0
I am needing to spin up a VM and harden it to some standards. I realize that I might have to do this multiple times and I am not really up for a parallel ssh session on several boxes.
Is there a way that I can spin up one VM, harden it, and save it as an ISO or something that can be used as a standard in our environment?
Generally, you can take a snapshot of a VM so you are able to restart it from that exact point at any time. Is this what you are looking for? – None – 2018-02-27T06:50:39.463
No. Snapshot.is a snapshot and has memory and a lot of things to bloat the machine;essentially , a copy of the machine having mac addr info and other things . This would make it more difficult in the long run. – None – 2018-02-27T06:53:12.847
Does it need to be an ISO, specifically? In order to harden an ISO, you would either need to have a system that naturally supports persistence (such as Alpine Linux, where the ISO is overlayed with custom configuration changes), or you would need to unpack, modify, and repack the ISO, for example to introduce sysctl changes in
/etc/sysctl.conf
or whatever. – None – 2018-02-27T06:54:46.427This is not a security question. The only bit about security is that you will have configured the VM to be considered "hardened", which is only a minor detail. – schroeder – 2018-02-27T09:45:55.267