mirror of
https://github.com/ansible-lockdown/RHEL9-CIS.git
synced 2025-12-24 22:23:06 +00:00
Linting
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
This commit is contained in:
Mark Bolwell
parent
2f5709df70
commit
42b9dc9e89
5 changed files with 0 additions and 17 deletions
|
|
@ -343,7 +343,6 @@ rhel9cis_rule_6_2_14: true
|
|||
rhel9cis_rule_6_2_15: true
|
||||
rhel9cis_rule_6_2_16: true
|
||||
|
||||
|
||||
## Section 1 vars
|
||||
|
||||
#### 1.1.2
|
||||
|
|
@ -413,7 +412,6 @@ rhel9cis_selinux_enforce: enforcing
|
|||
|
||||
## 2. Services
|
||||
|
||||
|
||||
### 2.1 Time Synchronization
|
||||
#### 2.1.2 Time Synchronization servers - used in template file chrony.conf.j2
|
||||
rhel9cis_time_synchronization_servers:
|
||||
|
|
@ -461,7 +459,6 @@ rhel9cis_openldap_clients_required: false
|
|||
rhel9cis_tftp_client: false
|
||||
rhel9cis_ftp_client: false
|
||||
|
||||
|
||||
## Section3 vars
|
||||
## Sysctl
|
||||
rhel9cis_sysctl_update: false
|
||||
|
|
@ -478,7 +475,6 @@ rhel9cis_firewall: firewalld
|
|||
##### firewalld
|
||||
rhel9cis_default_zone: public
|
||||
|
||||
|
||||
# These are added to demonstrate how this can be done
|
||||
rhel9cis_firewalld_ports:
|
||||
- number: 80
|
||||
|
|
@ -514,7 +510,6 @@ update_audit_template: false
|
|||
## Advanced option found in auditd post
|
||||
rhel9cis_allow_auditd_uid_user_exclusions: false
|
||||
|
||||
|
||||
# This can be used to configure other keys in auditd.conf
|
||||
rhel9cis_auditd_extra_conf: {}
|
||||
# Example:
|
||||
|
|
@ -535,7 +530,6 @@ rhel9cis_remote_log_protocol: tcp
|
|||
rhel9cis_remote_log_retrycount: 100
|
||||
rhel9cis_remote_log_queuesize: 1000
|
||||
|
||||
|
||||
#### 4.2.1.7
|
||||
rhel9cis_system_is_log_server: false
|
||||
|
||||
|
|
@ -584,7 +578,6 @@ rhel9cis_ssh_maxsessions: 4
|
|||
rhel9cis_inactivelock:
|
||||
lock_days: 30
|
||||
|
||||
|
||||
rhel9cis_use_authconfig: false
|
||||
# 5.3.1/5.3.2 Custom authselect profile settings. Settings in place now will fail, they are place holders from the control example
|
||||
# Due to the way many multiple options and ways to configure this control needs to be enabled and settings adjusted to minimise risk
|
||||
|
|
@ -599,7 +592,6 @@ rhel9cis_authselect_custom_profile_create: false
|
|||
# 5.3.2 Enable automation to select custom profile options, using the settings above
|
||||
rhel9cis_authselect_custom_profile_select: false
|
||||
|
||||
|
||||
rhel9cis_pass:
|
||||
max_days: 365
|
||||
min_days: 7
|
||||
|
|
@ -648,7 +640,6 @@ rhel9cis_futurepwchgdate_autofix: true
|
|||
# 5.3.7
|
||||
rhel9cis_sugroup: nosugroup
|
||||
|
||||
|
||||
## Section6 vars
|
||||
|
||||
# RHEL-09_6.1.1
|
||||
|
|
@ -669,7 +660,6 @@ audit_run_script_environment:
|
|||
AUDIT_FILE: 'goss.yml'
|
||||
AUDIT_CONTENT_LOCATION: "{{ audit_out_dir }}"
|
||||
|
||||
|
||||
### Goss binary settings ###
|
||||
goss_version:
|
||||
release: v0.3.21
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue