ansible-towers/ansible-role-rhel9-cis
1
0
Fork 0
mirror of https://github.com/RedHatOfficial/ansible-role-rhel9-cis.git synced 2026-02-10 09:22:06 +02:00
Code Issues Packages Projects Releases Wiki Activity

Updated defaults/main.yml

Browse Source
This commit is contained in:
ComplianceAsCode development team
2022-12-20 20:27:02 -05:00
committed by Dan Clark
parent 1fad057be8
commit a8b701413f
1 changed files with 16 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
defaults/main.yml
View File

@@ -120,6 +120,7 @@ auditd_data_retention_max_log_file: true
auditd_data_retention_max_log_file_action: true auditd_data_retention_max_log_file_action: true
auditd_data_retention_space_left_action: true auditd_data_retention_space_left_action: true
banner_etc_issue: true banner_etc_issue: true
banner_etc_issue_net: true
banner_etc_motd: true banner_etc_motd: true
chronyd_specify_remote_server: true chronyd_specify_remote_server: true
configure_crypto_policy: true configure_crypto_policy: true
@@ -128,6 +129,9 @@ configure_strategy: true
coredump_disable_backtraces: true coredump_disable_backtraces: true
coredump_disable_storage: true coredump_disable_storage: true
dconf_gnome_banner_enabled: true dconf_gnome_banner_enabled: true
dconf_gnome_disable_automount: true
dconf_gnome_disable_automount_open: true
dconf_gnome_disable_user_list: true
dconf_gnome_login_banner_text: true dconf_gnome_login_banner_text: true
dir_perms_world_writable_sticky_bits: true dir_perms_world_writable_sticky_bits: true
disable_host_auth: true disable_host_auth: true
@@ -149,12 +153,15 @@ file_groupowner_cron_hourly: true
file_groupowner_cron_monthly: true file_groupowner_cron_monthly: true
file_groupowner_cron_weekly: true file_groupowner_cron_weekly: true
file_groupowner_crontab: true file_groupowner_crontab: true
file_groupowner_efi_user_cfg: true
file_groupowner_etc_group: true file_groupowner_etc_group: true
file_groupowner_etc_gshadow: true file_groupowner_etc_gshadow: true
file_groupowner_etc_issue_net: true
file_groupowner_etc_passwd: true file_groupowner_etc_passwd: true
file_groupowner_etc_shadow: true file_groupowner_etc_shadow: true
file_groupowner_grub2_cfg: true file_groupowner_grub2_cfg: true
file_groupowner_sshd_config: true file_groupowner_sshd_config: true
file_groupowner_user_cfg: true
file_groupownership_home_directories: true file_groupownership_home_directories: true
file_owner_backup_etc_group: true file_owner_backup_etc_group: true
file_owner_backup_etc_gshadow: true file_owner_backup_etc_gshadow: true
@@ -167,12 +174,15 @@ file_owner_cron_hourly: true
file_owner_cron_monthly: true file_owner_cron_monthly: true
file_owner_cron_weekly: true file_owner_cron_weekly: true
file_owner_crontab: true file_owner_crontab: true
file_owner_efi_user_cfg: true
file_owner_etc_group: true file_owner_etc_group: true
file_owner_etc_gshadow: true file_owner_etc_gshadow: true
file_owner_etc_issue_net: true
file_owner_etc_passwd: true file_owner_etc_passwd: true
file_owner_etc_shadow: true file_owner_etc_shadow: true
file_owner_grub2_cfg: true file_owner_grub2_cfg: true
file_owner_sshd_config: true file_owner_sshd_config: true
file_owner_user_cfg: true
file_permissions_at_allow: true file_permissions_at_allow: true
file_permissions_backup_etc_group: true file_permissions_backup_etc_group: true
file_permissions_backup_etc_gshadow: true file_permissions_backup_etc_gshadow: true
@@ -186,9 +196,11 @@ file_permissions_cron_monthly: true
file_permissions_cron_weekly: true file_permissions_cron_weekly: true
file_permissions_crontab: true file_permissions_crontab: true
file_permissions_efi_grub2_cfg: true file_permissions_efi_grub2_cfg: true
file_permissions_efi_user_cfg: true
file_permissions_etc_group: true file_permissions_etc_group: true
file_permissions_etc_gshadow: true file_permissions_etc_gshadow: true
file_permissions_etc_issue: true file_permissions_etc_issue: true
file_permissions_etc_issue_net: true
file_permissions_etc_motd: true file_permissions_etc_motd: true
file_permissions_etc_passwd: true file_permissions_etc_passwd: true
file_permissions_etc_shadow: true file_permissions_etc_shadow: true
@@ -196,6 +208,8 @@ file_permissions_grub2_cfg: true
file_permissions_home_directories: true file_permissions_home_directories: true
file_permissions_sshd_config: true file_permissions_sshd_config: true
file_permissions_sshd_pub_key: true file_permissions_sshd_pub_key: true
file_permissions_user_cfg: true
gnome_gdm_disable_xdmcp: true
grub2_audit_argument: true grub2_audit_argument: true
grub2_audit_backlog_limit_argument: true grub2_audit_backlog_limit_argument: true
grub2_enable_selinux: true grub2_enable_selinux: true
@@ -218,8 +232,10 @@ medium_severity: true
mount_option_dev_shm_nodev: true mount_option_dev_shm_nodev: true
mount_option_dev_shm_noexec: true mount_option_dev_shm_noexec: true
mount_option_dev_shm_nosuid: true mount_option_dev_shm_nosuid: true
mount_option_home_grpquota: true
mount_option_home_nodev: true mount_option_home_nodev: true
mount_option_home_nosuid: true mount_option_home_nosuid: true
mount_option_home_usrquota: true
mount_option_tmp_nodev: true mount_option_tmp_nodev: true
mount_option_tmp_noexec: true mount_option_tmp_noexec: true
mount_option_tmp_nosuid: true mount_option_tmp_nosuid: true