Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

add passwd task, control os-03 #136

Merged
merged 4 commits into from
Aug 7, 2017
Merged

add passwd task, control os-03 #136

merged 4 commits into from
Aug 7, 2017

Conversation

rndmh3ro
Copy link
Member

@rndmh3ro rndmh3ro commented Aug 4, 2017

No description provided.

@rndmh3ro rndmh3ro requested review from ypid and fitz123 August 4, 2017 20:24
ypid
ypid requested changes Aug 5, 2017
View reviewed changes
Copy link
Member

@ypid ypid left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The task is already present or am I missing something?

tasks/minimize_access.yml Outdated
@@ -18,9 +18,16 @@
when: item.stat.isdir
with_items: "{{ minimize_access_directories.results }}"

- name: change shadow ownership to root and mode to 0600 | DTAG SEC Req 3.21-7
- name: change shadow ownership to {{ os_shadow_perms.owner }}.{{ os_shadow_perms.group }} and mode to {{ os_shadow_perms.mode }} | os-03
file: dest='/etc/shadow' owner={{ os_shadow_perms.owner }} group={{ os_shadow_perms.group }} mode={{ os_shadow_perms.mode }}
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Seems like you duplicated this task above (new task is below) and changed it to proper YAML syntax. Sounds like you can remove the above task now?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Well actually I wanted to to add a new task to harden passwd, but failed while copy-pasting. I'll fix that.

@rndmh3ro rndmh3ro changed the title add shadow task, control os-03 add passwd task, control os-03 Aug 6, 2017
@rndmh3ro
Copy link
Member Author

rndmh3ro commented Aug 6, 2017

Now the PR is done, @ypid could you please make a review?

ypid
ypid approved these changes Aug 6, 2017
View reviewed changes
Copy link
Member

@ypid ypid left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@rndmh3ro rndmh3ro merged commit a88ff85 into master Aug 7, 2017
@rndmh3ro rndmh3ro deleted the passwd branch August 7, 2017 11:08
rndmh3ro added a commit that referenced this pull request Jul 24, 2020
@rndmh3ro
Merge pull request #136 from pwyliu/configure-gateway-ports
5a96607 
allow configuration of GatewayPorts
divialth pushed a commit to divialth/ansible-collection-hardening that referenced this pull request Aug 3, 2022
@rndmh3ro
Merge pull request dev-sec#136 from dev-sec/passwd
5b77717 
add passwd task, control os-03
divialth pushed a commit to divialth/ansible-collection-hardening that referenced this pull request Aug 3, 2022
@rndmh3ro
Merge pull request dev-sec#136 from pwyliu/configure-gateway-ports
ef31e8d 
allow configuration of GatewayPorts
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ypid ypid ypid approved these changes

@fitz123 fitz123 Awaiting requested review from fitz123

Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rndmh3ro @ypid