And yes there is an inotify tool for Ansible a la https://github.com/gantsign/ansible-role-inotify
Or you can set an attribute ``` chattr +i myconf.conf ``` or do it via https://docs.ansible.com/ansible/latest/collections/ansible/builtin/file_module.html On Tue, Jun 27, 2023 at 3:18 PM Brian Coca <bc...@redhat.com> wrote: > For drift control i've found most CM systems to be lacking. I've > always used something like tripwire/aide to detect file changes and > correlate that with the proper configuration updates. Puppet and other > 'resident' systems seemsgood for this but they run every Nminutes > doing a lot of work to verify things, instead of using something like > inotify to trigger immediate response from a passive kenrel hook (via > fam deamon or something as simple as incron). This ends up being a LOT > more efficient and avoids a lot of useless processing. > > -- > ---------- > Brian Coca > > -- > You received this message because you are subscribed to the Google Groups > "Ansible Project" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to ansible-project+unsubscr...@googlegroups.com. > To view this discussion on the web visit > https://groups.google.com/d/msgid/ansible-project/CACVha7e7L_4mCsjTXxW7aK0TpastFRmZ3sobo7aCc6%3Dhtk83jA%40mail.gmail.com > . > -- - Andrew "lathama" Latham - -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CA%2Bqj4S_1ao4SRs4CK5aNdeoxO%2Bwu8_sf%3DLgq5eKXY%2BuW1hvWSQ%40mail.gmail.com.
