RHEL9-CIS

Author	SHA1	Message	Date
Mark Bolwell	8694bfde75	with_items to loop Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2023-01-26 08:30:26 +00:00
Mark Bolwell	f9267a389b	remove state file on file module Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2023-01-26 08:29:03 +00:00
Mark Bolwell	3f76affa5b	changed_when for idempotency. 5.6. Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2023-01-20 13:34:30 +00:00
Mark Bolwell	999d7b5b1e	fix csv sugroup option updated Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2023-01-19 13:33:11 +00:00
Mark Bolwell	cb609c1f1a	fqcn update Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2023-01-19 13:31:53 +00:00
Mark Bolwell	acf0104f7a	lint updates Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2023-01-13 12:10:18 +00:00
Mark Bolwell	3ead0d63ac	warn control count updates Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2023-01-13 11:05:25 +00:00
Mark Bolwell	7c6555d92e	Lint updates & control alignment Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2023-01-13 09:09:21 +00:00
Mark Bolwell	c18151e158	linting fqcn Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2023-01-12 15:01:17 +00:00
Mark Bolwell	77dd593e0f	removed arg warn Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2023-01-10 11:19:41 +00:00
Mark Bolwell	e764ef55d5	lint updates Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-10-14 12:14:03 +01:00
Mark Bolwell	2491357136	Added login.defs 5.6.5 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-10-14 12:09:30 +01:00
Kristian	fc407f8329	tss user and spacing Signed-off-by: Kristian <kris9854@gmail.com>	2022-09-27 17:15:49 +02:00
Mark Bolwell	3df35e03a0	lint updates Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-09-16 11:34:42 +01:00
Mark Bolwell	4705e361bf	All passwords are expired during hardening #22 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-08-23 12:21:39 +01:00
Mark Bolwell	f45bbd6ee8	#21 user accts locked during user exec Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-08-23 12:21:11 +01:00
Mark Bolwell	6b6a4a32c8	added warning count Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-07-20 17:13:33 +01:00
Mark Bolwell	c3c668bb8e	crypto idempotency Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-06-20 17:04:44 +01:00
Mark Bolwell	91da6ffaa2	updated testing Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-06-17 11:23:57 +01:00
Mark Bolwell	5ce4b873d7	removed rh8 checks Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-05-11 09:57:33 +01:00
Adam Lewandowski	b9a3e3d2c6	Fix UMASK hardening Signed-off-by: Adam Lewandowski <adam.lewandowski@plxis.com>	2022-05-09 14:12:41 -04:00
Mark Bolwell	83f0fb30ec	updated regex Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-26 12:01:06 +01:00
Mark Bolwell	82d1d18504	consistent lineinfile usage Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-06 16:58:03 +01:00
Mark Bolwell	02d686f920	removed default state Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-06 16:38:24 +01:00
Mark Bolwell	9c771e03e4	use new var name Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-06 16:32:14 +01:00
Mark Bolwell	783c45d622	changed logic Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-05 16:56:27 +01:00
Mark Bolwell	13a6746997	lint Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-05 10:24:47 +01:00
Mark Bolwell	4e873bc0d6	added nfsnobody Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-05 10:09:06 +01:00
Mark Bolwell	d5065c1a82	lint Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-05 10:08:53 +01:00
Mark Bolwell	0ef9e990cc	tidy and fix titles Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-05 08:48:53 +01:00
Mark Bolwell	d9b807c325	change lineinfile to path Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-05 08:45:11 +01:00
Mark Bolwell	223254b5c9	rewrite Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-04 19:30:52 +01:00
Mark Bolwell	9a0ac22331	fix tag typo Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-04 16:20:27 +01:00
Mark Bolwell	e03f7194ff	added validate Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-04 16:16:31 +01:00
Mark Bolwell	790db75501	added validate & typo fixes Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-04 16:12:47 +01:00
Mark Bolwell	f0c4701dbd	updated controls Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-04-01 15:26:13 +01:00
Mark Bolwell	c6caa90059	updated Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-03-30 16:18:11 +01:00
Mark Bolwell	59e22e8600	fixed thanks to cf-sewe Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-02-07 16:44:41 +00:00
uk-bolly	02a36f7f8d	Fix in logic for Alma (#4 ) * container standards Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * logic on handlers Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * initial container ignore Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * tags and containder discovery Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * logic on auditd task Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * tags and crypto logic Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * distro update for rocky Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * system_is_container updates Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * ssh pkg check Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * logrotate pkg check Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * logic in container check Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * add pkg fact and audit conditionals Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * tidy up crypto step Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * Added missing tags Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * container vars file now a variable Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * added uid discovery and usage Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * Updated OS checks and conditionals Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * fixed empty become Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * change audit to include task Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * Added OS_specific vars Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * updated import/include Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * OS Specific vars Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * updated tags Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * updated changed_when Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * fixed UID logic Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * changed reboot var Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * changed skip_reboot var name Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * masked only Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * fix logic Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * remove debug update logic 6.2.8 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * initial Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com> * removed CentOS Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-02-02 11:25:03 +00:00
Mark Bolwell	54f4e0b4b8	boolean variable true/false Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-01-13 16:51:17 +00:00
Mark Bolwell	95d8152603	added args warn for shell Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-01-13 12:08:30 +00:00
Mark Bolwell	819c942d8f	updated include/import tasks Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-01-13 11:27:38 +00:00
Mark Bolwell	3b19db6812	replaced command with shell Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-01-13 11:27:26 +00:00
Mark Bolwell	a54b5216eb	Initial Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2022-01-07 09:06:18 +00:00

1 2 3

144 commits