From 2078657ceb9994de5142b7a6761edbb5a7733351 Mon Sep 17 00:00:00 2001
From: Mark Bolwell <mark.bollyuk@gmail.com>
Date: Thu, 20 Feb 2025 10:22:11 +0000
Subject: [PATCH] added fix for #293 thanks to @machikanta

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
---
 defaults/main.yml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/defaults/main.yml b/defaults/main.yml
index 3f6202b..1735ce8 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -1303,3 +1303,9 @@ rhel9cis_suid_sgid_adjust: false
 ## Control 7.1.11 - Ensure no world writable files exist
 # Allow ansible to adjust world-writable files. False will just display world-writable files, True will remove world-writable.
 rhel9cis_no_world_write_adjust: true
+
+
+## Control 7.2.9
+# This allows ansible to alter the dot files as per rule if found
+# When set to true this will align with benchmark - can impact a running system if not tested sufficiently
+rhel9cis_dotperm_ansiblemanaged: false