colin
/
UBUNTU24-CIS
mirror of https://github.com/ansible-lockdown/UBUNTU24-CIS.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

idempotent improvements, var fixes 

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
This commit is contained in:
Mark Bolwell 2024-09-26 08:06:51 +01:00
parent 1f90fef6dd
commit a22741daa9
No known key found for this signature in database
GPG Key ID: 997FF7FE93AEB5B9
2 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
handlers/main.yml
View File

@ -165,7 +165,7 @@
- name: Auditd rules reload - name: Auditd rules reload
when: when:
- not prelim_auditd_immutable_check or - not prelim_auditd_immutable_check or
'"No change" not in ubtu24cis_rule_4_1_3_21_augen_check.stdout' '"No change" not in ubtu24cis_rule_6_2_3_21_grep -iR augen_check.stdout'
ansible.builtin.shell: augenrules --load ansible.builtin.shell: augenrules --load
- name: Audit_immutable_fact - name: Audit_immutable_fact

2
tasks/auditd.yml
View File

@ -1,6 +1,6 @@
--- ---
- name: "POST | AUDITD | Apply auditd template for section 4.1.3.x" - name: "POST | AUDITD | Apply auditd template for section 6.2.4.x"
when: update_audit_template when: update_audit_template
ansible.builtin.template: ansible.builtin.template:
src: audit/99_auditd.rules.j2 src: audit/99_auditd.rules.j2