consistent lineinfile usage

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
2022-04-06 16:58:03 +01:00 · 2022-04-06 16:58:03 +01:00 · 82d1d18504
commit 82d1d18504
parent 02d686f920
12 changed files with 41 additions and 76 deletions
--- a/tasks/section_5/cis_5.6.1.x.yml
+++ b/tasks/section_5/cis_5.6.1.x.yml
@ -2,8 +2,7 @@

 - name: "5.6.1.1 | PATCH | Ensure password expiration is 365 days or less"
  lineinfile:
-      state: present
-      dest: /etc/login.defs
+      path: /etc/login.defs
      regexp: '^PASS_MAX_DAYS'
      line: "PASS_MAX_DAYS {{ rhel9cis_pass['max_days'] }}"
  when:
@ -18,8 +17,7 @@

 - name: "5.6.1.2 | PATCH | Ensure minimum days between password changes is 7 or more"
  lineinfile:
-      state: present
-      dest: /etc/login.defs
+      path: /etc/login.defs
      regexp: '^PASS_MIN_DAYS'
      line: "PASS_MIN_DAYS {{ rhel9cis_pass['min_days'] }}"
  when:
@ -34,8 +32,7 @@

 - name: "5.6.1.3 | PATCH | Ensure password expiration warning days is 7 or more"
  lineinfile:
-      state: present
-      dest: /etc/login.defs
+      path: /etc/login.defs
      regexp: '^PASS_WARN_AGE'
      line: "PASS_WARN_AGE {{ rhel9cis_pass['warn_age'] }}"
  when: