quoted file mode

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
2023-09-21 16:25:59 +01:00 · 2023-09-21 16:25:59 +01:00 · e82b2cefac
commit e82b2cefac
parent 35dfa8770a
20 changed files with 63 additions and 63 deletions
--- a/tasks/section_5/cis_5.1.x.yml
+++ b/tasks/section_5/cis_5.1.x.yml
@ -18,7 +18,7 @@
      path: /etc/crontab
      owner: root
      group: root
-      mode: 0600
+      mode: '0600'
  when:
      - rhel9cis_rule_5_1_2
  tags:
@ -34,7 +34,7 @@
      state: directory
      owner: root
      group: root
-      mode: 0700
+      mode: '0700'
  when:
      - rhel9cis_rule_5_1_3
  tags:
@ -50,7 +50,7 @@
      state: directory
      owner: root
      group: root
-      mode: 0700
+      mode: '0700'
  when:
      - rhel9cis_rule_5_1_4
  tags:
@ -66,7 +66,7 @@
      state: directory
      owner: root
      group: root
-      mode: 0700
+      mode: '0700'
  when:
      - rhel9cis_rule_5_1_5
  tags:
@ -81,7 +81,7 @@
      state: directory
      owner: root
      group: root
-      mode: 0700
+      mode: '0700'
  when:
      - rhel9cis_rule_5_1_6
  tags:
@ -96,7 +96,7 @@
      state: directory
      owner: root
      group: root
-      mode: 0700
+      mode: '0700'
  when:
      - rhel9cis_rule_5_1_7
  tags:
@ -124,7 +124,7 @@
            state: '{{ "file" if  rhel9cis_5_1_8_cron_allow_state.stat.exists else "touch" }}'
            owner: root
            group: root
-            mode: 0600
+            mode: '0600'
  when:
      - rhel9cis_rule_5_1_8
  tags:
@ -152,7 +152,7 @@
            state: '{{ "file" if  rhel9cis_5_1_9_at_allow_state.stat.exists else "touch" }}'
            owner: root
            group: root
-            mode: 0600
+            mode: '0600'
  when:
      - rhel9cis_rule_5_1_9
  tags:
--- a/tasks/section_5/cis_5.2.x.yml
+++ b/tasks/section_5/cis_5.2.x.yml
@ -5,7 +5,7 @@
      path: "/etc/ssh/sshd_config"
      owner: root
      group: root
-      mode: 0600
+      mode: '0600'
  when:
      - rhel9cis_rule_5_2_1
  tags:
@ -31,7 +31,7 @@
            path: "{{ item.path }}"
            owner: root
            group: root
-            mode: 0600
+            mode: '0600'
        loop: "{{ rhel9cis_5_2_2_ssh_private_host_key.files }}"
        loop_control:
            label: "{{ item.path }}"
@ -60,7 +60,7 @@
            path: "{{ item.path }}"
            owner: root
            group: root
-            mode: 0644
+            mode: '0644'
        loop: "{{ rhel9cis_5_2_3_ssh_public_host_key.files }}"
        loop_control:
            label: "{{ item.path }}"
--- a/tasks/section_5/cis_5.6.x.yml
+++ b/tasks/section_5/cis_5.6.x.yml
@ -50,7 +50,7 @@
      state: "{{ item.state }}"
      marker: "# {mark} - CIS benchmark - Ansible-lockdown"
      create: true
-      mode: 0644
+      mode: '0644'
      block: |
        TMOUT={{ rhel9cis_shell_session_timeout.timeout }}
        export TMOUT