UBUNTU24-CIS

Commit Graph

Author	SHA1	Message	Date
Shawn Hardwick	8a38650658	Add ignore_apt_update_changed_when default variable to allow users to specify changed_when behavior of apt update task; allows for idempotency checks (like Molecule) Signed-off-by: Shawn Hardwick <time4swim@gmail.com>	2025-02-05 12:53:49 -05:00
uk-bolly	a41047672d	Merge pull request #13 from ansible-lockdown/pre-commit-ci-update-config [pre-commit.ci] pre-commit autoupdate	2025-02-04 06:43:26 +00:00
pre-commit-ci[bot]	a167970bcf	[pre-commit.ci] pre-commit autoupdate updates: - [github.com/gitleaks/gitleaks: v8.23.2 → v8.23.3](https://github.com/gitleaks/gitleaks/compare/v8.23.2...v8.23.3) - [github.com/ansible-community/ansible-lint: v25.1.0 → v25.1.1](https://github.com/ansible-community/ansible-lint/compare/v25.1.0...v25.1.1)	2025-02-03 18:04:53 +00:00
uk-bolly	7ed58ca8a6	Merge pull request #8 from ansible-lockdown/auditd_arm64 Added auditd arm compatibility	2025-02-02 11:35:40 +00:00
Mark Bolwell	043fb4451b	Added auditd arm compatibility thanks to @arousseau-coveo for the excellent work Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-28 10:53:33 +00:00
uk-bolly	b3ed09583c	Merge pull request #7 from ansible-lockdown/pre-commit-ci-update-config [pre-commit.ci] pre-commit autoupdate	2025-01-28 10:33:55 +00:00
pre-commit-ci[bot]	05e9d75328	[pre-commit.ci] pre-commit autoupdate updates: - [github.com/gitleaks/gitleaks: v8.23.1 → v8.23.2](https://github.com/gitleaks/gitleaks/compare/v8.23.1...v8.23.2)	2025-01-27 17:53:22 +00:00
uk-bolly	30719a77b5	Merge pull request #6 from ansible-lockdown/apt_update moved apt update order to assist with audit	2025-01-21 16:22:21 +00:00
uk-bolly	c8e368e541	Merge pull request #5 from ansible-lockdown/pre-commit-ci-update-config [pre-commit.ci] pre-commit autoupdate	2025-01-21 16:21:55 +00:00
Mark Bolwell	bba53315f2	moved apt update order to assist with audit Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-21 08:07:27 +00:00
pre-commit-ci[bot]	46e23a7c4b	[pre-commit.ci] pre-commit autoupdate updates: - [github.com/gitleaks/gitleaks: v8.23.0 → v8.23.1](https://github.com/gitleaks/gitleaks/compare/v8.23.0...v8.23.1) - [github.com/ansible-community/ansible-lint: v24.12.2 → v25.1.0](https://github.com/ansible-community/ansible-lint/compare/v24.12.2...v25.1.0)	2025-01-20 17:45:16 +00:00
uk-bolly	7a1b8b5250	Merge pull request #4 from ansible-lockdown/pre-commit-ci-update-config [pre-commit.ci] pre-commit autoupdate	2025-01-14 08:14:20 +00:00
uk-bolly	1b98e1ed7b	Merge pull request #3 from ansible-lockdown/jan25_updates Jan25 updates	2025-01-13 20:04:27 +00:00
pre-commit-ci[bot]	a857b1e552	[pre-commit.ci] pre-commit autoupdate updates: - [github.com/gitleaks/gitleaks: v8.21.2 → v8.23.0](https://github.com/gitleaks/gitleaks/compare/v8.21.2...v8.23.0) - [github.com/ansible-community/ansible-lint: v24.10.0 → v24.12.2](https://github.com/ansible-community/ansible-lint/compare/v24.10.0...v24.12.2)	2025-01-13 17:50:19 +00:00
Mark Bolwell	5de8d4c558	Added optional logrotate install and variable, improved 6.1.3.8 logic Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 15:33:10 +00:00
Mark Bolwell	7095fdc49f	added rsyslog override logging option Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 14:29:47 +00:00
Mark Bolwell	d190c51fa4	Updated since ubuntu removes unncessary time pkgs Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 14:00:34 +00:00
Mark Bolwell	e69c18fa1c	improved audit handler and related rules Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 13:16:56 +00:00
Mark Bolwell	6e78559776	tidy up grub/bootloader logic Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 12:40:06 +00:00
Mark Bolwell	18152bc17d	fix conditional for snap/squashfs Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 12:39:13 +00:00
Mark Bolwell	113b32018f	profile script Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 12:38:24 +00:00
Mark Bolwell	cc307541a9	5.4.3.3 updated to add profile script Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 12:37:54 +00:00
Mark Bolwell	9709aa503b	5.4.3.2 updated permissions Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 09:27:23 +00:00
Mark Bolwell	b7bdc7f67c	Updated bootloader hash var and time tool inherit Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 09:26:52 +00:00
Mark Bolwell	3c62843418	fixed file permissions 2.3.2.1 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 09:05:37 +00:00
Mark Bolwell	c129cf0552	removed mask section u24 now removes time package not used automatically Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 09:03:01 +00:00
Mark Bolwell	3e92d4b54b	fixed permissions 5.4.3.2 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-10 08:40:32 +00:00
uk-bolly	cffe5e4056	Merge pull request #1 from ansible-lockdown/quote_fix Minor update	2025-01-07 19:02:40 +00:00
Mark Bolwell	01df043bdd	moved welcome to github self-hosted Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-07 18:32:29 +00:00
Mark Bolwell	08987aca24	fixed quotes on line25 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-07 18:20:54 +00:00
Mark Bolwell	909fdd414c	updated company naming Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2025-01-06 08:43:45 +00:00
uk-bolly	1e286afdd8	Merge pull request #5 from ansible-lockdown/align_audit_mounts Align audit mounts	2024-12-11 16:45:37 +00:00
Mark Bolwell	f77befa17e	lint mode update Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-11 11:50:29 +00:00
Mark Bolwell	0dce656a92	lint update Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-11 11:04:24 +00:00
Mark Bolwell	cd84a2930d	updated variable name Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-11 10:23:16 +00:00
Mark Bolwell	853faab523	Added comment on set_fact for mountpoints Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-11 10:23:05 +00:00
Mark Bolwell	66ca3976a9	fixed spacing Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-11 10:10:22 +00:00
Mark Bolwell	b2cded315b	Updated mountpoint vars correctly Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-11 10:10:14 +00:00
Mark Bolwell	de47c63145	Updated auditd handler Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-10 12:22:34 +00:00
Mark Bolwell	4f5a3f7c8d	Update to mounts section1 Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-10 12:07:31 +00:00
Mark Bolwell	342489f4d9	lint update Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-10 12:07:14 +00:00
Mark Bolwell	a39fb43a48	Updated lint file Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-10 12:06:56 +00:00
uk-bolly	b87b6fbefd	Merge pull request #4 from ansible-lockdown/alignment Alignment	2024-12-10 08:13:27 +00:00
Mark Bolwell	21b0465270	updated changelog Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-06 14:18:50 +00:00
Mark Bolwell	e7d6d56fb9	lint updated spacing and multiple improvements Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-06 14:16:39 +00:00
Mark Bolwell	6484302013	updated lint files Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-12-06 14:16:05 +00:00
uk-bolly	edc2819272	Merge pull request #3 from ansible-lockdown/2.2_control_updates 2.2 control updates	2024-09-26 13:25:08 +01:00
Mark Bolwell	a22741daa9	idempotent improvements, var fixes Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-09-26 08:06:51 +01:00
Mark Bolwell	1f90fef6dd	Updated thanks to @mathf Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-09-26 07:45:02 +01:00
Mark Bolwell	8453245572	removed old config Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>	2024-09-05 09:23:38 +01:00

1 2 3

105 Commits All Branches Search

105 Commits

All Branches