Mark Bolwell
|
908ac57db7
|
enabled fetch report and updated title
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-19 16:26:01 +01:00 |
|
Fred W.
|
3be331c0d2
|
Merge pull request #32 from ansible-lockdown/June25_align
June25 align
|
2025-06-17 09:33:09 -04:00 |
|
Frederick Witty
|
acacb7a6bc
|
QA Fixes
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
|
2025-06-16 17:18:08 -04:00 |
|
Frederick Witty
|
38a173546c
|
Update auditd with check_mode
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
|
2025-06-16 16:49:36 -04:00 |
|
Frederick Witty
|
b38e7d06eb
|
var fixes for 1.1.2.3.x and 1.1.2.4.x
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
|
2025-06-16 15:14:08 -04:00 |
|
Frederick Witty
|
6ced990430
|
Update handler naming change_requires_reboot to set reboot required
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
|
2025-06-16 14:58:21 -04:00 |
|
Mark Bolwell
|
7e5fb97b9a
|
updated
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 17:23:28 +01:00 |
|
Mark Bolwell
|
3ea5b92259
|
updated
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 17:22:31 +01:00 |
|
Mark Bolwell
|
3173b74481
|
updated grep command 1.3.1.6
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 17:21:45 +01:00 |
|
Mark Bolwell
|
b65504de6b
|
Updated egrep
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 17:20:40 +01:00 |
|
Mark Bolwell
|
f892525a7c
|
5.1.10 and 5.1.11 updated variable naming
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 17:19:18 +01:00 |
|
Mark Bolwell
|
02008339b4
|
updated regex
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 17:18:22 +01:00 |
|
Mark Bolwell
|
2724faf1fc
|
50-redhat.conf var naming update
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 17:17:00 +01:00 |
|
Mark Bolwell
|
1537bf72df
|
5-redhat.conf var naming
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 17:16:26 +01:00 |
|
Mark Bolwell
|
2eb85294c8
|
Updated conditionals for audit steps
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 17:15:42 +01:00 |
|
Mark Bolwell
|
ce3ae8361e
|
Updated logic for root password check
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 17:14:58 +01:00 |
|
Mark Bolwell
|
6770e5a4ff
|
added check_mode false to task
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 17:13:53 +01:00 |
|
Mark Bolwell
|
27c7ec3604
|
fixed typos
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 17:12:21 +01:00 |
|
Mark Bolwell
|
35d0bf9c4b
|
updated auditing conditionals
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 13:19:14 +01:00 |
|
Mark Bolwell
|
ca14eeb147
|
updated
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 10:18:26 +01:00 |
|
uk-bolly
|
27dc592c12
|
Merge pull request #343 from polski-g/auditd_check_mode
auditd: ensure check mode runs non-destructive call to ausyscall --dump
|
2025-06-16 11:15:30 +02:00 |
|
Mark Bolwell
|
7bef2eda62
|
added check_mode false
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 10:12:27 +01:00 |
|
Mark Bolwell
|
18fc4ea585
|
updated conditional var name and regex best practices
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 10:08:56 +01:00 |
|
Mark Bolwell
|
b2308ac310
|
fixed typos in logic
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 10:07:55 +01:00 |
|
Mark Bolwell
|
51b20d383d
|
Renamed variable to prelim
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 10:07:27 +01:00 |
|
Mark Bolwell
|
9f50effd30
|
updated logic
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-16 10:01:10 +01:00 |
|
Frederick Witty
|
3a0ee6e9f8
|
update 1.3.1.6 log to grep -E
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
|
2025-06-12 15:44:03 -04:00 |
|
Frederick Witty
|
f40d17df92
|
Update eprep based tasks to grep/awk
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
|
2025-06-12 12:42:44 -04:00 |
|
Mark Bolwell
|
30bb04b1d4
|
updates root password check
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-06-12 12:10:44 +01:00 |
|
uk-bolly
|
2f5caf836b
|
Merge pull request #347 from ansible-lockdown/pre-commit-ci-update-config
[pre-commit.ci] pre-commit autoupdate
|
2025-06-12 12:25:49 +02:00 |
|
pre-commit-ci[bot]
|
2ce05a345d
|
[pre-commit.ci] pre-commit autoupdate
updates:
- [github.com/gitleaks/gitleaks: v8.27.0 → v8.27.2](https://github.com/gitleaks/gitleaks/compare/v8.27.0...v8.27.2)
|
2025-06-09 17:24:11 +00:00 |
|
Fred W.
|
f86803b1a7
|
Merge pull request #346 from ansible-lockdown/May2025Fixes
Fix for #325 thank you @mindrb
|
2025-06-09 12:23:28 -04:00 |
|
Fred W.
|
dce6303302
|
Merge pull request #342 from ansible-lockdown/pre-commit-ci-update-config
[pre-commit.ci] pre-commit autoupdate
|
2025-06-09 08:33:20 -04:00 |
|
polski-g
|
5226f14b3e
|
fetch of auditd logfile should run in check_mode
Signed-off-by: polski-g <polski_g@sent.at>
|
2025-06-06 10:03:47 -04:00 |
|
polski-g
|
1bff329a05
|
auditd: ensure check mode runs non-destructive call to ausyscall --dump
Signed-off-by: polski-g <polski_g@sent.at>
|
2025-06-03 11:35:05 -04:00 |
|
pre-commit-ci[bot]
|
30d7e3a761
|
[pre-commit.ci] pre-commit autoupdate
updates:
- [github.com/gitleaks/gitleaks: v8.26.0 → v8.27.0](https://github.com/gitleaks/gitleaks/compare/v8.26.0...v8.27.0)
|
2025-06-02 17:25:10 +00:00 |
|
uk-bolly
|
f70821bf7e
|
Merge pull request #340 from ansible-lockdown/interactive_user_update
Updated variable naming for interactive_users
|
2025-05-28 18:42:20 +01:00 |
|
Fred W.
|
1416780797
|
Merge pull request #30 from ansible-lockdown/interactive_user_update
Interactive user update
|
2025-05-28 12:15:41 -04:00 |
|
Mark Bolwell
|
2e3499ca8c
|
added missing square brace
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-05-28 16:47:01 +01:00 |
|
Mark Bolwell
|
3197252611
|
Merge branch 'benchmark_v2.0.0' into interactive_user_update
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-05-28 16:14:18 +01:00 |
|
Mark Bolwell
|
2256456f0e
|
align with public fixes
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-05-28 16:12:31 +01:00 |
|
Mark Bolwell
|
f2c03f1e68
|
variable networkmanager package and typo fixes
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-05-28 16:11:36 +01:00 |
|
Mark Bolwell
|
cb475d3368
|
fixed typo on post audit file name
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-05-28 16:10:28 +01:00 |
|
Mark Bolwell
|
260005415c
|
Aligned with public
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-05-28 15:58:54 +01:00 |
|
Mark Bolwell
|
7673c2ff00
|
Added home directory discovery
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-05-28 15:53:41 +01:00 |
|
Mark Bolwell
|
97abfaf9f8
|
updated passwd variable
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-05-28 15:41:12 +01:00 |
|
Mark Bolwell
|
f740d89b54
|
Added user home discovery
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-05-28 15:36:39 +01:00 |
|
Mark Bolwell
|
210535bf4f
|
updated loop var name
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-05-28 15:36:04 +01:00 |
|
Mark Bolwell
|
c4070c341b
|
Updated logic on 7.2.9 tasks
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-05-28 15:35:34 +01:00 |
|
Mark Bolwell
|
5dc2541731
|
Updated passwd variable name
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
|
2025-05-28 14:57:29 +01:00 |
|