Show HN: Bor – Policy management for Linux desktops

That's actually something pretty useful for businesses that relay on *NIX. Why did you do it? Did you have to manage a lot of Linux devices with no easy way to set policies? How did you come with the feature list? Any option to replace the Internal CA with any of one's choosing? Any alerts (webhooks)? In either case - gonna play with it, seems cool. Thanks for sharing!

@dreamglider,

I've always missed something like this in the industry, when I was trying to integrate Linux desktops in different organizations. There are tools like Ansible and Foreman, but they are not "out of the box" structured like simple policies. For example, it would be more difficult to run an arbitrary code with Bor, compared to Ansible. It's important for the enterprise compliance and we we never had anything like GPOs in the Linux world.

The current target are the desktop machines. That's why the currently implemented features are the most essential ones - desktop environments (KDE, Gnome), browsers ( Firefox, Chrome), security - Polkit.

Unfortunately, it doesn't manage certificates at the current stage of development. There are no webhooks, but thee audit logs may be exported to a syslog server.