updated

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
2022-03-30 11:22:30 +01:00 · 2022-03-30 11:22:30 +01:00 · 8c79bfe7fb
commit 8c79bfe7fb
parent dc5f71d461
25 changed files with 253 additions and 266 deletions
--- a/tasks/section_3/cis_3.3.x.yml
+++ b/tasks/section_3/cis_3.3.x.yml
@ -1,61 +0,0 @@
---
-
- name: "3.3.1 | L2 | PATCH | Ensure DCCP is disabled"
-  lineinfile:
-      dest: /etc/modprobe.d/CIS.conf
-      regexp: "^(#)?install dccp(\\s|$)"
-      line: "install dccp /bin/true"
-      create: true
-      mode: 0600
-  when:
-      - rhel9cis_rule_3_3_1
-  tags:
-      - level2-server
-      - level2-workstation
-      - patch
-      - rule_3.3.1
-
- name: "3.3.2 | L2 | PATCH | Ensure SCTP is disabled"
-  lineinfile:
-      dest: /etc/modprobe.d/CIS.conf
-      regexp: "^(#)?install sctp(\\s|$)"
-      line: "install sctp /bin/true"
-      create: true
-      mode: 0600
-  when:
-      - rhel9cis_rule_3_3_2
-  tags:
-      - level2-server
-      - level2-workstation
-      - patch
-      - rule_3.3.2
-
- name: "3.3.3 | L2 | PATCH | Ensure RDS is disabled"
-  lineinfile:
-      dest: /etc/modprobe.d/CIS.conf
-      regexp: "^(#)?install rds(\\s|$)"
-      line: "install rds /bin/true"
-      create: true
-      mode: 0600
-  when:
-      - rhel9cis_rule_3_3_3
-  tags:
-      - level2-server
-      - level2-workstation
-      - patch
-      - rule_3.3.3
-
- name: "3.3.4 | L2 | PATCH | Ensure TIPC is disabled"
-  lineinfile:
-      dest: /etc/modprobe.d/CIS.conf
-      regexp: "^(#)?install tipc(\\s|$)"
-      line: "install tipc /bin/true"
-      create: true
-      mode: 0600
-  when:
-      - rhel9cis_rule_3_3_4
-  tags:
-      - level2-server
-      - level2-workstation
-      - patch
-      - rule_3.3.4