RHEL9-CIS

ansible-lockdown/RHEL9-CIS

Fork 1

mirror of https://github.com/ansible-lockdown/RHEL9-CIS.git synced 2026-03-25 14:27:12 +00:00

Commit graph

4c41656a3b

.github standardization Frederick Witty 2025-10-23 08:28:06 -04:00
9bab97dccc

Merge pull request #407 from ansible-lockdown/devel 2.0.3 Frederick Witty 2025-10-17 10:56:49 -04:00
72f6b38cc2

Merge pull request #406 from ansible-lockdown/auto_issue_to_project Frederick Witty 2025-10-16 15:54:55 -04:00
e1dd9fd283

Add workflow to auto add new issues to project Frederick Witty 2025-10-16 15:12:19 -04:00
2591a46a45

Merge pull request #47 from ansible-lockdown/benchmark_v2.0.0 Frederick Witty 2025-10-16 11:13:23 -04:00
4cd3d8bab2

Merge pull request #405 from ansible-lockdown/pub_oct25 Frederick Witty 2025-10-16 10:54:53 -04:00
18b7305a71

Merge pull request #46 from ansible-lockdown/priv_Oct25 Frederick Witty 2025-10-16 10:41:51 -04:00
8ec8ebc816

updated Mark Bolwell 2025-10-16 15:29:26 +01:00
5354111505

improved audit logic Mark Bolwell 2025-10-16 15:27:27 +01:00
ea17b0adc2

removed legacy option Mark Bolwell 2025-10-16 15:26:42 +01:00
f8cdf84e95

Added benchmark_version variable Mark Bolwell 2025-10-16 15:26:07 +01:00
afcfda9ef0

compliant with 2.19 Mark Bolwell 2025-10-16 15:24:49 +01:00
278813694b

Updated permissions Mark Bolwell 2025-10-16 15:23:56 +01:00
cd66f4b76f

updated Mark Bolwell 2025-10-16 15:20:39 +01:00
ec7226377b

updated template logic for 2.19 Mark Bolwell 2025-10-16 15:18:15 +01:00
25d3e897fe

updated to latest version Mark Bolwell 2025-10-16 15:01:57 +01:00
e41afffce0

Merge pull request #404 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-10-16 14:59:40 +01:00
45018f30cb

updated Mark Bolwell 2025-10-16 14:58:52 +01:00
a525e4a2fb

Added extra failure for no data Mark Bolwell 2025-10-16 14:58:06 +01:00
727ae4515b

updated auditd variables Mark Bolwell 2025-10-16 14:57:24 +01:00
6be41416ec

updated workflow permissions Mark Bolwell 2025-10-16 14:51:22 +01:00
451dce8aa7

[pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-10-13 17:38:43 +00:00
657a5b8774

Merge pull request #402 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-10-10 09:34:30 +01:00
b2c3997fdd

Merge pull request #403 from ansible-lockdown/Oct25_updates Frederick Witty 2025-10-09 17:03:01 -04:00
51668530a9

update workflow benchmark_tracking_controller Frederick Witty 2025-10-09 14:10:29 -04:00
de4b2cfa5c

[pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-10-06 17:51:08 +00:00
724a09f23d

Merge pull request #401 from ansible-lockdown/Oct25_updates Frederick Witty 2025-10-03 10:17:39 -04:00
20f6b18e34

Merge pull request #45 from ansible-lockdown/ssh_and_badges Frederick Witty 2025-10-03 09:06:04 -04:00
6500e39f42

Added fix for #399 thanks to @trumbaut Mark Bolwell 2025-10-03 08:19:07 +01:00
16441ddef6

added badge workflows Mark Bolwell 2025-10-03 08:14:13 +01:00
8f1aba35f6

added fix for public #399 Mark Bolwell 2025-10-03 08:13:35 +01:00
9df94973d7

added badge workflows Mark Bolwell 2025-10-03 07:56:30 +01:00
6429c1b8ef

Make task flexible by checking if the current file group owner is ssh_key Thomas Rumbaut 2025-10-02 16:05:54 +02:00
4c91e7477f

fixed typos Mark Bolwell 2025-10-02 13:59:03 +01:00
64e7aab306

updated Mark Bolwell 2025-10-02 13:48:29 +01:00
eb2fc50dc7

updated to latest version Mark Bolwell 2025-10-02 13:47:01 +01:00
c69fedcf0a

Merge pull request #398 from trumbaut/fix_rule_3.2.1_reffering_to_cramfs uk-bolly 2025-10-02 13:42:40 +01:00
499309b39d

Merge pull request #44 from ansible-lockdown/typo_fix Frederick Witty 2025-10-02 08:38:26 -04:00
328bea5d0f

Merge pull request #396 from polski-g/prelim_check_mode uk-bolly 2025-10-02 12:08:15 +01:00
2cef9e6b29

updated workflows Mark Bolwell 2025-10-02 12:04:51 +01:00
88278381db

updated Mark Bolwell 2025-10-02 09:22:09 +01:00
fdc0a7afed

fixed typo thanks to @trumbaut #397 Mark Bolwell 2025-10-02 09:20:47 +01:00
7aa911b354

Update cis_3.2.x.yml (add dccp to blacklist instead of cramfs Thomas Rumbaut 2025-10-02 10:06:44 +02:00
362d9bd196

Merge pull request #43 from ansible-lockdown/updates_sept25 Frederick Witty 2025-10-01 14:16:12 -04:00
b9478e4cd5

changed wording for OS supported Mark Bolwell 2025-10-01 17:46:37 +01:00
ee07e5fcce

updated Mark Bolwell 2025-10-01 17:45:50 +01:00
383c4651c5

added public fix #396 Mark Bolwell 2025-10-01 17:44:17 +01:00
319c7a8fbb

ensure check mode runs all non-destructive tasks polski-g 2025-05-08 10:59:55 -04:00
6f167140d1

updated Mark Bolwell 2025-10-01 13:00:14 +01:00
81eadd4a6f

max-concurrent audit option added Mark Bolwell 2025-10-01 12:59:44 +01:00
ed5942f494

workflows updated Mark Bolwell 2025-10-01 10:37:12 +01:00
d2b371432e

issue #393 addressed thanks to @fragglexarmy Mark Bolwell 2025-10-01 10:32:52 +01:00
d63f58972d

fixed typo Mark Bolwell 2025-10-01 10:32:24 +01:00
d91d0d949e

Merge pull request #395 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-10-01 10:25:39 +01:00
7314d7b092

Merge pull request #394 from dbeuker/devel uk-bolly 2025-10-01 10:25:22 +01:00
23b60bc629

Merge pull request #390 from polski-g/modular_section_5_r2 uk-bolly 2025-10-01 10:24:44 +01:00
3e848dd6f1

Merge pull request #386 from polski-g/regex_5_3_2_2 uk-bolly 2025-10-01 10:24:13 +01:00
955d3052cc

latest badges and layout Mark Bolwell 2025-09-30 16:00:26 +01:00
5f64ccd843

5.3.2.1 updated var naming Mark Bolwell 2025-09-30 15:20:23 +01:00
0d56df1eda

5.4.1.3 typo fix thanks to @fragglexarmy Mark Bolwell 2025-09-30 14:53:17 +01:00
f09cd1dcc6

updated ansible lint version Mark Bolwell 2025-09-30 14:52:29 +01:00
7769bec99e

Added section5 subsections public #390 thanks to @polski-g Mark Bolwell 2025-09-30 14:44:57 +01:00
caffb14671

applied latest fix from public #386 thansk to @polski-g Mark Bolwell 2025-09-30 14:38:45 +01:00
3c3bdaeb38

using benchmark_version variable Mark Bolwell 2025-09-30 14:36:15 +01:00
5dd64ebdb8

max concurrent options and default added Mark Bolwell 2025-09-30 14:20:10 +01:00
9a113ea4a8

fix pre-commit var naming for authselect Mark Bolwell 2025-09-30 14:17:08 +01:00
2c0b5134b1

[pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-09-22 17:39:44 +00:00
03d42ba8ce

Suggestion for the missing assert parameter Danny Beuker 2025-09-22 09:57:55 +02:00
2557470054

5.3.2.2: fix regex failing to match whitespace Fixed yamllint (colons) issues polski-g 2025-08-28 13:55:41 -04:00
392c3f9016

Support section 5 modularization corrected trailing whitespace polski-g 2025-09-02 12:15:45 -04:00
f9bcb11114

Merge pull request #376 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-09-12 16:22:36 +01:00
12f97a0945

Merge pull request #42 from ansible-lockdown/2025_Sep_Updates Fred W. 2025-09-12 08:03:22 -04:00
d927b3006d

linting clean up Frederick Witty 2025-09-11 16:05:24 -04:00
67c574d8a9

Updates from Public Frederick Witty 2025-09-10 12:57:50 -04:00
374b9a5dc0

Merge pull request #391 from polski-g/check_mode_1_4_2 Fred W. 2025-09-10 08:51:33 -04:00
92bba62586

Merge pull request #385 from polski-g/check_mode_5_4_1_1 Fred W. 2025-09-10 08:50:49 -04:00
282d7fe0bc

Merge pull request #392 from ansible-lockdown/2025_Sep_Updates Fred W. 2025-09-10 08:05:19 -04:00
d92ec8c564

typo fix Frederick Witty 2025-09-09 16:31:14 -04:00
e61cafb59b

addressed issue #387, thank you @fragglexarmy Frederick Witty 2025-09-09 15:59:30 -04:00
5794114b3e

Update prelim logic to address #382 Frederick Witty 2025-09-09 15:12:01 -04:00
2dfa9266a8

Update cryto policy var to standard Frederick Witty 2025-09-08 11:54:57 -04:00
413ccb96b7

Update cryto policy based controls with improved logic Frederick Witty 2025-09-05 16:39:55 -04:00
b0ec6c4820

Fix for #384, thank you @polski-g Frederick Witty 2025-09-05 16:24:11 -04:00
1c9c1b919c

1.4.2: grep command should run in check_mode polski-g 2025-09-03 09:55:00 -04:00
de7555aa10

Update Changelog with fixes Frederick Witty 2025-09-02 17:14:30 -04:00
49670f729e

Support section 5 modularization polski-g 2025-09-02 12:15:45 -04:00
6b1fb1916f Suggestion for the missing assert parameter Danny Beuker 2025-08-29 20:51:04 +02:00
88507f9516

5.4.1.1: shell command should run in check_mode polski-g 2025-08-28 13:15:29 -04:00
7af8f5fe24

[pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-08-25 17:29:58 +00:00
a1d88edde0

Merge pull request #41 from ansible-lockdown/benchmark_v2.0.0 Fred W. 2025-08-21 16:34:38 -04:00
39c7dfa187

Merge pull request #381 from ansible-lockdown/August25_updates uk-bolly 2025-08-15 16:46:20 +01:00
f8d9521367

updated Mark Bolwell 2025-08-15 16:19:07 +01:00
f0fb701122

updated var naming on 5.4.2.5 Mark Bolwell 2025-08-15 16:10:37 +01:00
7428f269e7

changed rsyslog to insert before line134 Mark Bolwell 2025-08-15 16:09:51 +01:00
cddad90a23

enabled different locale characters in password check Mark Bolwell 2025-08-15 16:04:07 +01:00
fd2bfb7437

improved prelim tests for 5.2.4 Mark Bolwell 2025-08-15 16:03:11 +01:00
b21569c62d

added update for gdm and giu packages Mark Bolwell 2025-08-15 16:00:36 +01:00
553f18e992

updated pre-commit-hooks version Mark Bolwell 2025-08-15 15:13:33 +01:00
c630c23725

Merge pull request #40 from ansible-lockdown/august_updates Fred W. 2025-08-14 16:37:22 -04:00
811b70612e

udpated Mark Bolwell 2025-08-14 17:25:37 +01:00