From e5887e529379053bc93ff5b576e726e00bb195b7 Mon Sep 17 00:00:00 2001 From: Mark Bolwell Date: Fri, 7 Jan 2022 09:23:01 +0000 Subject: [PATCH] Updated Signed-off-by: Mark Bolwell --- Changelog.md | 93 ++-------------------------------------------------- 1 file changed, 3 insertions(+), 90 deletions(-) diff --git a/Changelog.md b/Changelog.md index 09ba0be..c830cbc 100644 --- a/Changelog.md +++ b/Changelog.md @@ -1,93 +1,6 @@ # Changes to rhel9CIS -## 1.3.3 +# Initial -- update to audit script - - variable for audit OS agnostic - - removal of included library module (not required) - -- Issues included - - #135 - running levels - upadted tags - - #138 - auditd immutable - - #139 - 5.2.13 valus updated - - #140 - - #141 - check mode update - - #142 - - #143 - labels added - - #144 - - #146 - undefined variable added - - #147 - removed warn statement - - #149 - shell timeout - -## 1.3.2 - -- issues with crypto policies on ec2 - added skip for rules if system_is_ec2 variable - - cis_1.10 ## Change crypto breaks installing products - - cis_1.11 ## Change crypto breaks installing products - -## 1.3.1 - -- CIS 1.0.1 updates -- Added Issue and PR templates -- Added better reboot logic -- Added options to ensure idempotence -- Enhanced flush handlers -- Typo fixes -- mount check improvements -- Linting fixes -- Added systemd tmp mount -- Added systemd tmpfs block -- #110 tmp.mount support - - thanks to @erpadmin - -## 1.3 - -- extentions to LE audit capability -- more lint and layout changes -- sugroup assertion added 5.7 -- added extra logic variable to authselect/config section 5.3 related -- AlmaLinux and Rocky tested (comments in readme - also rsyslog installed at build or will fail) -- section 1.1 mount work has been rewritten and systemd tmp mount options added - -## 1.2.3 - -- #117 sugroup enhancements - - thanks to @ihotz -- #112 use of dnf module not shell - - thanks to @wolskie - -## 1.2.2 - -- #33 mkgrub missing variable issues - efi and bios path resolution - - thanks to @mrampant & @mickey1928geo -- #102 2.2.2 xorg pkg removal extended - - thanks to @RosarioVinoth -- #104 5.4.1 pwquality logic - - thanks to @RosarioVinoth -- #107 Idempotence improvement for 4.1.1.3 and 4.1.1.4 - - thanks to @andreyzher -- lint changes and updates to sync with ansible-galaxy - -## v1.2.1 - -- bootloader and default variables -- empty strings lint updates -- #87 -- rule 6.1.1 - audit only - outputs file discrepancies to {{ rhel9cis_rpm_audit_file }} -- #88 -- checkmode_improvements added to relevant tasks -- PR #96 -- crypto policy idempotency - -## v1.2.0 - -- #86 -- Adding on the goss auditing tool -- remove deprecated warnings -- format and layout -- general improvements -- readme updates -- use ansible package_facts -- #90 -- cis fix - nfs-server not nfs - - Thanks to danderemer +- based on RHEL8 currently as RH or CIS not GA +- Changes to systctl and auditd changes to utilise templates