RHEL9-CIS

mirror of https://github.com/ansible-lockdown/RHEL9-CIS.git synced 2026-03-26 14:37:13 +00:00

Author	SHA1	Message	Date
Mark Bolwell	7769bec99e	Added section5 subsections public #390 thanks to @polski-g Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-09-30 14:44:57 +01:00
Mark Bolwell	caffb14671	applied latest fix from public #386 thansk to @polski-g Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-09-30 14:38:45 +01:00
Mark Bolwell	5dd64ebdb8	max concurrent options and default added Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-09-30 14:20:10 +01:00
Mark Bolwell	9a113ea4a8	fix pre-commit var naming for authselect Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-09-30 14:17:08 +01:00
Danny Beuker	03d42ba8ce	Suggestion for the missing assert parameter Signed-off-by: Danny Beuker <dannybeuker@proton.me>	2025-09-22 10:02:50 +02:00
polski-g	2557470054	5.3.2.2: fix regex failing to match whitespace Fixed yamllint (colons) issues Signed-off-by: polski-g <polski_g@sent.at>	2025-09-15 13:04:29 -04:00
polski-g	392c3f9016	Support section 5 modularization corrected trailing whitespace Signed-off-by: polski-g <polski_g@sent.at>	2025-09-15 12:59:41 -04:00
Frederick Witty	d927b3006d	linting clean up Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>	2025-09-11 16:05:24 -04:00
Frederick Witty	67c574d8a9	Updates from Public Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>	2025-09-10 12:57:50 -04:00
Fred W.	374b9a5dc0	Merge pull request #391 from polski-g/check_mode_1_4_2 1.4.2: grep command should run in check_mode	2025-09-10 08:51:33 -04:00
Fred W.	92bba62586	Merge pull request #385 from polski-g/check_mode_5_4_1_1 5.4.1.1: shell command should run in check_mode	2025-09-10 08:50:49 -04:00
Frederick Witty	e61cafb59b	addressed issue #387 , thank you @fragglexarmy Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>	2025-09-09 15:59:30 -04:00
Frederick Witty	5794114b3e	Update prelim logic to address #382 Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>	2025-09-09 15:12:01 -04:00
Frederick Witty	2dfa9266a8	Update cryto policy var to standard Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>	2025-09-08 11:54:57 -04:00
Frederick Witty	413ccb96b7	Update cryto policy based controls with improved logic Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>	2025-09-05 16:39:55 -04:00
Frederick Witty	b0ec6c4820	Fix for #384 , thank you @polski-g Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>	2025-09-05 16:24:11 -04:00
polski-g	1c9c1b919c	1.4.2: grep command should run in check_mode Signed-off-by: polski-g <polski_g@sent.at>	2025-09-03 09:55:00 -04:00
Frederick Witty	de7555aa10	Update Changelog with fixes Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>	2025-09-02 17:14:30 -04:00
polski-g	88507f9516	5.4.1.1: shell command should run in check_mode Signed-off-by: polski-g <polski_g@sent.at>	2025-08-28 13:15:29 -04:00
Mark Bolwell	f0fb701122	updated var naming on 5.4.2.5 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-15 16:10:37 +01:00
Mark Bolwell	7428f269e7	changed rsyslog to insert before line134 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-15 16:09:51 +01:00
Mark Bolwell	cddad90a23	enabled different locale characters in password check Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-15 16:04:07 +01:00
Mark Bolwell	fd2bfb7437	improved prelim tests for 5.2.4 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-15 16:03:11 +01:00
Mark Bolwell	b21569c62d	added update for gdm and giu packages Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-15 16:00:36 +01:00
Fred W.	c630c23725	Merge pull request #40 from ansible-lockdown/august_updates August updates	2025-08-14 16:37:22 -04:00
Mark Bolwell	eafee7e040	Added typo updates thanks to @DianaMariaDDM Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-14 17:19:53 +01:00
Mark Bolwell	55c7fa6dd5	added password of different LC public issue 372 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-14 17:12:56 +01:00
Mark Bolwell	95ed2ff03d	changed to import task public PR 377 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-14 17:09:58 +01:00
Mark Bolwell	4b302f97f9	fixed compability pre 2.14 thanks to public PR #380 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-14 16:50:41 +01:00
Mark Bolwell	625e4041c1	update logic for 5.2.4 public PR #371 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-14 16:20:51 +01:00
Mark Bolwell	73320db603	dont not run section 1.8 if not gdm PR #364 from public Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-14 16:17:45 +01:00
Mark Bolwell	62095f75fe	updated as per public PR #350 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-14 16:14:47 +01:00
Michael Hicks	cfbbb3339a	renames 3 uses of ansible.builtin.systemd_service to ansible.builtin.systemd to maintain ansible 2.12+ compat. Fixes #379 Signed-off-by: Michael Hicks <nooneofconsequence@gmail.com>	2025-08-11 15:17:00 -07:00
Mark Bolwell	ef2c4d4ddb	Updated audit file permissions when running audit thansk to @steve-hayes Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-04 10:15:48 +01:00
Mark Bolwell	4b62f0fc35	Updated post steps inline with pre steps for file permissions Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-04 09:56:30 +01:00
Mark Bolwell	876e261d1f	fixed issues for permissions when using fetch thanks to @steve-hayes Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-08-04 09:54:07 +01:00
uk-bolly	feb183553c	Merge pull request #367 from siemens/siemens/rhel9_v2_fixing_inconsistencies Fixing minor inconsistencies	2025-07-18 14:34:22 +01:00
Tomuta, Diana Maria (T CST SCC-RO)	b182abf2aa	Fixing inconsistencies for importing tasks from section 1. Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>	2025-07-08 16:38:12 +03:00
Tomuta, Diana Maria (T CST SCC-RO)	4329591c90	Fixing inconsistencies between rule ids in title, tags and when. Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>	2025-07-08 09:37:29 +03:00
uk-bolly	38916aeade	Merge pull request #361 from siemens/siemens/feat/rhel9_v2_fix_control_5.4.2.5 Fixing issue for Control 5.4.2.5	2025-07-04 11:35:17 +01:00
Mark Bolwell	3778d6fb62	improvement updated with public #361 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-07-04 11:34:53 +01:00
uk-bolly	1ed720e7c9	Merge pull request #360 from siemens/siemens/feat/rhel9_v2_fix_control_6.3.4.5 Fixing issue for Control 6.3.4.5	2025-07-04 11:33:11 +01:00
Mark Bolwell	0a56b16d32	updated as per public fix #360 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-07-04 11:32:56 +01:00
Tomuta, Diana Maria (T CST SCC-RO)	a556750894	Fixing issue https://code.siemens.com/infosec-pss-gov/security-crafter-baseline-automations/ansible-lockdown/rhel9-cis/-/issues/41 . Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>	2025-07-03 13:03:08 +03:00
Mark Bolwell	1bdef212bd	Apply latest public fixes benchmark_v2.0.0 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-07-02 10:47:56 +01:00
davidalexander83	7ec2c9bf5e	Fix re.error due to (?i) not at start of re 6.2.2.3 and 6.2.2.4 cause issues due to current re syntax: ^(?i)(\s*compress=) re.error: global flags not at the start of the expression at position 1 Fix removes ^ which resolves issue without affecting functionality. Signed-off-by: davidalexander83 <davidalexander83@icloud.com>	2025-07-02 12:32:20 +10:00
Frederick Witty	0ee2de5e20	Addresses #318 - Thank you @kodebach & @bgro Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>	2025-06-27 12:04:29 -04:00
Frederick Witty	23338ccd31	Addresses #318 - Thank you @kodebach & @bgro Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>	2025-06-27 11:12:07 -04:00
Diana-Maria Dumitru	ed699a50ba	Fixing issue https://code.siemens.com/infosec-pss-gov/security-crafter-baseline-automations/ansible-lockdown/rhel9-cis/-/issues/43 . Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>	2025-06-26 13:35:51 +03:00
Fred W.	0efd92e2a3	Merge pull request #31 from ansible-lockdown/JUNE2025QA June 2025 QA: Replace egrep to grep	2025-06-23 08:36:55 -04:00

1 2 3 4 5 ...

645 commits