diff options
1 files changed, 9 insertions, 0 deletions
diff --git a/docs/systems/template.rst b/docs/systems/template.rst
index fcd6805..520afe4 100644
--- a/docs/systems/template.rst
+++ b/docs/systems/template.rst
@@ -311,9 +311,18 @@ Risk assessments on critical packages
.. add a paragraph for each known risk. The risk has to be described.
Mitigation or risk acceptance has to be documented.
+ The Puppet agent package and a few dependencies are installed from the
+ official Puppet APT repository because the versions in Debian are too old to
+ use modern Puppet features.
Critical Configuration items
+ The system configuration is managed via Puppet profiles. There should be no
+ configuration items outside of the :cacertgit:`cacert-puppet`.
Keys and X.509 certificates