Reading Notes: “goss, a simple and fast server authentication tool”

Leave a Comment / 01/06/2022 /

Original link: https://www.hwchiu.com/read-notes-56.html

Title: “goss, a simple and fast server authentication tool”
Category: others
Link: https://github.com/aelsabbahy/goss

What I want to introduce today is a verification tool goss. The purpose of this tool is very simple. It allows system administrators to write Unit Testing for services on the machine through YAML.
When would you need to use this type of tool?

For example, when you deployed a brand new machine today (after manual/automatic), you installed the following software

  1. sshd
  2. nginx
  3. docker
  4. ….

At the same time, you have also created some users in advance according to your needs. The most intuitive way for you to verify whether these software and related settings are completed is to manually check, one by one, the services and settings are manually checked.

The purpose of the goss software is to let you use YAML to write all the services you want to verify, which can be used to verify the contents of

  1. user (uid, gid, home, shell)
  2. Package: Whether the system has installed packages through rpm, de, pacman, apk, etc.
  3. File: Check if file folder exists
  4. Addr: used to check if $IP:$Port can be accessed
  5. Port: used to check if $Port is open
  6. DNS: Used to check if a specific DNS can be resolved
  7. Process: Check if a specific Process is open
  8. Mount: Check is Mount Point and related parameters
  9. Kernel Param: Check Kernel Param
  10. …Wait

In addition to the basic usage of Goss, some people also stack dgoss based on its concept to verify the running status of Docker, and there is a similar dcgoss that is used for docker-compose.
Of course, many people will use Ansible to automate deployment, and Ansible itself actually has a related testing framework that can be used to test the deployment results, so which type of tool to use to verify the status of the server level depends on the team’s needs and existing It depends on the process, and there is no single tool usage.

personal information

I currently have Kubernetes-related courses on the Hiskio platform. Interested people are welcome to refer and share, which contains my various ideas about Kubernetes from the bottom to the actual combat.

For details, please refer to the online course details: https://course.hwchiu.com/

In addition, please click like to join my personal fan page, which will regularly share various articles, some are translated articles, and some are original articles, mainly focusing on the CNCF field
https://www.facebook.com/technologynoteniu

If you use Telegram, you can also subscribe to the following channels, where I will regularly push notifications of various articles
https://t.me/technologynote

Your donation will give me the motivation to grow my article

This article is reprinted from: https://www.hwchiu.com/read-notes-56.html
This site is for inclusion only, and the copyright belongs to the original author.

Leave a Comment