ansible-lockdown/RHEL9-CIS
3
0
Fork 1
mirror of https://github.com/ansible-lockdown/RHEL9-CIS.git synced 2025-12-24 22:23:06 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

lint updates

Browse source 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
This commit is contained in:
Mark Bolwell 2023-07-26 16:50:48 +01:00
parent 09c14e2ca8
commit 0ad7bf4848
No known key found for this signature in database
GPG key ID: 1DE02A772D0908F9
3 changed files with 5 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

2
handlers/main.yml
View file

@ -3,8 +3,6 @@
- name: Reload sysctl - name: Reload sysctl
ansible.builtin.shell: sysctl --system ansible.builtin.shell: sysctl --system
when:
- sysctl_updated.changed
- name: Sysctl flush ipv4 route table - name: Sysctl flush ipv4 route table
ansible.posix.sysctl: ansible.posix.sysctl:

2
tasks/section_3/cis_3.1.x.yml
View file

@ -44,7 +44,7 @@
ansible.builtin.shell: nmcli radio all off ansible.builtin.shell: nmcli radio all off
changed_when: false changed_when: false
failed_when: false failed_when: false
when: rhel_09_wifi_enabled is changed when: rhel_09_wifi_enabled is changed # noqa no-handler
when: when:
- rhel9cis_rule_3_1_2 - rhel9cis_rule_3_1_2
tags: tags:

8
tasks/section_6/cis_6.1.x.yml
View file

@ -168,7 +168,7 @@
loop: "{{ rhel_09_6_1_10_audit.results }}" loop: "{{ rhel_09_6_1_10_audit.results }}"
when: when:
- item | length > 0 - item | length > 0
- item.stdout is defined # skipped items are part of results list, but don't have the registered module properties - item.stdout is defined # skipped items are part of results list, but don't have the registered module properties
- item.stdout | length > 0 - item.stdout | length > 0
- name: "6.1.10 | AUDIT | Ensure no unowned files or directories exist | Displaying any unowned files or directories" - name: "6.1.10 | AUDIT | Ensure no unowned files or directories exist | Displaying any unowned files or directories"
@ -214,7 +214,7 @@
loop: "{{ rhel_09_6_1_11_audit.results }}" loop: "{{ rhel_09_6_1_11_audit.results }}"
when: when:
- item | length > 0 - item | length > 0
- item.stdout is defined # skipped items are part of results list, but don't have the registered module properties - item.stdout is defined # skipped items are part of results list, but don't have the registered module properties
- item.stdout | length > 0 - item.stdout | length > 0
- name: "6.1.11 | AUDIT | Ensure no ungrouped files or directories exist | Displaying all ungrouped files or directories" - name: "6.1.11 | AUDIT | Ensure no ungrouped files or directories exist | Displaying all ungrouped files or directories"
@ -270,7 +270,7 @@
loop: "{{ rhel_09_6_1_13_suid_perms.results }}" loop: "{{ rhel_09_6_1_13_suid_perms.results }}"
when: when:
- item | length > 0 - item | length > 0
- item.stdout is defined # skipped items are part of results list, but don't have the registered module properties - item.stdout is defined # skipped items are part of results list, but don't have the registered module properties
- item.stdout | length > 0 - item.stdout | length > 0
- name: "6.1.13 | AUDIT | Audit SUID executables | Alert SUID executables exist" - name: "6.1.13 | AUDIT | Audit SUID executables | Alert SUID executables exist"
@ -312,7 +312,7 @@
loop: "{{ rhel_09_6_1_14_sgid_perms.results }}" loop: "{{ rhel_09_6_1_14_sgid_perms.results }}"
when: when:
- item | length > 0 - item | length > 0
- item.stdout is defined # skipped items are part of results list, but don't have the registered module properties - item.stdout is defined # skipped items are part of results list, but don't have the registered module properties
- item.stdout | length > 0 - item.stdout | length > 0
- name: "6.1.14 | AUDIT | Audit SGID executables | Alert SGID executables exist" - name: "6.1.14 | AUDIT | Audit SGID executables | Alert SGID executables exist"