verification and parsing
- Cardano startup script verification and parsing
- Node operation mode (Block Producer ? Relay ?)
- Topology mode (p2p enabled ?)
- Topology configuration
- SSHD config file parsing for hardening
- Null passwords check
- Key services running
- Firewalling rules extract
It can help SPOs improve the security of their servers, and check everything is fine.
It’s not perfect, i’m working on improvements to add features and more checks
Here is my repository :