ansible-lockdown/RHEL9-CIS
3
0
Fork 1
mirror of https://github.com/ansible-lockdown/RHEL9-CIS.git synced 2025-12-27 15:33:06 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

enhance regexp for "Ensure sudo log file exists" task

Browse source 
Signed-off-by: Francesco Trentini <francesco.trentini@ris.bz.it>
This commit is contained in:
Francesco Trentini 2024-03-22 09:25:39 +01:00
parent 4d90fed61b
commit fe6fca34c9
No known key found for this signature in database
GPG key ID: F6671CF68B529CCB
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
tasks/section_5/cis_5.3.x.yml
View file

@ -30,7 +30,7 @@
- name: "5.3.3 | PATCH | Ensure sudo log file exists" - name: "5.3.3 | PATCH | Ensure sudo log file exists"
ansible.builtin.lineinfile: ansible.builtin.lineinfile:
path: /etc/sudoers path: /etc/sudoers
regexp: '^Defaults logfile=' regexp: '^Defaults\s+logfile='
line: 'Defaults logfile={{ rhel9cis_sudolog_location }}' line: 'Defaults logfile={{ rhel9cis_sudolog_location }}'
validate: '/usr/sbin/visudo -cf %s' validate: '/usr/sbin/visudo -cf %s'
when: when: