ansible-lockdown/RHEL9-CIS
3
0
Fork 1
mirror of https://github.com/ansible-lockdown/RHEL9-CIS.git synced 2025-12-24 14:23:05 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Commit graph

  • ad8e73c3ee
         Fixing minor documentation issues part 2. Tomuta, Diana Maria (T CST SCC-RO) 2025-07-09 13:28:33 +03:00
  • 76a680bb59
         Fixing minor documentation issues. Tomuta, Diana Maria (T CST SCC-RO) 2025-07-09 12:13:45 +03:00
  • b182abf2aa
         Fixing inconsistencies for importing tasks from section 1. Tomuta, Diana Maria (T CST SCC-RO) 2025-07-08 16:38:12 +03:00
  • 4329591c90
         Fixing inconsistencies between rule ids in title, tags and when. Tomuta, Diana Maria (T CST SCC-RO) 2025-07-08 09:37:29 +03:00
  • 18493b5c37
         add disablement flag for the gdm controls (1.8.x) polski_g 2025-06-03 15:38:45 -04:00
  • 025d83d2c6
         Merge pull request #359 from siemens/siemens/feat/rhel9_v2_fix_control_6.3.3.5 uk-bolly 2025-07-04 12:10:04 +01:00
  • d25b472283
         Fixing order of configs. Tomuta, Diana Maria (T CST SCC-RO) 2025-07-04 13:50:05 +03:00
  • dfd5eb9a92
         Small fixes part 3. Tomuta, Diana Maria (T CST SCC-RO) 2025-07-04 13:44:46 +03:00
  • 38916aeade
         Merge pull request #361 from siemens/siemens/feat/rhel9_v2_fix_control_5.4.2.5 uk-bolly 2025-07-04 11:35:17 +01:00
  • 1ed720e7c9
         Merge pull request #360 from siemens/siemens/feat/rhel9_v2_fix_control_6.3.4.5 uk-bolly 2025-07-04 11:33:11 +01:00
  • 21fd466ec6
         Small fixes part 2. Tomuta, Diana Maria (T CST SCC-RO) 2025-07-04 11:58:08 +03:00
  • 778877f3f3
         Small fixes. Tomuta, Diana Maria (T CST SCC-RO) 2025-07-04 10:50:45 +03:00
  • a556750894
         Fixing issue https://code.siemens.com/infosec-pss-gov/security-crafter-baseline-automations/ansible-lockdown/rhel9-cis/-/issues/41. Tomuta, Diana Maria (T CST SCC-RO) 2025-07-03 13:03:08 +03:00
  • 25b4bb780c
         Merge pull request #355 from ansible-lockdown/devel 2.0.2 jjoympg 2025-07-02 10:50:59 -04:00
  • 55744fe599
         Fixing documentation of the vars. Tomuta, Diana Maria (T CST SCC-RO) 2025-07-02 13:48:17 +03:00
  • 182e07a63f
         Merge pull request #354 from davidalexander83/devel uk-bolly 2025-07-02 10:22:20 +01:00
  • 7ec2c9bf5e
         Fix re.error due to (?i) not at start of re davidalexander83 2025-07-02 12:32:20 +10:00
  • d8af4747d4
         Merge pull request #353 from ansible-lockdown/fix_5.2.4 Fred W. 2025-06-27 11:54:19 -04:00
  • ac276f34fc
         ChangeLog versioning fix Frederick Witty 2025-06-27 11:15:19 -04:00
  • 23338ccd31
         Addresses #318 - Thank you @kodebach & @bgro Frederick Witty 2025-06-27 11:12:07 -04:00
  • 16179a658b
         Merge pull request #352 from ansible-lockdown/pre-commit-ci-update-config Fred W. 2025-06-27 09:13:10 -04:00
  • ed699a50ba
         Fixing issue https://code.siemens.com/infosec-pss-gov/security-crafter-baseline-automations/ansible-lockdown/rhel9-cis/-/issues/43 . Diana-Maria Dumitru 2025-06-26 13:35:51 +03:00
  • 5ed6abd5d3
         Fixing issue https://code.siemens.com/infosec-pss-gov/security-crafter-baseline-automations/ansible-lockdown/rhel9-cis/-/issues/42 . Tomuta, Diana Maria (T CST SCC-RO) 2025-06-26 13:29:42 +03:00
  • fc2f5895ce
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-06-23 17:27:59 +00:00
  • 48fd578ee1
         Merge pull request #351 from ansible-lockdown/audit_only_fetch uk-bolly 2025-06-20 14:41:15 +02:00
  • 37f4d0c9f0
         fixed crypto logic Mark Bolwell 2025-06-20 12:15:13 +01:00
  • bd1547313a
         Fix logic and notes for in crypto policy building Mark Bolwell 2025-06-20 11:28:19 +01:00
  • 055cb35603
         Merge branch 'devel' into audit_only_fetch uk-bolly 2025-06-20 11:21:28 +02:00
  • 3dfa4f7e86
         Merge pull request #348 from ansible-lockdown/root_user_check uk-bolly 2025-06-19 17:28:45 +02:00
  • 72dfe581e9
         updated Mark Bolwell 2025-06-19 16:27:53 +01:00
  • 515d5c3bf7
         added changed_when to resolve false warning message Mark Bolwell 2025-06-19 16:26:48 +01:00
  • 908ac57db7
         enabled fetch report and updated title Mark Bolwell 2025-06-19 16:26:01 +01:00
  • 942870f78d update: change insertafter by insertbefore for MISC. LOG SETTINGS chrispipo 2025-06-18 08:37:22 +00:00
  • 3ea5b92259
         updated Mark Bolwell 2025-06-16 17:22:31 +01:00
  • 3173b74481
         updated grep command 1.3.1.6 Mark Bolwell 2025-06-16 17:21:45 +01:00
  • 35d0bf9c4b
         updated auditing conditionals Mark Bolwell 2025-06-16 13:19:14 +01:00
  • ca14eeb147
         updated Mark Bolwell 2025-06-16 10:18:26 +01:00
  • 27dc592c12
         Merge pull request #343 from polski-g/auditd_check_mode uk-bolly 2025-06-16 11:15:30 +02:00
  • 7bef2eda62
         added check_mode false Mark Bolwell 2025-06-16 10:12:27 +01:00
  • 18fc4ea585
         updated conditional var name and regex best practices Mark Bolwell 2025-06-16 10:08:56 +01:00
  • b2308ac310
         fixed typos in logic Mark Bolwell 2025-06-16 10:07:55 +01:00
  • 51b20d383d
         Renamed variable to prelim Mark Bolwell 2025-06-16 10:07:27 +01:00
  • 9f50effd30
         updated logic Mark Bolwell 2025-06-16 10:01:10 +01:00
  • 30bb04b1d4
         updates root password check Mark Bolwell 2025-06-12 12:10:44 +01:00
  • 2f5caf836b
         Merge pull request #347 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-06-12 12:25:49 +02:00
  • 2ce05a345d
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-06-09 17:24:11 +00:00
  • f86803b1a7
         Merge pull request #346 from ansible-lockdown/May2025Fixes Fred W. 2025-06-09 12:23:28 -04:00
  • dce6303302
         Merge pull request #342 from ansible-lockdown/pre-commit-ci-update-config Fred W. 2025-06-09 08:33:20 -04:00
  • 5226f14b3e
         fetch of auditd logfile should run in check_mode polski-g 2025-06-06 10:03:47 -04:00
  • 59eca28b3c
         Added option to add a salt, this will allow ansible to idempotently set the password Jeffrey van Pelt 2025-06-05 22:41:33 +02:00
  • d08e7380d6
         Added a filter plugin that will handle the GRUB password hashing for you Jeffrey van Pelt 2025-06-04 17:59:22 +02:00
  • fd9fec96a1 fix typo's and copy past errors Tony Goetheyn 2025-05-30 15:58:55 +02:00
  • e149d2b44c
         prelim_interactive_users must be set in defaults else failure if there are zero such users during prelim.yml polski-g 2025-06-03 11:37:52 -04:00
  • 1bff329a05
         auditd: ensure check mode runs non-destructive call to ausyscall --dump polski-g 2025-06-03 11:35:05 -04:00
  • 30d7e3a761
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-06-02 17:25:10 +00:00
  • f70821bf7e
         Merge pull request #340 from ansible-lockdown/interactive_user_update uk-bolly 2025-05-28 18:42:20 +01:00
  • cb475d3368
         fixed typo on post audit file name Mark Bolwell 2025-05-28 16:10:28 +01:00
  • f740d89b54
         Added user home discovery Mark Bolwell 2025-05-28 15:36:39 +01:00
  • 210535bf4f
         updated loop var name Mark Bolwell 2025-05-28 15:36:04 +01:00
  • c4070c341b
         Updated logic on 7.2.9 tasks Mark Bolwell 2025-05-28 15:35:34 +01:00
  • 5dc2541731
         Updated passwd variable name Mark Bolwell 2025-05-28 14:57:29 +01:00
  • d136bfa381
         Updated variable naming for interactive_users Mark Bolwell 2025-05-28 10:22:30 +01:00
  • 96d054b0d2
         Merge pull request #338 from polski-g/groupgroup_typo uk-bolly 2025-05-28 10:02:28 +01:00
  • 4b4033e072
         Merge pull request #337 from polski-g/network_manager_package_name uk-bolly 2025-05-28 10:01:44 +01:00
  • 9c69d1f9e0
         Merge pull request #336 from polski-g/sshd_redhat_cfg_exists uk-bolly 2025-05-28 10:00:57 +01:00
  • e7e1f70494
         Merge pull request #339 from ansible-lockdown/pre-commit-ci-update-config Fred W. 2025-05-27 13:11:13 -04:00
  • 68579ae85e
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-05-26 17:23:15 +00:00
  • fb9577f7d9
         Fix typo in variable name discovered_group_check polski_g 2025-05-08 10:53:27 -04:00
  • 4e49532e20
         Variablize network-manager package name polski_g 2025-05-08 10:52:21 -04:00
  • f564135e72
         Check for existence of sshd_config.d/50-redhat.conf before trying to modify it polski_g 2025-05-08 11:17:29 -04:00
  • d992c12702
         Check for existence of sshd_config.d/50-redhat.conf before trying to modify it polski_g 2025-05-08 11:17:29 -04:00
  • dcd7a2c2fa
         Variablize network-manager package name polski_g 2025-05-08 10:52:21 -04:00
  • 6b213b044b
         Fix typo in variable name discovered_group_check polski_g 2025-05-08 10:53:27 -04:00
  • 9ee1498c98
         Merge pull request #332 from ansible-lockdown/may25_issues uk-bolly 2025-05-23 16:56:52 +01:00
  • f83e5a69a2
         interactive users ilogic improvements thanks to @polski-g Mark Bolwell 2025-05-23 16:05:01 +01:00
  • 0e61e796c6
         Fix for #325 thank you @mindrb Frederick Witty 2025-05-23 11:00:13 -04:00
  • daf5a3f462
         changed command to shell for grep Mark Bolwell 2025-05-23 15:01:16 +01:00
  • 15bf03c754
         added check mode logic Mark Bolwell 2025-05-23 14:34:30 +01:00
  • 2b37d0d732
         added check_mode logic Mark Bolwell 2025-05-23 14:30:17 +01:00
  • 8d5a32bc39
         added rhel9cis_rsyslog_ansiblemanage conditional Mark Bolwell 2025-05-23 14:25:42 +01:00
  • 4948d3cb09
         added ignore comments in file Mark Bolwell 2025-05-23 14:22:30 +01:00
  • 90374036c4
         Merge pull request #326 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-05-21 17:38:53 +01:00
  • 5e2e4db20e
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-05-19 17:24:24 +00:00
  • 15cb6db6bf
         Merge pull request #324 from ansible-lockdown/fix_rhel9cis_warning_banner Fred W. 2025-04-25 14:58:15 -04:00
  • 48c05f038f
         Fix for #322 thank @mindrb Frederick Witty 2025-04-25 14:36:58 -04:00
  • 612f416fc8
         Merge pull request #323 from ansible-lockdown/fix_j2_sshd_weakciphers Fred W. 2025-04-25 13:07:07 -04:00
  • dd909b48c8
         Fix for #320 thank you @kodebach Frederick Witty 2025-04-25 11:47:17 -04:00
  • c8e410928e
         Merge pull request #321 from ansible-lockdown/2025update Fred W. 2025-04-23 17:33:16 -04:00
  • e27e413f94
         Update URL in defaults/main Frederick Witty 2025-04-23 16:04:16 -04:00
  • 42024903e3
         revamp set facts premlim_ max_int_uid and prelim_min_int_uid Frederick Witty 2025-04-23 12:47:22 -04:00
  • 350b30dfe4
         prelim_ prefix added to max_int_uid and min_int_uid Frederick Witty 2025-04-22 16:32:47 -04:00
  • 7173eba3f6
         Typo fixes v2 Frederick Witty 2025-04-22 16:29:43 -04:00
  • de63984cd8
         Typo fixes Frederick Witty 2025-04-22 16:10:53 -04:00
  • 4c47bb5b6b
         Merge pull request #317 from ansible-lockdown/improvements uk-bolly 2025-04-15 14:06:32 +01:00
  • ce43c573ee
         update tags and issue #311 thanks to @rilatu Mark Bolwell 2025-04-15 12:51:42 +01:00
  • 4aeac7e662
         typos and tidy up Mark Bolwell 2025-04-15 11:41:46 +01:00
  • b04570dfe4
         removed legacy option Mark Bolwell 2025-04-15 11:40:49 +01:00
  • ec57b85fdf
         Updated 5.3.3.1.1 regex issue #315 thanks to @jrdbarnes Mark Bolwell 2025-04-15 11:11:19 +01:00
  • 3d4bc2ab3d
         Update name and conditionals Mark Bolwell 2025-04-15 11:07:15 +01:00
  • 52f5f23b00
         improve ansible facts conditionals Mark Bolwell 2025-04-15 11:04:33 +01:00