{"id":9982,"date":"2015-07-01T11:00:18","date_gmt":"2015-07-01T02:00:18","guid":{"rendered":"http:\/\/www.creationline.com\/?p=9982"},"modified":"2015-07-01T10:16:16","modified_gmt":"2015-07-01T01:16:16","slug":"%e5%92%8c%e8%a8%b3-%e3%83%86%e3%82%b9%e3%83%88%e3%82%92%e9%80%9a%e3%81%97%e3%81%9f%e3%82%b7%e3%82%b9%e3%83%86%e3%83%a0%e8%80%83%e5%8f%a4%e5%ad%a6-getchef","status":"publish","type":"post","link":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/chef\/9982","title":{"rendered":"[\u548c\u8a33] \u30c6\u30b9\u30c8\u3092\u901a\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u8003\u53e4\u5b66 #getchef"},"content":{"rendered":"

\u672c\u7a3f\u306f System Archaeology Through Testing<\/a> (2015\/05\/15) \u306e\u548c\u8a33\u3067\u3059\u3002<\/p>\n

\u307f\u306a\u3055\u3093\u3054\u5b58\u77e5\u306e\u901a\u308a\u3001\u79c1\u306fChef\u306eAudit Mode\u3092\u4f7f\u3063\u3066Cookbook\u3067CIS\u30d9\u30f3\u30c1\u30de\u30fc\u30af<\/a> (\u8a33\u6ce8:\u548c\u8a33<\/a>)\u3092\u5b9f\u88c5\u3057\u307e\u3057\u305f\u3002\u6700\u8fd1\u3001Ubuntu 14.04\u306b\u5bfe\u5fdc<\/a>\u3057\u307e\u3057\u305f\u3002\u672c\u7a3f\u3067\u306f\u3001\u30d9\u30f3\u30c1\u30de\u30fc\u30af\u306e\u63a8\u5968\u3092\u80cc\u666f\u3068\u3057\u305f\u672c\u8cea\u7684\u306aOS\u30ec\u30d9\u30eb\u306e\u8a2d\u5b9a\u306b\u3064\u3044\u3066\u306e\u767a\u898b\u3068\u3001\u30e6\u30fc\u30b6\u304cChef\u3092\u4f7f\u3063\u3066\u6539\u5584\u3059\u308b\u65b9\u6cd5\u3092\u5171\u6709\u3057\u305f\u3044\u3068\u601d\u3044\u307e\u3059\u3002<\/p>\n

Ubuntu 14.04\u306eCIS\u30d9\u30f3\u30c1\u30de\u30fc\u30af\u306e13.7\u9805\u3067\u306f\u6b21\u306e\u3088\u3046\u306b\u8ff0\u3079\u3089\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n

\n\u89e3\u8aac: \u30b7\u30b9\u30c6\u30e0\u7ba1\u7406\u8005\u304c\u30e6\u30fc\u30b6\u306e\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u306b\u5b89\u5168\u306a\u30d1\u30fc\u30df\u30c3\u30b7\u30e7\u30f3\u3092\u8a2d\u5b9a\u3057\u3066\u3044\u308b\u9650\u308a\u3001\u30e6\u30fc\u30b6\u306f\u305d\u308c\u3089\u3092\u5bb9\u6613\u306b\u4e0a\u66f8\u304d\u3067\u304d\u307e\u3059\u3002\n<\/p><\/blockquote>\n

\n\u7406\u7531: \u30b0\u30eb\u30fc\u30d7\u307e\u305f\u306f\u3042\u3089\u3086\u308b\u30e6\u30fc\u30b6\u304c\u66f8\u304d\u8fbc\u307f\u53ef\u80fd\u306a\u30e6\u30fc\u30b6\u306e\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u306f\u3001\u60aa\u610f\u3042\u308b\u30e6\u30fc\u30b6\u306b\u3088\u3063\u3066\u4ed6\u306e\u30e6\u30fc\u30b6\u306e\u30c7\u30fc\u30bf\u3092\u76d7\u3093\u3060\u308a\u5909\u66f4\u3057\u305f\u308a\u3067\u304d\u3001\u4ed6\u306e\u30e6\u30fc\u30b6\u306e\u30b7\u30b9\u30c6\u30e0\u6a29\u9650\u3092\u596a\u3063\u305f\u308a\u3067\u304d\u307e\u3059\u3002\n<\/p><\/blockquote>\n

Chef\u306eAudit Mode\u3067\u3053\u308c\u3092\u5b9f\u88c5\u3059\u308b\u306b\u306f\u3001\u6b21\u306e\u3088\u3046\u306bControl\u3092\u8a18\u8ff0\u3057\u307e\u3059\u3002<\/p>\n


\ncontrol_group '13 Review User and Group Settings' do
\n let(:user_dirs) do
\n ud = {}
\n Etc::Passwd.each do |u|
\n unless (%w(root halt sync shutdown).include?(u.name) ||
\n u.shell =~ \/(\\\/sbin\\\/nologin|\\\/bin\\\/false)\/)
\n ud[u.name] = u.dir
\n end
\n end
\n ud
\n end<\/p>\n

control '13.7 Check Permissions on User Home Directories' do
\n it 'has correct permissions for all non-system user home directories' do
\n user_dirs.each_value do |user_dir|
\n if File.directory?(user_dir)
\n expect(file(user_dir)).to_not be_writable.by('group')
\n expect(file(user_dir)).to_not be_readable.by('others')
\n expect(file(user_dir)).to_not be_writable.by('others')
\n expect(file(user_dir)).to_not be_executable.by('others')
\n end
\n end
\n end
\n end
\nend
\n<\/code><\/p>\n

\u307b\u3089\u3001user_dirs<\/strong>\u306f\u3001\u3053\u306e\u30d5\u30a1\u30a4\u30eb<\/a>\u306eControl Group\u5185\u306e\u4ed6\u306e\u30c6\u30b9\u30c8\u3067\u3082\u4f7f\u308f\u308c\u3066\u3044\u307e\u3059\u3002\u3053\u308c\u306f\u300c\u975e\u30b7\u30b9\u30c6\u30e0\u300d\u30e6\u30fc\u30b6----\u7279\u306broot\u3001halt\u3001sync\u3001shutdown\u3001\u30b7\u30a7\u30eb\u304cnologin\u3084false\u306b\u8a2d\u5b9a\u3055\u308c\u3066\u3044\u308b\u30e6\u30fc\u30b6----\u306b\u5bfe\u3057\u3066\u306e\u307f\u3001\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u306e\u78ba\u8a8d\u3092\u3057\u3066\u3044\u307e\u3059\u3002Ubuntu 14.04\u306b\u5bfe\u3057\u3066\u516c\u958b\u3057\u3066\u3044\u308b\u300cbento\u300dbox\u3092\u4f7f\u3063\u3066\u307f\u307e\u3059\u3002\u6b8b\u5ff5\u306a\u304c\u3089\u3001\u30c7\u30d5\u30a9\u30eb\u30c8\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3067\u306f\u3001\u3053\u306e\u30c6\u30b9\u30c8\u306f\u5931\u6557\u3057\u307e\u3059\u3002<\/p>\n


\n1) 13 Review User and Group Settings 13.7 Check Permissions on User Home Directories has correct permissions for all non-system user home directories
\n Failure\/Error: expect(file(user_dir)).to_not be_writable.by('group')
\npected File \"\/var\/lib\/libuuid\" not to be writable
\n<\/code><\/p>\n

\u3053\u308c\u306f\u9a5a\u304f\u3079\u304d\u3053\u3068\u3067\u3057\u305f\u3002\u300c\u30b7\u30b9\u30c6\u30e0\u300d\u306e\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u304c\/var\/lib<\/strong>\u3060\u3063\u3066\uff1f \u3053\u306e\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u306f\u306a\u305c\u30b0\u30eb\u30fc\u30d7\u304c\u66f8\u304d\u8fbc\u307f\u53ef\u80fd\u306a\u306e\u3067\u3057\u3087\u3046\u304b\uff1f<\/p>\n


\n$ ls -ld \/var\/lib\/libuuid
\ndrwxrwsr-x 2 libuuid libuuid 4096 Apr 16 2014 \/var\/lib\/libuuid<\/p>\n

$ getent passwd | grep \/var\/lib\/libuuid
\nlibuuid:x:100:101::\/var\/lib\/libuuid:
\n<\/code><\/p>\n

\u3053\u308c\u306f\u4f4e\u3044UID\u3068GID\u3092\u6301\u3064\u3001libuuid<\/strong>\u300c\u30b7\u30b9\u30c6\u30e0\u300d\u30e6\u30fc\u30b6\u3067\u3059\u3002\u3057\u304b\u3057\u3001\u3053\u306e\u30e6\u30fc\u30b6\u3068\u3053\u306e\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3092\u4f5c\u6210\u3057\u305f\u306e\u306f\u4f55\u8005\u3067\u3057\u3087\u3046\u304b\uff1f libuuid\u30d1\u30c3\u30b1\u30fc\u30b8\u304c\u3053\u306e\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3092\u4f5c\u6210\u3057\u3001\u901a\u5e38Debian\u30d9\u30fc\u30b9\u306e\u30b7\u30b9\u30c6\u30e0\u306b\u5b58\u5728\u3057\u3066\u3044\u308b\u3082\u306e\u3067\u3059\u3002<\/p>\n


\n$ dpkg -S \/var\/lib\/libuuid
\ndpkg-query: no path found matching pattern \/var\/lib\/libuuid
\n<\/code><\/p>\n

\u3069\u306e\u30d1\u30c3\u30b1\u30fc\u30b8\u3082\u3053\u306e\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3092\u6240\u6709\u3057\u3066\u3044\u307e\u305b\u3093\u30022\u3064\u306e\u300cuuid\u300d\u30d1\u30c3\u30b1\u30fc\u30b8\u304c\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3055\u308c\u3066\u3044\u308b\u306e\u306b\u3002<\/p>\n


\n$ dpkg -l | grep uuid
\nii libuuid1:amd64 2.20.1-5.1ubuntu20 amd64 Universally Unique ID library
\nii uuid-runtime 2.20.1-5.1ubuntu20 amd64 runtime components for the Universally Unique ID library
\n<\/code><\/p>\n

\u3053\u308c\u3089\u306f\u3088\u308a\u5927\u304d\u306autil-linux<\/strong>\u30d1\u30c3\u30b1\u30fc\u30b8<\/a>\u306e\u4e00\u90e8\u3067\u3059\u3002\u3053\u308c\u3089\u306e\u30d1\u30c3\u30b1\u30fc\u30b8\u81ea\u4f53\u306f\u3053\u306e\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3092\u7ba1\u7406\u3057\u3066\u3044\u306a\u3044\u306e\u3067\u3001\u304a\u305d\u3089\u304fpostinst\u30b9\u30af\u30ea\u30d7\u30c8\u304c\u884c\u3063\u3066\u3044\u308b\u306f\u305a\u3067\u3059\u3002<\/p>\n


\n$ grep \/var\/lib\/libuuid \/var\/lib\/dpkg\/info\/*.postinst
\nlibuuid1:amd64.postinst: useradd -d \/var\/lib\/libuuid -K UID_MIN=$FIRST_SYSTEM_UID -K UID_MAX=$LAST_SYSTEM_UID -g libuuid libuuid
\nlibuuid1:amd64.postinst:mkdir -p \/var\/lib\/libuuid
\nlibuuid1:amd64.postinst:chown libuuid:libuuid \/var\/lib\/libuuid
\nlibuuid1:amd64.postinst:chmod 2775 \/var\/lib\/libuuid
\nlibuuid1:amd64.postrm: rm -rf \/var\/lib\/libuuid
\nuuid-runtime.postinst: Useradd -d \/var\/lib\/libuuid -K UID_MIN=1 -K UID_MAX=499 -g libuuid libuuid
\n<\/code><\/p>\n

libuuid1<\/strong>\u30d1\u30c3\u30b1\u30fc\u30b8\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3059\u308b\u3068\u3001libuuid<\/strong>\u30e6\u30fc\u30b6\u3092\u4f5c\u6210\u3057\u3001\u305d\u306e\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3092\u4f5c\u6210\u3057\u3001\u6240\u6709\u8005\u3068\u30b0\u30eb\u30fc\u30d7\u3092\u8a2d\u5b9a\u3057\u3001\u30d1\u30fc\u30df\u30c3\u30b7\u30e7\u30f3\u30922775<\/strong>\u306b\u8a2d\u5b9a\u3057\u307e\u3059\u3002\u3053\u306e\u30e2\u30fc\u30c9\u306f\u30b0\u30eb\u30fc\u30d7\u66f8\u304d\u8fbc\u307f\u53ef\u80fd\u306a\u306e\u3067\u3001Audit Control\u30c6\u30b9\u30c8\u304c\u5931\u6557\u3059\u308b\u539f\u56e0\u3068\u306a\u3063\u3066\u3044\u307e\u3059\u3002\u3053\u308c\u306f\u3081\u305a\u3089\u3057\u3044\u3053\u3068\u3067\u306f\u306a\u304f\u3001Ubuntu\/Debian\u306e\u4ed6\u306e\u30d1\u30c3\u30b1\u30fc\u30b8\u3084RHEL\u3084\u305d\u306e\u4ed6\u306e\u3082\u306e\u3067\u3082\u3001\u30d1\u30c3\u30b1\u30fc\u30b8\u306e\u305f\u3081\u306e\u30e6\u30fc\u30b6\u3092\u4f5c\u6210\u3057\u305f\u308a\u3001\u4f55\u304b\u30b5\u30fc\u30d3\u30b9\u3092\u63d0\u4f9b\u3057\u305f\u308a\u3001\u305d\u306e\u4ed6\u306e\u30b7\u30b9\u30c6\u30e0\u3078\u306e\u5909\u66f4\u3092\u884c\u3063\u305f\u308a\u3057\u307e\u3059\u3002<\/p>\n

\u3053\u306e\u767a\u898b\u3092\u3069\u306e\u3088\u3046\u306b\u4fee\u6b63\u3057\u305f\u3089\u3044\u3044\u3067\u3057\u3087\u3046\u304b\uff1f \u554f\u984c\u3042\u308b\u30d1\u30c3\u30b1\u30fc\u30b8\u3092\u524a\u9664\u3057\u3066\u3057\u307e\u3048\u308b\u3067\u3057\u3087\u3046\u304b\uff1f<\/p>\n


\n$ sudo dpkg --purge libuuid1 uuid-runtime
\ndpkg: dependency problems prevent removal of libuuid1:amd64:
\n rsyslog depends on libuuid1 (>= 2.16).
\n util-linux depends on libuuid1 (>= 2.16).
\n libcryptsetup4 depends on libuuid1 (>= 2.16).
\n e2fsprogs depends on libuuid1 (>= 2.16).
\n libblkid1:amd64 depends on libuuid1 (>= 2.16).
\n wget depends on libuuid1 (>= 2.16).
\n libxapian22 depends on libuuid1 (>= 2.16).
\n libparted0debian1:amd64 depends on libuuid1 (>= 2.16).<\/p>\n

dpkg: error processing package libuuid1:amd64 (--purge):
\n dependency problems - not removing
\n(Reading database ... 48682 files and directories currently installed.)
\nRemoving uuid-runtime (2.20.1-5.1ubuntu20) ...
\nPurging configuration files for uuid-runtime (2.20.1-5.1ubuntu20) ...
\nProcessing triggers for man-db (2.6.7.1-1) ...
\nErrors were encountered while processing:
\n libuuid1:amd64
\n<\/code><\/p>\n

\u307b\u3089\u3001uuid-runtime\u306f\u304d\u308c\u3044\u306b\u524a\u9664\u3067\u304d\u307e\u3057\u305f\u304c\u3001\u3053\u306e\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3092\u524a\u9664\u3059\u308bpostrm\u3092\u6301\u3063\u3066\u3044\u308blibuuid1<\/strong>\u306f\u4ed6\u306e\u5fc5\u9808\u30d1\u30c3\u30b1\u30fc\u30b8\u304b\u3089\u4f9d\u5b58\u3055\u308c\u3066\u3044\u307e\u3059\u3002\u3053\u306e\u70b9\u306b\u304a\u3044\u3066\u3001uuid-runtime\u30d1\u30c3\u30b1\u30fc\u30b8\u3092\u524a\u9664\u3057\u305f\u3060\u3051\u3067\u306fControl (13.7)\u3092\u30d1\u30b9\u3067\u304d\u307e\u305b\u3093\u3002\u53d6\u308a\u3046\u308b\u4fee\u6b63\u306f\u6b21\u306e\u901a\u308a\u3067\u3059\u3002<\/p>\n

    \n
  1. libuuid\u30e6\u30fc\u30b6\u3068\u30b0\u30eb\u30fc\u30d7\u3092\u524a\u9664\u3057\u307e\u3059\u3002\u306a\u305clibuuid1\u304c\u3053\u306e\u30e6\u30fc\u30b6\u3092\u4f5c\u3063\u305f\u306e\u304b\u306f\u3063\u304d\u308a\u3057\u3066\u3044\u306a\u3044\u306e\u3067\u3001\u3044\u304f\u3064\u304b\u306e\u30e9\u30a4\u30d6\u30e9\u30ea\u306b\u554f\u984c\u3092\u8d77\u3053\u3057\u305d\u3046\u3067\u3059\u3002<\/li>\n
  2. \u554f\u984c\u306e\u30d1\u30fc\u30df\u30c3\u30b7\u30e7\u30f3\u3067\u3042\u308bg+ws<\/strong>\u3092\u524a\u9664\u3059\u308b\u305f\u3081\u306b\u3001\/var\/lib\/libuuid<\/strong>\u306e\u30d1\u30fc\u30df\u30c3\u30b7\u30e7\u30f3\u3092\u5909\u66f4\u3057\u307e\u3059\u3002<\/li>\n
  3. libuuid\u30e6\u30fc\u30b6\u306e\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3092\u30b0\u30eb\u30fc\u30d7\u304c\u66f8\u304d\u8fbc\u307f\u3067\u304d\u306a\u3044\u30d1\u30fc\u30df\u30c3\u30b7\u30e7\u30f3\u306e\u3069\u3053\u304b\u5225\u306e\u3068\u3053\u308d\u306b\u5909\u66f4\u3057\u307e\u3059\u3002\/var\/lib<\/strong>\u3068\u3044\u3046\u3053\u3068\u306f\u3001libuuid\u306e\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u306b\u76f4\u63a5\u66f8\u304d\u8fbc\u3080\u30d7\u30ed\u30b0\u30e9\u30e0\u306b\u5bfe\u3057\u3066\u3001\u4e88\u671f\u305b\u306c\u526f\u4f5c\u7528\u3092\u8d77\u3053\u3057\u305d\u3046\u3067\u3059\u3002<\/li>\n
  4. libuuid\u30e6\u30fc\u30b6\u3092\u3001root\u3001halt\u3001sync\u3001shutdown\u30e6\u30fc\u30b6\u3068\u540c\u3058\u306b\u306a\u308b\u3088\u3046\u306b\u3001Audit Mode\u306e\u30c6\u30b9\u30c8\u3092\u5909\u66f4\u3057\u307e\u3059\u3002<\/li>\n
  5. libuuid\u30e6\u30fc\u30b6\u306b\u975e\u30ed\u30b0\u30a4\u30f3\u30b7\u30a7\u30eb\u3092\u8a2d\u5b9a\u3057\u307e\u3059\u3002Ubuntu 14.04\u306b\u5bfe\u3059\u308b\u3053\u306e\u63d0\u6848<\/a>\u3092\u30d0\u30b0\u30ec\u30dd\u30fc\u30c8\u3057\u307e\u3057\u305f\u3002\u6700\u8fd1\u30d0\u30fc\u30b8\u30e7\u30f38\u304c\u30ea\u30ea\u30fc\u30b9\u3055\u308c\u305fDebian\u7d4c\u7531\u3067\u3001Ubuntu\u306e\u5f8c\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u3067\u4fee\u6b63\u3055\u308c\u308b\u3067\u3057\u3087\u3046\u3002<\/li>\n<\/ol>\n

    audit-cis Cookbook\u81ea\u4f53\u306fAudit Mode\u306e\u30c6\u30b9\u30c8\u3092\u5b9f\u88c5\u3057\u3066\u3044\u308b\u3060\u3051\u306a\u306e\u3067\u3001\u3053\u306e\u767a\u898b\u306b\u5bfe\u3059\u308b\u4fee\u6b63\u306f\u3042\u308a\u307e\u305b\u3093\u3002\u30a8\u30f3\u30c9\u30e6\u30fc\u30b6\u304c\u81ea\u8eab\u306eCookbook\u306b\u304a\u3044\u3066\u4fee\u6b63\u3057\u307e\u3057\u3087\u3046\u3002<\/p>\n


    \nuser 'libuuid' do
    \n shell '\/bin\/false'
    \n home '\/var\/lib\/libuuid'
    \n system true
    \nend
    \n<\/code><\/p>\n

    \u65b0\u3057\u304f\u516c\u958b\u3057\u305flibuuid-user<\/a> Cookbook\u3067\u306f\u3001libuuid<\/strong>\u30e6\u30fc\u30b6\u3092\u7ba1\u7406\u3059\u308b\u3053\u3068\u3067\u3053\u306e\u554f\u984c\u3092\u4fee\u6b63\u3057\u30012\u3064\u306e\u691c\u8a3c\u3082\u63d0\u4f9b\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n

      \n
    1. Audit Mode\u3092\u4f7f\u3063\u3066\u30e6\u30fc\u30b6\u306e\u30b7\u30a7\u30eb\u304c\/bin\/false<\/strong>\u3067\u3042\u308b\u3053\u3068\u3092\u691c\u8a3c\u3057\u307e\u3059\u3002<\/li>\n
    2. Serverspec\u3092\u4f7f\u3063\u3066root\u30e6\u30fc\u30b6\u304csu\u3067libuuid\u30e6\u30fc\u30b6\u306b\u306a\u308c\u306a\u3044\u3053\u3068\u3092\u691c\u8a3c\u3057\u307e\u3059\u3002<\/li>\n<\/ol>\n

      postinst\u306flibuuid\u30e6\u30fc\u30b6\u306eUID\u3084libuuid\u30b0\u30eb\u30fc\u30d7\u306eGID\u3092\u6307\u5b9a\u3057\u3066\u3044\u306a\u3044\u3053\u3068\u306b\u3001\u8ab0\u3082\u8a00\u53ca\u3057\u3066\u3044\u306a\u3044\u3053\u3068\u306b\u6ce8\u610f\u304c\u5fc5\u8981\u3067\u3059\u3002\u3053\u306e\u30c6\u30b9\u30c8\u3067\u306f\u3001\u524d\u8ff0\u306e\u901a\u308auuid-runtime<\/strong>\u30d1\u30c3\u30b1\u30fc\u30b8\u3092\u524a\u9664\u3057\u3001\u518d\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3057\u3066\u30e6\u30fc\u30b6\u3092\u518d\u4f5c\u6210\u3057\u3066\u3044\u307e\u3059\u3002UID\u304c\u7570\u306a\u3063\u3066\u3044\u308b\u306e\u306b\u3001\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u304c\u5909\u66f4\u306a\u3057\u3067\u65e2\u306b\u5b58\u5728\u3057\u3066\u3044\u307e\u3059\u3002\u3053\u308c\u306fControl\u300c13.13 \u30e6\u30fc\u30b6\u306e\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u306e\u6240\u6709\u8005\u306e\u78ba\u8a8d\u300d<\/a>\u304c\u5931\u6557\u3059\u308b\u539f\u56e0\u3068\u306a\u308a\u307e\u3059\u3002\u524d\u8ff0\u306elibuuid-user Cookbook\u306eRecipe\u306f\u3001\u3053\u306e\u666e\u901a\u3067\u306a\u3044\u72b6\u6cc1\u306b\u3088\u3063\u3066\u8d77\u304d\u308b\u554f\u984c\u3092\u53d6\u308a\u6271\u3044\u307e\u305b\u3093\u3002\u3057\u304b\u3057\u3001\u524d\u8ff0\u306e\u53d6\u308a\u3046\u308b\u4fee\u6b63\u624b\u9806\u306e\u4e00\u89a7\u3092\u8003\u616e\u3059\u308b\u3068\u304d\u306b\u3001\u6c17\u304c\u3064\u304f\u4f55\u304b\u304c\u3042\u308b\u3067\u3057\u3087\u3046\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"

      \u672c\u7a3f\u306f System Archaeology Through Testing (2015\/05\/15) \u306e\u548c\u8a33\u3067\u3059\u3002 \u307f\u306a\u3055\u3093\u3054\u5b58\u77e5\u306e\u901a\u308a\u3001\u79c1\u306fChef\u306eAudit Mode\u3092\u4f7f\u3063\u3066Cookbook\u3067CIS\u30d9\u30f3\u30c1\u30de\u30fc\u30af […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"content-type":"","footnotes":""},"categories":[36],"tags":[],"class_list":["post-9982","post","type-post","status-publish","format-standard","hentry","category-chef"],"acf":[],"yoast_head":"\n[\u548c\u8a33] \u30c6\u30b9\u30c8\u3092\u901a\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u8003\u53e4\u5b66 #getchef - Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3<\/title>\n<meta name=\"description\" content=\"Chef |\u672c\u7a3f\u306f System Archaeology Through Testing (2015\/05\/15) \u306e\u548c\u8a33\u3067\u3059\u3002\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.creationline.com\/tech-blog\/9982\" \/>\n<meta property=\"og:locale\" content=\"ja_JP\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"[\u548c\u8a33] \u30c6\u30b9\u30c8\u3092\u901a\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u8003\u53e4\u5b66 #getchef - Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3\" \/>\n<meta property=\"og:description\" content=\"Chef |\u672c\u7a3f\u306f System Archaeology Through Testing (2015\/05\/15) \u306e\u548c\u8a33\u3067\u3059\u3002\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.creationline.com\/tech-blog\/9982\" \/>\n<meta property=\"og:site_name\" content=\"Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/creationline\" \/>\n<meta property=\"article:published_time\" content=\"2015-07-01T02:00:18+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2026\/01\/screenshot.png\" \/>\n\t<meta property=\"og:image:width\" content=\"470\" \/>\n\t<meta property=\"og:image:height\" content=\"394\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Daisuke Higuchi\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@creationline\" \/>\n<meta name=\"twitter:site\" content=\"@creationline\" \/>\n<meta name=\"twitter:label1\" content=\"\u57f7\u7b46\u8005\" \/>\n\t<meta name=\"twitter:data1\" content=\"Daisuke Higuchi\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u63a8\u5b9a\u8aad\u307f\u53d6\u308a\u6642\u9593\" \/>\n\t<meta name=\"twitter:data2\" content=\"3\u5206\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.creationline.com\/tech-blog\/9982#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.creationline.com\/tech-blog\/9982\"},\"author\":{\"name\":\"Daisuke Higuchi\",\"@id\":\"https:\/\/www.creationline.com\/tech-blog\/#\/schema\/person\/16f1373831fb6fd17387f16ae1195206\"},\"headline\":\"[\u548c\u8a33] \u30c6\u30b9\u30c8\u3092\u901a\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u8003\u53e4\u5b66 #getchef\",\"datePublished\":\"2015-07-01T02:00:18+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.creationline.com\/tech-blog\/9982\"},\"wordCount\":105,\"articleSection\":[\"Chef\"],\"inLanguage\":\"ja\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.creationline.com\/tech-blog\/9982\",\"url\":\"https:\/\/www.creationline.com\/tech-blog\/9982\",\"name\":\"[\u548c\u8a33] \u30c6\u30b9\u30c8\u3092\u901a\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u8003\u53e4\u5b66 #getchef - Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3\",\"isPartOf\":{\"@id\":\"https:\/\/www.creationline.com\/tech-blog\/#website\"},\"datePublished\":\"2015-07-01T02:00:18+00:00\",\"author\":{\"@id\":\"https:\/\/www.creationline.com\/tech-blog\/#\/schema\/person\/16f1373831fb6fd17387f16ae1195206\"},\"description\":\"Chef |\u672c\u7a3f\u306f System Archaeology Through Testing (2015\/05\/15) \u306e\u548c\u8a33\u3067\u3059\u3002\",\"breadcrumb\":{\"@id\":\"https:\/\/www.creationline.com\/tech-blog\/9982#breadcrumb\"},\"inLanguage\":\"ja\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.creationline.com\/tech-blog\/9982\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.creationline.com\/tech-blog\/9982#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"HOME\",\"item\":\"https:\/\/www.creationline.com\/tech-blog\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\u30af\u30e9\u30a6\u30c9\u30cd\u30a4\u30c6\u30a3\u30d6\",\"item\":\"https:\/\/www.creationline.com\/tech-blog\/cloudnative\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Chef\",\"item\":\"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/chef\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"[\u548c\u8a33] \u30c6\u30b9\u30c8\u3092\u901a\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u8003\u53e4\u5b66 #getchef\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.creationline.com\/tech-blog\/#website\",\"url\":\"https:\/\/www.creationline.com\/tech-blog\/\",\"name\":\"Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3\",\"description\":\"\u30a2\u30b8\u30e3\u30a4\u30eb\uff06DevOps\u3001\u30af\u30e9\u30a6\u30c9\u30cd\u30a4\u30c6\u30a3\u30d6\u3001AI\uff06LLM\u306e\u5148\u7aef\u6280\u8853\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.creationline.com\/tech-blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"ja\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.creationline.com\/tech-blog\/#\/schema\/person\/16f1373831fb6fd17387f16ae1195206\",\"name\":\"Daisuke Higuchi\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"ja\",\"@id\":\"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2023\/08\/d-higuchi-wp-icon-230x230.png\",\"url\":\"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2023\/08\/d-higuchi-wp-icon-230x230.png\",\"contentUrl\":\"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2023\/08\/d-higuchi-wp-icon-230x230.png\",\"caption\":\"Daisuke Higuchi\"},\"description\":\"Chef\u30fbDocker\u30fbMirantis\u88fd\u54c1\u306a\u3069\u306e\u6280\u8853\u8981\u7d20\u306b\u52a0\u3048\u3066\u3001\u4f1a\u8b70\u306e\u9032\u3081\u65b9\u30fb\u6587\u7ae0\u306e\u66f8\u304d\u65b9\u306a\u3069\u306e\u696d\u52d9\u6539\u5584\u306b\u3082\u53d6\u308a\u7d44\u3093\u3067\u3044\u307e\u3059\u3002\u300cChef\u6d3b\u7528\u30ac\u30a4\u30c9\u300d\u5171\u8457\u306e\u307b\u304b\u3001Debian Official Developer\u3082\u3084\u3063\u3066\u3044\u307e\u3059\u3002\",\"url\":\"https:\/\/www.creationline.com\/tech-blog\/author\/higuchi\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"[\u548c\u8a33] \u30c6\u30b9\u30c8\u3092\u901a\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u8003\u53e4\u5b66 #getchef - Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3","description":"Chef |\u672c\u7a3f\u306f System Archaeology Through Testing (2015\/05\/15) \u306e\u548c\u8a33\u3067\u3059\u3002","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.creationline.com\/tech-blog\/9982","og_locale":"ja_JP","og_type":"article","og_title":"[\u548c\u8a33] \u30c6\u30b9\u30c8\u3092\u901a\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u8003\u53e4\u5b66 #getchef - Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3","og_description":"Chef |\u672c\u7a3f\u306f System Archaeology Through Testing (2015\/05\/15) \u306e\u548c\u8a33\u3067\u3059\u3002","og_url":"https:\/\/www.creationline.com\/tech-blog\/9982","og_site_name":"Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3","article_publisher":"https:\/\/www.facebook.com\/creationline","article_published_time":"2015-07-01T02:00:18+00:00","og_image":[{"width":470,"height":394,"url":"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2026\/01\/screenshot.png","type":"image\/png"}],"author":"Daisuke Higuchi","twitter_card":"summary_large_image","twitter_creator":"@creationline","twitter_site":"@creationline","twitter_misc":{"\u57f7\u7b46\u8005":"Daisuke Higuchi","\u63a8\u5b9a\u8aad\u307f\u53d6\u308a\u6642\u9593":"3\u5206"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.creationline.com\/tech-blog\/9982#article","isPartOf":{"@id":"https:\/\/www.creationline.com\/tech-blog\/9982"},"author":{"name":"Daisuke Higuchi","@id":"https:\/\/www.creationline.com\/tech-blog\/#\/schema\/person\/16f1373831fb6fd17387f16ae1195206"},"headline":"[\u548c\u8a33] \u30c6\u30b9\u30c8\u3092\u901a\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u8003\u53e4\u5b66 #getchef","datePublished":"2015-07-01T02:00:18+00:00","mainEntityOfPage":{"@id":"https:\/\/www.creationline.com\/tech-blog\/9982"},"wordCount":105,"articleSection":["Chef"],"inLanguage":"ja"},{"@type":"WebPage","@id":"https:\/\/www.creationline.com\/tech-blog\/9982","url":"https:\/\/www.creationline.com\/tech-blog\/9982","name":"[\u548c\u8a33] \u30c6\u30b9\u30c8\u3092\u901a\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u8003\u53e4\u5b66 #getchef - Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3","isPartOf":{"@id":"https:\/\/www.creationline.com\/tech-blog\/#website"},"datePublished":"2015-07-01T02:00:18+00:00","author":{"@id":"https:\/\/www.creationline.com\/tech-blog\/#\/schema\/person\/16f1373831fb6fd17387f16ae1195206"},"description":"Chef |\u672c\u7a3f\u306f System Archaeology Through Testing (2015\/05\/15) \u306e\u548c\u8a33\u3067\u3059\u3002","breadcrumb":{"@id":"https:\/\/www.creationline.com\/tech-blog\/9982#breadcrumb"},"inLanguage":"ja","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.creationline.com\/tech-blog\/9982"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.creationline.com\/tech-blog\/9982#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"HOME","item":"https:\/\/www.creationline.com\/tech-blog"},{"@type":"ListItem","position":2,"name":"\u30af\u30e9\u30a6\u30c9\u30cd\u30a4\u30c6\u30a3\u30d6","item":"https:\/\/www.creationline.com\/tech-blog\/cloudnative"},{"@type":"ListItem","position":3,"name":"Chef","item":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/chef"},{"@type":"ListItem","position":4,"name":"[\u548c\u8a33] \u30c6\u30b9\u30c8\u3092\u901a\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u8003\u53e4\u5b66 #getchef"}]},{"@type":"WebSite","@id":"https:\/\/www.creationline.com\/tech-blog\/#website","url":"https:\/\/www.creationline.com\/tech-blog\/","name":"Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3","description":"\u30a2\u30b8\u30e3\u30a4\u30eb\uff06DevOps\u3001\u30af\u30e9\u30a6\u30c9\u30cd\u30a4\u30c6\u30a3\u30d6\u3001AI\uff06LLM\u306e\u5148\u7aef\u6280\u8853","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.creationline.com\/tech-blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"ja"},{"@type":"Person","@id":"https:\/\/www.creationline.com\/tech-blog\/#\/schema\/person\/16f1373831fb6fd17387f16ae1195206","name":"Daisuke Higuchi","image":{"@type":"ImageObject","inLanguage":"ja","@id":"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2023\/08\/d-higuchi-wp-icon-230x230.png","url":"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2023\/08\/d-higuchi-wp-icon-230x230.png","contentUrl":"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2023\/08\/d-higuchi-wp-icon-230x230.png","caption":"Daisuke Higuchi"},"description":"Chef\u30fbDocker\u30fbMirantis\u88fd\u54c1\u306a\u3069\u306e\u6280\u8853\u8981\u7d20\u306b\u52a0\u3048\u3066\u3001\u4f1a\u8b70\u306e\u9032\u3081\u65b9\u30fb\u6587\u7ae0\u306e\u66f8\u304d\u65b9\u306a\u3069\u306e\u696d\u52d9\u6539\u5584\u306b\u3082\u53d6\u308a\u7d44\u3093\u3067\u3044\u307e\u3059\u3002\u300cChef\u6d3b\u7528\u30ac\u30a4\u30c9\u300d\u5171\u8457\u306e\u307b\u304b\u3001Debian Official Developer\u3082\u3084\u3063\u3066\u3044\u307e\u3059\u3002","url":"https:\/\/www.creationline.com\/tech-blog\/author\/higuchi"}]}},"_links":{"self":[{"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/posts\/9982","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/comments?post=9982"}],"version-history":[{"count":0,"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/posts\/9982\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/media?parent=9982"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/categories?post=9982"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/tags?post=9982"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}