sr2/RHEL9-CIS
4
0
Fork 0
forked from ansible-lockdown/RHEL9-CIS
Code Activity

Commit graph

  • b5361df285
         updated for v2 Mark Bolwell 2024-07-24 14:05:57 +01:00
  • 3b346f7fe1
         initial v2 Mark Bolwell 2024-07-24 14:05:46 +01:00
  • 6ea105374a
         Initial v2 Mark Bolwell 2024-07-24 14:03:12 +01:00
  • 5c5499fd72
         Initial pmod templates for ssh control Mark Bolwell 2024-07-24 14:02:51 +01:00
  • a36a84c5ea
         lint and v2 initial Mark Bolwell 2024-07-24 14:02:05 +01:00
  • 42aa624d50
         updated Mark Bolwell 2024-07-24 14:01:40 +01:00
  • 06a1f2997c
         section 7 v2 initial Mark Bolwell 2024-07-24 14:01:10 +01:00
  • 9755b0fb62
         section 5 v2 initial Mark Bolwell 2024-07-24 14:00:45 +01:00
  • f1c4d96412
         lint updates Mark Bolwell 2024-07-24 14:00:00 +01:00
  • aa0f4d0f6d
         section4 v2 initial Mark Bolwell 2024-07-24 13:57:29 +01:00
  • e1579c8127
         fix typo Mark Bolwell 2024-07-23 08:46:27 +01:00
  • 3a027af304
         section 2 updates Mark Bolwell 2024-07-23 08:20:09 +01:00
  • a53569a474
         section 2 v2.0.0 update Mark Bolwell 2024-07-22 12:43:35 +01:00
  • bad08c0228
         section2 v2.0.0 updates Mark Bolwell 2024-07-22 12:43:08 +01:00
  • 2bf67cde0d
         Added Nist values Mark Bolwell 2024-07-22 12:42:39 +01:00
  • 8b58d71e4b
         section1 v2 initial Mark Bolwell 2024-07-19 17:01:23 +01:00
  • cf4376f1f7
         Merge pull request #222 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2024-07-17 09:50:32 +01:00
  • dbbe8a9f33
         Merge pull request #221 from ansible-lockdown/issue_audit_updates uk-bolly 2024-07-17 08:01:31 +01:00
  • 56dd646f08
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2024-07-15 17:49:49 +00:00
  • 62baec6d16
         changed to default bootloader hash Mark Bolwell 2024-07-12 12:37:45 +01:00
  • 065ab6aec6
         updated to latest workflow Mark Bolwell 2024-07-12 08:08:34 +01:00
  • 54e4ee1588
         update audit output and remove jmespath Mark Bolwell 2024-07-11 17:02:38 +01:00
  • 7dcb2cae1c
         removed jmespath dependancy Mark Bolwell 2024-07-11 16:57:45 +01:00
  • a946ec6534
         issue #216 addressed thanks to tedunder237 Mark Bolwell 2024-07-11 16:06:26 +01:00
  • 611b9ce0b9
         issue #217 addressed thanks to tedunder237 Mark Bolwell 2024-07-11 16:05:40 +01:00
  • 632f6b8367
         Merge pull request #215 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2024-07-08 17:30:47 +01:00
  • d40f2d032a
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2024-06-24 17:47:06 +00:00
  • bebdeea2bc
         Merge pull request #214 from ansible-lockdown/pre-commit-ci-update-config George Nalen 2024-06-18 14:48:05 -04:00
  • 8c1b1890fe
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2024-06-17 17:46:23 +00:00
  • 151896e113
         Merge pull request #213 from ansible-lockdown/devel 1.3.1 uk-bolly 2024-06-11 13:02:59 +01:00
  • 231c3c9092
         Merge pull request #212 from ansible-lockdown/meta_update uk-bolly 2024-06-11 12:18:05 +01:00
  • 66317c2103
         updated credits wording Mark Bolwell 2024-06-11 09:16:44 +01:00
  • 2cbf7df01f
         updated due to galaxy limitation Mark Bolwell 2024-06-11 09:05:50 +01:00
  • b77567384a
         Merge pull request #211 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2024-06-11 08:59:05 +01:00
  • 74a39d43b9
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2024-06-10 17:49:48 +00:00
  • 306eb59b88
         Merge pull request #210 from ansible-lockdown/devel 1.3.0 uk-bolly 2024-06-10 12:49:41 +01:00
  • f652ee449a
         Merge pull request #209 from ansible-lockdown/June24_updates uk-bolly 2024-06-06 14:59:08 +01:00
  • eeb76e2a37
         updated Mark Bolwell 2024-06-05 23:58:06 +01:00
  • 06e96ba769
         improvements Mark Bolwell 2024-06-05 23:57:18 +01:00
  • 49296c34a2
         tidy up spacing Mark Bolwell 2024-06-05 17:11:17 +01:00
  • 20e2986406
         capture only configuratoin lines from rsyslog Mark Bolwell 2024-06-05 17:10:22 +01:00
  • 5595097e78
         Allowed force for command 5.4.2 Mark Bolwell 2024-06-05 09:52:51 +01:00
  • 60a9000dda
         Address #191 Mark Bolwell 2024-06-05 09:46:14 +01:00
  • bd7c4e3da2
         improved tests based upon #190 thanks to @ipruteanu-sie Mark Bolwell 2024-06-05 08:01:17 +01:00
  • b279a9fb80
         Added /dev/null to exclude in prelim check shell Mark Bolwell 2024-06-05 08:00:02 +01:00
  • 21e0bc8387
         added PR details #193 thanks to @brakkio86 Mark Bolwell 2024-06-04 17:53:12 +01:00
  • 8adae24b93
         Merge pull request #208 from svennd/patch-1 uk-bolly 2024-06-04 17:26:59 +01:00
  • b7261126d9
         Merge pull request #207 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2024-06-04 17:26:21 +01:00
  • 4c899bee33
         Merge pull request #206 from svennd/devel uk-bolly 2024-06-04 17:25:54 +01:00
  • f781b072a7
         Merge pull request #199 from mark-tomich/devel uk-bolly 2024-06-04 17:25:10 +01:00
  • 4ca7b17c6e
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2024-06-03 17:46:46 +00:00
  • 2c09971cc2
         2.4 : socket vs sockets Svennd 2024-05-22 10:28:56 +02:00
  • 7661bc0963
         Merge pull request #205 from ansible-lockdown/devel 1.2.0 uk-bolly 2024-05-01 13:53:19 +01:00
  • c567238d00
         Merge pull request #1 from svennd/svennd-typo Svennd 2024-04-30 22:15:38 +02:00
  • f11d2cc3f0
         typo Svennd 2024-04-30 16:16:16 +02:00
  • 79e36d8736
         updated assert statement (#204) uk-bolly 2024-04-29 16:40:53 +01:00
  • d8f9b30182
         [pre-commit.ci] pre-commit autoupdate (#202) pre-commit-ci[bot] 2024-04-25 10:44:25 +01:00
  • b5bea721f1
         [pre-commit.ci] pre-commit autoupdate (#200) pre-commit-ci[bot] 2024-04-15 14:04:13 +01:00
  • f8fcfe0e78
         April_24 updates (#201) uk-bolly 2024-04-15 14:02:07 +01:00
  • 835cd41c8a
         removing the async because we need the results of the init in the subsequent step Mark Tomich 2024-03-29 14:12:12 -04:00
  • e87d637eb2
         [pre-commit.ci] pre-commit autoupdate (#192) pre-commit-ci[bot] 2024-03-25 11:10:05 +00:00
  • 6eeae19517
         Address issues in 4.1.1.2 and 4.1.1.3 including idempotent status (#188) RoboPickle 2024-03-14 17:13:34 +00:00
  • 7d7b6132f4
         March 24 to devel (#186) uk-bolly 2024-03-06 16:52:38 +00:00
  • 0f58436212
         Gpg import for rhel servers (#185) uk-bolly 2024-03-06 09:10:06 +00:00
  • 0215412e9b
         [pre-commit.ci] pre-commit autoupdate (#178) pre-commit-ci[bot] 2024-03-05 18:39:12 +00:00
  • 40bc7aa082
         Feb24 updates (#179) uk-bolly 2024-02-20 15:43:43 +00:00
  • 06ec3de5c4
         Merge pull request #175 from rjacobs1990/bugfix/fix-permissions-logfiles uk-bolly 2024-02-19 14:16:21 +00:00
  • 96536cc908
         Merge pull request #177 from RoboPickle/bugfix_5_3_4 uk-bolly 2024-02-19 12:16:51 +00:00
  • 467434a56f
         Added blank line between each named task for consistency. John Foster 2024-02-19 12:03:08 +00:00
  • 3313a1f2c3
         Merge pull request #131 from siemens/siemens/feat/replacingVarAuditCopyPath uk-bolly 2024-02-19 11:53:01 +00:00
  • 03e2a28653
         Merge pull request #174 from bbaassssiiee/bugfix/sshd uk-bolly 2024-02-19 11:44:42 +00:00
  • 21f24b45a1
         Merge pull request #169 from Illibur/patch-1 uk-bolly 2024-02-19 11:37:29 +00:00
  • f9dbbee1ec
         Merge pull request #167 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2024-02-19 11:35:19 +00:00
  • e3f5522824
         Merge pull request #166 from siemens/siemens/feat/BgrubbyUsageForParams uk-bolly 2024-02-19 11:34:52 +00:00
  • cc6522f276
         Merge pull request #164 from siemens/siemens/feat/Refactor_Document_main_variables uk-bolly 2024-02-19 11:29:34 +00:00
  • 488a4d5bff
         Merge pull request #150 from numericillustration/devel uk-bolly 2024-02-19 11:27:29 +00:00
  • e100b02f44
         Updated cis_6.1.x.yml to avoid deprecation warning as per Illibur's findings in issue #168. Changed vars on line 233 to use dictionary. John Foster 2024-02-16 15:06:27 +00:00
  • 0e89fedfca
         Adjusted tasks/main.yml indentation after running precommit checks John Foster 2024-02-15 10:17:41 +00:00
  • 1c7990cecd
         fixing some mismatched tags and tasks in 5.6.1.x Michael Hicks 2023-12-21 15:12:01 -08:00
  • 7fde313f85
         Main task was failing when using an AD account to connect to host. With an AD account there isn't an entry in the /etc/shadow file. This caused the password length check to treat it as a zero length password. Now local password check is skipped for AD account. Also added an additional check for a locked local account for the sudo user. John Foster 2024-02-13 15:37:39 +00:00
  • 0a98ad4aea
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2024-02-12 17:38:29 +00:00
  • 742165cd72
         fix: more readable condition and prevent skipping 0600 #173 rjacobs1990 2024-02-12 16:21:31 +01:00
  • 8652390beb
         fix: idempotency molecule issue fixed for logfiles and prevent skipping 0600 #173 rjacobs1990 2024-02-12 15:55:42 +01:00
  • c805ee398b
         fix: idempotency molecule issue fixed for logfiles #173 rjacobs1990 2024-02-12 14:47:12 +01:00
  • cc7f9ccfd0
         X11Forwarding found in /etc/ssh/sshd_config.d/50-redhat.conf Bas Meijer 2024-02-10 00:27:33 +01:00
  • baf8987a5f
         PermitRootLogin found in /etc/ssh/sshd_config.d/01-permitrootlogin.conf Bas Meijer 2024-02-09 22:32:09 +01:00
  • fcab25c61f
         Update cis_6.1.x.yml Illibur 2024-02-06 18:46:30 +02:00
  • e2738f0a44
         Fixing indentation for lines reported by yamllint Ionut Pruteanu 2024-01-31 21:31:14 +02:00
  • 18803420f0
         Replacing secure-configuration of 'audit' and 'audit_backlog_limit' from the /etc/default/grub approach to grubby(actually used by CIS) Ionut Pruteanu 2024-01-26 16:52:28 +02:00
  • 3581793d8e
         Documenting also new added(space_left & admin_space_left) Ionut Pruteanu 2024-01-31 20:31:03 +02:00
  • f2a2757d1b
         Fixing yaml-lint errors Ionut Pruteanu 2024-01-31 20:30:25 +02:00
  • a83678e9ce
         Removing statement about SSH precedence vars. Ionut Pruteanu 2024-01-31 20:27:07 +02:00
  • c70c23680a
         Aplying patch to be used for extending-documentation Ionut Pruteanu 2024-01-31 10:26:10 +02:00
  • 3fe681c0d2
         Merge pull request #159 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2024-01-26 12:50:54 +00:00
  • b726c2e444
         Merge pull request #154 from jLemmings/patch-3 uk-bolly 2024-01-26 12:44:07 +00:00
  • 902956e51d
         Merge pull request #151 from sickbock/devel uk-bolly 2024-01-26 12:37:20 +00:00
  • df1aef8d31
         Merge pull request #148 from siemens/siemens/feat/AuditVarsRefactoring uk-bolly 2024-01-26 12:34:30 +00:00
  • ac5eee81df
         Merge pull request #112 from siemens/siemens/feat/ensure_default_umask_027_5_6_5 uk-bolly 2024-01-26 12:32:45 +00:00
  • aa8a60b4ee
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2024-01-22 17:33:49 +00:00
  • 068c45f509
         Merge pull request #105 from siemens/siemens/feat/reverse_path_filtering_3_3_7 uk-bolly 2024-01-18 13:15:28 +00:00