Table of Contents
System Integrity Management Platform (SIMP)
IMPORTANT
This project is only approved for material that is completely releasable to the public.
Please do not upload material that has not been approved for public release.
Quickstart
If you are looking to use the SIMP materials on an existing system, instructions are available in the SIMP Documentation.
SIMP product documentation is housed at ReadTheDocs.org.
Getting Help
For the latest information on getting help with SIMP, please see the help section of the documentation
Latest Releases
NOTE
Release packages are hosted on PackageCloud
Release Tarballs and ISOs (CentOS powered) can be found at https://simp-project.com
There is also a RPM archive availble.
Where's the code?!
Please get the most up-to-date information from the SIMP Project website.
This site will be updated to reflect the latest releases for those that want a single notification source but all artifact information will be found on the main project website.
Disclaimer
This Work is provided "as is." Any express or implied warranties, including but not limited to, the implied warranties of merchantability and fitness for a particular purpose are disclaimed. In no event shall the United States Government be liable for any direct, indirect, incidental, special, exemplary or consequential damages (including, but not limited to, procurement of substitute goods or services, loss of use, data or profits, or business interruption) however caused and on any theory of liability, whether in contract, strict liability, or tort (including negligence or otherwise) arising in any way out of the use of this Guidance, even if advised of the possibility of such damage.
The User of this Work agrees to hold harmless and indemnify the United States Government, its agents, and employees from every claim or liability (whether in tort or in contract), including attorneys' fees, court costs, and expenses, arising in direct consequence of Recipient's use of the item, including, but not limited to, claims or liabilities made for injury to or death of personnel of User or third parties, damage to or destruction of property of User or third parties, and infringement or other violations of intellectual property or technical data rights.
Nothing in this Work is intended to constitute an endorsement, explicit or implied, by the US Government of any particular manufacturer's product or service.
Copyrights
All materials are copyright their respective owners unless otherwise noted.
Per Section 105 of the Copyright Act of 1976, these works are not entitled to domestic copyright protection under US Federal law.
The US Government retains the right to pursue copyright protections outside of the United States.
The United States Government has unlimited rights in this software and all derivatives thereof, pursuant to the contracts under which it was developed and the License under which it falls.
Released under the Apache License, Version 2.
Contributions
Please see CONTRIBUTING for information on how to contribute to this project.
Component Repositories
Last, but not least, this is the list of all SIMP component modules as hosted under the SIMP Project.
RPMs
Rolling RPM releases are hosted on PackageCloud. You can find version snapshots of RPMs in the RPM archive.
Look for the repository that is associated with the version of SIMP that you
wish to build. The latest packages can always be found in the .X
repositories. For example, the latest 6 series packages would be found in the
6.X repository.
Please make sure that the RPMs are properly signed with the GPG key listed below.
GPG Signing Key
All officially released RPMs are signed with the SIMP Release Key
* ID: 7DA6F216 * Fingerprint: 103B 439D ADF4 AE61 FA69 98AF EE8C 77AF 7DA6 F216
A SIMP 6 Specific GPG signing key has been added with the following attributes:
* ID: 7667220F * Fingerprint: F21E A54D 9C5A A9A5 AF7F E002 1B5B 16A2 7667 220F
Build Repositories
Skeleton Repositories
The SIMP project has skeleton repositories to help users get up and running quickly with the expected layout and testing framework for SIMP artifacts.
Helper Rubygems
- rubygem-simp-beaker-helpers
- rubygem-simp-build-helpers
- rubygem-simp-cli
- rubygem-simp-metadata
- rubygem-simp-module-repoclosure
- rubygem-simp-processgraph
- rubygem-simp-rake-helpers
- rubygem-simp-release-tools
- rubygem-simp-rspec-puppet-facts
- rubygem-simp-spec-helpers
InSpec Profiles
The SIMP project is starting to host various InSpec profiles that are used to validate that various modules comply with target policies.
Monitoring Dashboards
SIMP Repositories
- pupmod-simp-acpid
- pupmod-simp-activemq
- pupmod-simp-aide
- pupmod-simp-at
- pupmod-simp-auditd
- pupmod-simp-autofs
- pupmod-simp-chkrootkit
- pupmod-simp-clamav
- pupmod-simp-compliance_markup
- pupmod-simp-cron
- pupmod-simp-dconf
- pupmod-simp-deferred_resources
- pupmod-simp-dhcp
- pupmod-simp-dirtycow
- pupmod-simp-fips
- pupmod-simp-foreman
- pupmod-simp-freeradius
- pupmod-simp-ganglia
- pupmod-simp-gdm
- pupmod-simp-gnome
- pupmod-simp-haveged
- pupmod-simp-ima
- pupmod-simp-incron
- pupmod-simp-iptables
- pupmod-simp-issue
- pupmod-simp-jenkins
- pupmod-simp-journald
- pupmod-simp-krb5
- pupmod-simp-libkv
- pupmod-simp-libreswan
- pupmod-simp-libvirt
- pupmod-simp-logrotate
- pupmod-simp-mate
- pupmod-simp-mcafee
- pupmod-simp-mozilla
- pupmod-simp-named
- pupmod-simp-network
- pupmod-simp-nfs
- pupmod-simp-nscd
- pupmod-simp-ntpd
- pupmod-simp-oddjob
- pupmod-simp-openscap
- pupmod-simp-pam
- pupmod-simp-pki
- pupmod-simp-polkit
- pupmod-simp-postfix
- pupmod-simp-pupmod
- pupmod-simp-resolv
- pupmod-simp-rsync
- pupmod-simp-rsyslog
- pupmod-simp-selinux
- pupmod-simp-simp
- pupmod-simp-simp_apache
- pupmod-simp-simp_banners
- pupmod-simp-simp_docker
- pupmod-simp-simp_elasticsearch
- pupmod-simp-simp_gitlab
- pupmod-simp-simp_grafana
- pupmod-simp-simp_ipa
- pupmod-simp-simp_logstash
- pupmod-simp-simp_nfs
- pupmod-simp-simp_openldap
- pupmod-simp-simp_options
- pupmod-simp-simp_pki_service
- pupmod-simp-simp_rsyslog
- pupmod-simp-simp_snmpd
- pupmod-simp-simpcat
- pupmod-simp-simplib
- pupmod-simp-site
- pupmod-simp-snmpd
- pupmod-simp-ssh
- pupmod-simp-sssd
- pupmod-simp-stunnel
- pupmod-simp-sudo
- pupmod-simp-sudosh
- pupmod-simp-svckill
- pupmod-simp-swap
- pupmod-simp-sysctl
- pupmod-simp-tcpwrappers
- pupmod-simp-tftpboot
- pupmod-simp-timezone
- pupmod-simp-tlog
- pupmod-simp-tpm
- pupmod-simp-tpm2
- pupmod-simp-tuned
- pupmod-simp-upstart
- pupmod-simp-useradd
- pupmod-simp-vnc
- pupmod-simp-vsftpd
- pupmod-simp-x2go
- pupmod-simp-xinetd
Forked Repositories
- augeasproviders
- augeasproviders_apache
- augeasproviders_base
- augeasproviders_core
- augeasproviders_grub
- augeasproviders_mounttab
- augeasproviders_nagios
- augeasproviders_pam
- augeasproviders_postgresql
- augeasproviders_puppet
- augeasproviders_shellvar
- augeasproviders_ssh
- augeasproviders_sysctl
- best-practices
- binford2k-node_encrypt
- local_security_policy
- pdk-templates
- pupmod-puppetlabs-augeas_core
- pupmod-puppetlabs-cron_core
- pupmod-puppetlabs-hocon
- pupmod-puppetlabs-host_core
- pupmod-puppetlabs-mount_core
- pupmod-puppetlabs-ruby_task_helper
- pupmod-puppetlabs-selinux_core
- pupmod-puppetlabs-sshkeys_core
- pupmod-puppetlabs-translate
- pupmod-puppetlabs-yumrepo_core
- pupmod-saz-locales
- pupmod-treydock-kdump
- pupmod-voxpupuli-posix_acl
- pupmod-voxpupuli-selinux
- puppet-archive
- puppet-auditpol
- puppet-consul
- puppet-datacat
- puppet-docs
- puppet-elasticsearch
- puppet-etcd
- puppet-filebeat
- puppet-firewalld
- puppet-gitlab
- puppet-grafana
- puppet-kmod
- puppet-lib-file_concat
- puppet-logstash
- puppet-memcached
- puppet-nats
- puppet-nsswitch
- puppet-remote_file
- puppet-snmp
- puppet-systemd
- puppet-windows_firewall
- puppet-windowsfeature
- puppet-winlogbeat
- puppetlabs-acl
- puppetlabs-apache
- puppetlabs-chocolatey
- puppetlabs-concat
- puppetlabs-docker
- puppetlabs-firewall
- puppetlabs-inifile
- puppetlabs-java
- puppetlabs-java_ks
- puppetlabs-motd
- puppetlabs-mount_providers
- puppetlabs-mysql
- puppetlabs-postgresql
- puppetlabs-powershell
- puppetlabs-puppet_authorization
- puppetlabs-puppetdb
- puppetlabs-registry
- puppetlabs-stdlib
- registry_acl
- voxpupuli-yum