sr2/RHEL9-CIS
4
0
Fork 0
forked from ansible-lockdown/RHEL9-CIS
Code Activity
1127 commits 2 branches 15 tags 2.5 MiB
Commit graph

1127 commits

This branch
This branch
All branches
Author SHA1 Message Date
Frederick Witty
e61cafb59b
addressed issue #387, thank you @fragglexarmy 
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
 2025-09-09 15:59:30 -04:00
Frederick Witty
5794114b3e
Update prelim logic to address #382 
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
 2025-09-09 15:12:01 -04:00
Frederick Witty
2dfa9266a8
Update cryto policy var to standard 
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
 2025-09-08 11:54:57 -04:00
Frederick Witty
413ccb96b7
Update cryto policy based controls with improved logic 
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
 2025-09-05 16:39:55 -04:00
Frederick Witty
b0ec6c4820
Fix for #384, thank you @polski-g 
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
 2025-09-05 16:24:11 -04:00
Frederick Witty
de7555aa10
Update Changelog with fixes 
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
 2025-09-02 17:14:30 -04:00
uk-bolly
39c7dfa187
Merge pull request #381 from ansible-lockdown/August25_updates 
August25 updates
 2025-08-15 16:46:20 +01:00
Mark Bolwell
f8d9521367
updated 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2025-08-15 16:19:07 +01:00
Mark Bolwell
f0fb701122
updated var naming on 5.4.2.5 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2025-08-15 16:10:37 +01:00
Mark Bolwell
7428f269e7
changed rsyslog to insert before line134 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2025-08-15 16:09:51 +01:00
Mark Bolwell
cddad90a23
enabled different locale characters in password check 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2025-08-15 16:04:07 +01:00
Mark Bolwell
fd2bfb7437
improved prelim tests for 5.2.4 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2025-08-15 16:03:11 +01:00
Mark Bolwell
b21569c62d
added update for gdm and giu packages 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2025-08-15 16:00:36 +01:00
Mark Bolwell
553f18e992
updated pre-commit-hooks version 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2025-08-15 15:13:33 +01:00
uk-bolly
456d203fd3
Merge pull request #380 from numericillustration/devel 
renames 3 uses of ansible.builtin.systemd_service
 2025-08-14 16:30:52 +01:00
Michael Hicks
cfbbb3339a
renames 3 uses of ansible.builtin.systemd_service to ansible.builtin.systemd to maintain ansible 2.12+ compat. Fixes #379 
Signed-off-by: Michael Hicks <nooneofconsequence@gmail.com>
 2025-08-11 15:17:00 -07:00
uk-bolly
a4b39e1250
Merge pull request #375 from ansible-lockdown/audit_update 
Audit update
 2025-08-05 13:20:51 +01:00
Mark Bolwell
4b62f0fc35
Updated post steps inline with pre steps for file permissions 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2025-08-04 09:56:30 +01:00
Mark Bolwell
876e261d1f
fixed issues for permissions when using fetch thanks to @steve-hayes 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2025-08-04 09:54:07 +01:00
Fred W.
a0c1d95d3c
Merge pull request #370 from ansible-lockdown/pre-commit-ci-update-config 
[pre-commit.ci] pre-commit autoupdate
 2025-07-25 18:14:11 -04:00
pre-commit-ci[bot]
b62a414abb
[pre-commit.ci] pre-commit autoupdate 
updates:
- [github.com/gitleaks/gitleaks: v8.27.2 → v8.28.0](https://github.com/gitleaks/gitleaks/compare/v8.27.2...v8.28.0)
 2025-07-21 17:28:55 +00:00
uk-bolly
feb183553c
Merge pull request #367 from siemens/siemens/rhel9_v2_fixing_inconsistencies 
Fixing minor inconsistencies
 2025-07-18 14:34:22 +01:00
uk-bolly
10d6d425ec
Merge pull request #363 from siemens/siemens/feat/rhel9_v2_variable_documentation 
Enhancing  variable documentation
 2025-07-18 14:32:59 +01:00
Tomuta, Diana Maria (T CST SCC-RO)
f90e896b0c
Fixing minor documentation issues part 3. 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-07-09 14:21:19 +03:00
Tomuta, Diana Maria (T CST SCC-RO)
ad8e73c3ee
Fixing minor documentation issues part 2. 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-07-09 13:28:33 +03:00
Tomuta, Diana Maria (T CST SCC-RO)
76a680bb59
Fixing minor documentation issues. 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-07-09 12:13:45 +03:00
Tomuta, Diana Maria (T CST SCC-RO)
b182abf2aa
Fixing inconsistencies for importing tasks from section 1. 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-07-08 16:38:12 +03:00
Tomuta, Diana Maria (T CST SCC-RO)
4329591c90
Fixing inconsistencies between rule ids in title, tags and when. 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-07-08 09:37:29 +03:00
uk-bolly
025d83d2c6
Merge pull request #359 from siemens/siemens/feat/rhel9_v2_fix_control_6.3.3.5 
Fixing issue for Control 6.3.3.5
 2025-07-04 12:10:04 +01:00
Tomuta, Diana Maria (T CST SCC-RO)
d25b472283
Fixing order of configs. 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-07-04 13:50:05 +03:00
Tomuta, Diana Maria (T CST SCC-RO)
dfd5eb9a92
Small fixes part 3. 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-07-04 13:44:46 +03:00
uk-bolly
38916aeade
Merge pull request #361 from siemens/siemens/feat/rhel9_v2_fix_control_5.4.2.5 
Fixing issue for Control 5.4.2.5
 2025-07-04 11:35:17 +01:00
uk-bolly
1ed720e7c9
Merge pull request #360 from siemens/siemens/feat/rhel9_v2_fix_control_6.3.4.5 
Fixing issue for Control 6.3.4.5
 2025-07-04 11:33:11 +01:00
Tomuta, Diana Maria (T CST SCC-RO)
21fd466ec6
Small fixes part 2. 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-07-04 11:58:08 +03:00
Tomuta, Diana Maria (T CST SCC-RO)
778877f3f3
Small fixes. 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-07-04 10:50:45 +03:00
Tomuta, Diana Maria (T CST SCC-RO)
a556750894
Fixing issue https://code.siemens.com/infosec-pss-gov/security-crafter-baseline-automations/ansible-lockdown/rhel9-cis/-/issues/41. 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-07-03 13:03:08 +03:00
Tomuta, Diana Maria (T CST SCC-RO)
55744fe599
Fixing documentation of the vars. 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-07-02 13:48:17 +03:00
uk-bolly
182e07a63f
Merge pull request #354 from davidalexander83/devel 
Fix re.error due to (?i) not at start of re
 2025-07-02 10:22:20 +01:00
davidalexander83
7ec2c9bf5e
Fix re.error due to (?i) not at start of re 
6.2.2.3 and 6.2.2.4 cause issues due to current re syntax:
^(?i)(\s*compress=)

re.error: global flags not at the start of the expression at position 1

Fix removes ^ which resolves issue without affecting functionality.

Signed-off-by: davidalexander83 <davidalexander83@icloud.com>
 2025-07-02 12:32:20 +10:00
Fred W.
d8af4747d4
Merge pull request #353 from ansible-lockdown/fix_5.2.4 
Addresses #318 - Thank you @kodebach & @bgro
 2025-06-27 11:54:19 -04:00
Frederick Witty
ac276f34fc
ChangeLog versioning fix 
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
 2025-06-27 11:15:19 -04:00
Frederick Witty
23338ccd31
Addresses #318 - Thank you @kodebach & @bgro 
Signed-off-by: Frederick Witty <frederickw@mindpointgroup.com>
 2025-06-27 11:12:07 -04:00
Fred W.
16179a658b
Merge pull request #352 from ansible-lockdown/pre-commit-ci-update-config 
[pre-commit.ci] pre-commit autoupdate
 2025-06-27 09:13:10 -04:00
Diana-Maria Dumitru
ed699a50ba
Fixing issue https://code.siemens.com/infosec-pss-gov/security-crafter-baseline-automations/ansible-lockdown/rhel9-cis/-/issues/43 . 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-06-26 13:35:51 +03:00
Tomuta, Diana Maria (T CST SCC-RO)
5ed6abd5d3
Fixing issue https://code.siemens.com/infosec-pss-gov/security-crafter-baseline-automations/ansible-lockdown/rhel9-cis/-/issues/42 . 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
 2025-06-26 13:29:42 +03:00
pre-commit-ci[bot]
fc2f5895ce
[pre-commit.ci] pre-commit autoupdate 
updates:
- [github.com/ansible-community/ansible-lint: v25.5.0 → v25.6.1](https://github.com/ansible-community/ansible-lint/compare/v25.5.0...v25.6.1)
 2025-06-23 17:27:59 +00:00
uk-bolly
48fd578ee1
Merge pull request #351 from ansible-lockdown/audit_only_fetch 
Audit only fetch
 2025-06-20 14:41:15 +02:00
Mark Bolwell
37f4d0c9f0
fixed crypto logic 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2025-06-20 12:15:13 +01:00
Mark Bolwell
bd1547313a
Fix logic and notes for in crypto policy building 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
 2025-06-20 11:29:53 +01:00
uk-bolly
055cb35603
Merge branch 'devel' into audit_only_fetch 
Signed-off-by: uk-bolly <mark.bollyuk@gmail.com>
 2025-06-20 11:21:28 +02:00