ansible-lockdown/RHEL9-CIS
3
0
Fork 1
mirror of https://github.com/ansible-lockdown/RHEL9-CIS.git synced 2026-03-25 22:37:11 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

added fix for public #399

Browse source 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
This commit is contained in:
Mark Bolwell 2025-10-03 08:13:35 +01:00
parent 499309b39d
commit 8f1aba35f6
No known key found for this signature in database
GPG key ID: 997FF7FE93AEB5B9
2 changed files with 3 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

2
Changelog.md
View file

@ -8,7 +8,7 @@ README latest versions
Audit improvements and max-concurrent option added Audit improvements and max-concurrent option added
Benchmark version variable in audit template Benchmark version variable in audit template
fixed typo thanks to @fragglexarmy #393 fixed typo thanks to @fragglexarmy #393
fixed typo thanks to @trumbaut #397 fixed typo thanks to @trumbaut #397 & #399
## 2.0.3 - Based on CIS v2.0.0 ## 2.0.3 - Based on CIS v2.0.0

4
tasks/section_5/cis_5.1.x.yml
View file

@ -41,8 +41,8 @@
ansible.builtin.file: ansible.builtin.file:
path: "{{ item.path }}" path: "{{ item.path }}"
owner: root owner: root
group: root group: "{{ 'ssh_keys' if (item.gr_name == 'ssh_keys') else 'root' }}"
mode: 'u-x,go-rwx' mode: "{{ 'u-x,g-wx,o-rwx' if (item.gr_name == 'ssh_keys') else 'u-x,go-rwx' }}"
loop: "{{ discovered_ssh_private_host_key.files }}" loop: "{{ discovered_ssh_private_host_key.files }}"
loop_control: loop_control:
label: "{{ item.path }}" label: "{{ item.path }}"