sr2/RHEL9-CIS
4
0
Fork 0
forked from ansible-lockdown/RHEL9-CIS
Code Activity
144 commits 2 branches 15 tags 2.5 MiB
Commit graph

144 commits

This branch
This branch
All branches
Author SHA1 Message Date
uk-bolly
bffb3d2dc6
aligned with new process 
removed debug
 2022-07-27 16:49:06 +01:00
uk-bolly
a83d96f4d4
changed private key path 2022-07-27 11:58:36 +01:00
uk-bolly
d050db7fa9
sync main.tf 2022-07-27 11:45:08 +01:00
uk-bolly
b3cf41af6f
changed to local file lookup 2022-07-27 11:30:09 +01:00
uk-bolly
df2d812e6a
added debug 2022-07-26 17:31:02 +01:00
uk-bolly
08bb6b553f
try private_key path again 2022-07-26 17:27:57 +01:00
uk-bolly
78c5e4661f
hardcode private_key path 2022-07-26 17:20:20 +01:00
uk-bolly
5a2da89394
quoted private_key 2022-07-26 17:17:36 +01:00
uk-bolly
b1daec8c24
updated remote-exec 2022-07-26 16:47:53 +01:00
uk-bolly
dbd3ab706d
updated remote-exec 2022-07-26 16:39:06 +01:00
uk-bolly
8178261ea7
added private key var 2022-07-26 16:32:11 +01:00
uk-bolly
d99ab69928
Added private key var 2022-07-26 16:31:16 +01:00
uk-bolly
78116ee738
added new ssh connection 2022-07-26 16:30:45 +01:00
uk-bolly
32ce7b569f
add debug 2022-07-26 13:59:10 +01:00
uk-bolly
c24f0a3a71
added user 2022-07-26 13:27:11 +01:00
uk-bolly
4c287c7db0
added private key options 2022-07-26 12:50:43 +01:00
uk-bolly
15a6cf4c3d
change to wait_for module 2022-07-26 12:44:25 +01:00
uk-bolly
f5e9fb96af
fix correct timeout 2022-07-26 12:04:54 +01:00
uk-bolly
3746686927
updated timeout test connection 2022-07-26 11:50:10 +01:00
uk-bolly
ab698c0777
fixed ansible test connect delay 2022-07-26 11:34:13 +01:00
uk-bolly
357e06cbb4
Update linux_benchmark_testing.yml 
updated system status check
 2022-07-26 11:03:17 +01:00
uk-bolly
cbe3ca1585
Merge pull request #17 from ansible-lockdown/improvements 
Improvements
 2022-06-09 13:52:36 +01:00
Mark Bolwell
333e1d2329
updted syslog logic for audit 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-06-08 12:31:29 +01:00
Mark Bolwell
fdb3eb6286
terraform format 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-06-07 12:01:30 +01:00
Mark Bolwell
a8446b989b
added latest rhel9 image 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-06-07 10:23:18 +01:00
Mark Bolwell
2090cc4a45
not required file 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-06-07 10:07:26 +01:00
Mark Bolwell
2c4718fb75
fix title 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-06-07 10:07:19 +01:00
uk-bolly
0212c6aec3
Merge pull request #16 from ansible-lockdown/improvements 
Improvements
removed all legacy OS checks
 2022-05-17 14:49:52 +01:00
Mark Bolwell
93e3f7bf46
conditional and warning msg std 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-05-11 11:20:12 +01:00
Mark Bolwell
2ecc61649e
Std Warning msg 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-05-11 11:19:50 +01:00
Mark Bolwell
cbb5ff7cc2
Added git install to step 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-05-11 11:19:33 +01:00
Mark Bolwell
9368c1e17e
updated for rh9 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-05-11 09:57:44 +01:00
Mark Bolwell
5ce4b873d7
removed rh8 checks 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-05-11 09:57:33 +01:00
Mark Bolwell
63c82f8305
Removed python 2/3 checks for rh7/8 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-05-11 09:42:31 +01:00
uk-bolly
d5cce24f00
Merge pull request #14 from alewando/umask_fix 
Fix UMASK hardening
workflow failure expected until RH9 GA
 2022-05-11 09:38:42 +01:00
Adam Lewandowski
b9a3e3d2c6 Fix UMASK hardening 
Signed-off-by: Adam Lewandowski <adam.lewandowski@plxis.com>
 2022-05-09 14:12:41 -04:00
uk-bolly
0348777c0b
Merge pull request #12 from alewando/var_defaults 
Add missing variable defaults for 'rhel9cis_pam_faillock'
adding a variable not breaking pipeline OK to approve
 2022-05-06 16:39:09 +01:00
Adam Lewandowski
581eb70b48 Restore rhel9cis_pam_faillock.remember, as it is used by rules 5.5.3 and 5.5.4 
Signed-off-by: Adam Lewandowski <adam.lewandowski@plxis.com>
 2022-05-06 11:04:23 -04:00
Adam Lewandowski
62649cb6c5 Updated rhel9cis_pam_faillock defaults to only those needed for RHEL9 
Signed-off-by: Adam Lewandowski <adam.lewandowski@plxis.com>
 2022-05-06 11:04:23 -04:00
Adam Lewandowski
85afda6413 Add missing variable defaults for 'rhel9cis_pam_faillock' 
Signed-off-by: Adam Lewandowski <adam.lewandowski@plxis.com>
 2022-05-06 11:04:23 -04:00
uk-bolly
e93d1ca735
Merge pull request #11 from ansible-lockdown/audit_vars 
Add the ability to pass/change environment variable- current workflow failure expected
 2022-05-04 16:32:07 +01:00
Mark Bolwell
3fc813361f
fixed typo 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-05-03 16:34:31 +01:00
Mark Bolwell
627f6e291d
updated environment options 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-05-03 10:22:00 +01:00
uk-bolly
33cfc54a5e
Merge pull request #9 from ansible-lockdown/lint 
linting
 2022-04-27 09:09:11 +01:00
Mark Bolwell
91600af889
yamllint 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-04-26 16:01:56 +01:00
uk-bolly
8361791c51
Merge pull request #8 from ansible-lockdown/rh8_2.0 
Rh8 2.0
 2022-04-26 15:58:05 +01:00
Mark Bolwell
32f5817007
added missing test to 3.3.7 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-04-26 12:01:20 +01:00
Mark Bolwell
83f0fb30ec
updated regex 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-04-26 12:01:06 +01:00
Mark Bolwell
e807498ed8
updated for correct service name 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-04-25 18:32:33 +01:00
Mark Bolwell
2c9587e666
updated for rh9 only 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2022-04-25 18:30:43 +01:00