colin
/
UBUNTU24-CIS
mirror of https://github.com/ansible-lockdown/UBUNTU24-CIS.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 0a7e2cf24d
         Merge 84ed42a49d into 7fcf86a2e6 pre-commit-ci[bot] 2025-06-23 17:28:13 +0000
  • 84ed42a49d
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci-update-config pre-commit-ci[bot] 2025-06-23 17:28:12 +0000
  • 7fcf86a2e6
         Merge pull request #46 from ansible-lockdown/pre-commit-ci-update-config devel uk-bolly 2025-06-19 17:48:27 +0200
  • 12b25a4d46
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-06-09 17:24:22 +0000
  • 62af275dd4
         Merge pull request #45 from ansible-lockdown/pre-commit-ci-update-config Fred W. 2025-06-09 08:40:12 -0400
  • 34cc92d8c4
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-06-02 17:25:19 +0000
  • ae71b1b18f
         Merge pull request #44 from ansible-lockdown/pre-commit-ci-update-config Fred W. 2025-05-28 09:34:24 -0400
  • 5920016257
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-05-26 17:23:25 +0000
  • 23b208f16c
         Merge pull request #43 from ansible-lockdown/devel 1.0.2 main uk-bolly 2025-05-22 08:08:16 +0100
  • 6f75991455
         Merge pull request #42 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-05-21 17:40:11 +0100
  • 68647d4f01
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-05-19 17:24:17 +0000
  • ffba24432a
         Merge pull request #41 from ansible-lockdown/May_25_updates uk-bolly 2025-05-13 13:35:37 +0100
  • f8e14db0c3
         Added precommit badge Mark Bolwell 2025-05-12 17:08:41 +0100
  • 1ec17228ff
         Updated logic thanks to @UZziell #40 Mark Bolwell 2025-05-12 17:08:31 +0100
  • fac8eb7e02
         fix typo thanks to @UZziell #40 Mark Bolwell 2025-05-12 17:08:16 +0100
  • a8f039cba0
         added fix for PR #39 thansk to @Tjird Mark Bolwell 2025-05-12 14:30:38 +0100
  • 388331fe98
         Added fix for #22 thanks to @WhiteRoseLK Mark Bolwell 2025-05-12 14:29:12 +0100
  • af372a7c73
         added fix for #21 thanks to @PhilEV Mark Bolwell 2025-05-12 14:25:59 +0100
  • 0347692661
         added fix for #33 thanks to @WhiteRoseLK Mark Bolwell 2025-05-12 14:23:56 +0100
  • d5bad97cad
         Added fix for #37 thanks to @pdag Mark Bolwell 2025-05-12 14:03:06 +0100
  • b631e9e2d6
         Merge pull request #38 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-05-12 14:00:54 +0100
  • 777971e29f
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-05-05 17:26:29 +0000
  • 52de504da2
         fix: typo in '1.2.2.1' task name Ali Afif 2025-05-04 12:16:57 +0330
  • d29338eeab
         fix: chrony sources not owned by _chrony user Ali Afif 2025-05-04 12:14:42 +0330
  • e5d2bc840a
         Fix typo 2.2.21 > 2.1.21 warn_control_id Tjeerd 2025-05-01 11:22:00 +0200
  • f90b698a57
         Merge pull request #36 from ansible-lockdown/pre-commit-ci-update-config George Nalen 2025-04-15 14:39:47 -0500
  • f3f3622ae8
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-04-14 17:22:18 +0000
  • 371a35d4bf
         Merge pull request #35 from ansible-lockdown/tidy_up Fred W. 2025-04-14 11:39:49 -0400
  • b4239f6aef
         improve notes for fetch Mark Bolwell 2025-04-14 11:55:35 +0100
  • 86a14fdc78
         updated fetch default settings and tidy Mark Bolwell 2025-04-14 11:53:22 +0100
  • 7da19e8106
         Merge pull request #34 from ansible-lockdown/fileglob_update uk-bolly 2025-04-11 18:07:16 +0100
  • b6fb3c7dcc
         remove fileglob Mark Bolwell 2025-04-11 11:40:11 +0100
  • 7f0291fbf2
         improve container checks Mark Bolwell 2025-04-11 11:40:04 +0100
  • 9ac5740127
         updated features facts and audit fetch Mark Bolwell 2025-04-11 11:20:44 +0100
  • c755e9ed71
         Merge pull request #31 from ansible-lockdown/updates_march25 uk-bolly 2025-04-09 14:48:41 +0100
  • 9d62bba61e
         Merge pull request #32 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-04-09 10:39:49 +0100
  • 09562855b3
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-04-07 17:34:16 +0000
  • 7e3ae1d0a8
         added apt cache update prelim Mark Bolwell 2025-04-01 11:16:30 +0100
  • 38831269c9
         fix typo Mark Bolwell 2025-04-01 11:00:08 +0100
  • 6dfa7564be
         updated template Mark Bolwell 2025-04-01 10:48:25 +0100
  • 20cb8001e5
         addressed #28 thanks to @guba-elleschr Mark Bolwell 2025-04-01 08:22:56 +0100
  • 84f4a69c2d
         renamed moduel from ansible.builtin.systemd_service Mark Bolwell 2025-04-01 08:20:25 +0100
  • a931c60b5c
         lint updates Mark Bolwell 2025-04-01 08:14:51 +0100
  • f7b504afba
         Added options for fetch_audit and ansible facts Mark Bolwell 2025-04-01 08:10:33 +0100
  • 36945eb561
         added package when minimal install Mark Bolwell 2025-04-01 07:59:49 +0100
  • 85acc99536
         Merge pull request #30 from ansible-lockdown/updates_march25 uk-bolly 2025-03-31 13:45:47 +0100
  • c1684508f6
         updated Mark Bolwell 2025-03-31 09:07:09 +0100
  • 62c67740e4
         typo fixes Mark Bolwell 2025-03-31 08:41:38 +0100
  • 2611117b33
         Updated Mark Bolwell 2025-03-31 08:40:25 +0100
  • ecfee57c60
         updated workflow files Mark Bolwell 2025-03-31 08:38:59 +0100
  • b32cd33fcb
         Merge pull request #27 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-03-25 11:23:30 +0000
  • 7d5187fc43
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-03-24 17:26:14 +0000
  • ecb63ea0d4
         Merge pull request #26 from ansible-lockdown/devel 1.0.1 uk-bolly 2025-03-18 15:56:54 +0000
  • 94be1d18d1
         Merge pull request #25 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-03-18 09:17:30 +0000
  • ef9d8ef176
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-03-17 17:28:27 +0000
  • fe8c656c3c make sure audit_log_dir exists, make sure shell_session_file does not contain readonly twice (leading to error messages upon login) Ralf Ronneburger 2025-02-28 18:09:13 +0100
  • 20c84823de
         Merge pull request #23 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-02-25 08:23:21 +0000
  • 29febe9be2
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-02-24 17:24:30 +0000
  • f7b759396e
         Merge pull request #18 from ansible-lockdown/Feb25_updates uk-bolly 2025-02-21 15:32:43 +0000
  • 39507838e6
         added workaround for ssh-server patching breaks /run/ssh Mark Bolwell 2025-02-21 11:15:52 +0000
  • 0835a05b08
         reset 5.1.1 settings Mark Bolwell 2025-02-21 11:13:47 +0000
  • 345928b74f
         updated 5.1.1 logic for ec2 image Mark Bolwell 2025-02-21 09:45:33 +0000
  • 39efaecdd2
         Added updated for 5.1.1 to ignore ec2 based ssh config perms change Mark Bolwell 2025-02-20 17:09:21 +0000
  • fca0434bb3
         Lint Mark Bolwell 2025-02-20 16:46:42 +0000
  • 764b0eaa63
         removed tag typo in 5.1.7 #20 Mark Bolwell 2025-02-20 09:56:37 +0000
  • 5553ddb0a8
         updated rules for 4.4.x.x thanks to issue #19 Mark Bolwell 2025-02-20 09:52:24 +0000
  • a290776eee
         issue #10 thanks to cf-sewe Mark Bolwell 2025-02-14 12:06:57 +0000
  • 889377b507
         updated for precommit Mark Bolwell 2025-02-14 12:00:29 +0000
  • dae6f8ab9f
         issue #12 addressed moduel update thanks to @VitaliySynytskyi Mark Bolwell 2025-02-14 11:59:54 +0000
  • fdcee67e0a
         addressed #15 thanks tou @WhiteRoseLK Mark Bolwell 2025-02-14 11:58:46 +0000
  • 2bb9240aae
         addressed #9 thanks to @kerjox Mark Bolwell 2025-02-14 11:28:10 +0000
  • 9aa55e5616
         Merge pull request #14 from ShawnHardwick/shawn.hardwick/idempotency uk-bolly 2025-02-11 12:09:11 +0100
  • 3c39ff1ed0
         Merge pull request #17 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-02-11 12:05:08 +0100
  • a929843683
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-02-10 17:53:59 +0000
  • 9a2a7ad96f
         If prelim_auditd_logfile does not evaluate, check mode will fail on rule 6.2.4.3 with 'file () is absent, cannot continue' error Shawn Hardwick 2025-02-05 12:08:20 -0500
  • a9df5eb912
         Set a default variable value for control_1_3_1_4_was_run; if only level1-server tasks are executed, this variable is never set and tasks fail Shawn Hardwick 2025-02-05 12:06:02 -0500
  • 4af134cd74
         Update rule 5.4.1.5 to use shell task which supports pipes instead of command task; previously this would silently fail Shawn Hardwick 2025-02-05 12:03:30 -0500
  • 1cf3c4d58b
         Update regexp for rule 2.1.21 to be more strict when updating line in file; allows task to be idempotent with itself Shawn Hardwick 2025-02-05 12:02:23 -0500
  • 8a38650658
         Add ignore_apt_update_changed_when default variable to allow users to specify changed_when behavior of apt update task; allows for idempotency checks (like Molecule) Shawn Hardwick 2025-02-05 11:59:30 -0500
  • a41047672d
         Merge pull request #13 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-02-04 06:43:26 +0000
  • a167970bcf
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-02-03 18:04:53 +0000
  • 7ed58ca8a6
         Merge pull request #8 from ansible-lockdown/auditd_arm64 uk-bolly 2025-02-02 11:35:40 +0000
  • 043fb4451b
         Added auditd arm compatibility thanks to @arousseau-coveo for the excellent work Mark Bolwell 2025-01-28 10:53:33 +0000
  • b3ed09583c
         Merge pull request #7 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-01-28 10:33:55 +0000
  • 05e9d75328
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-01-27 17:53:22 +0000
  • 30719a77b5
         Merge pull request #6 from ansible-lockdown/apt_update uk-bolly 2025-01-21 16:22:21 +0000
  • c8e368e541
         Merge pull request #5 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-01-21 16:21:55 +0000
  • bba53315f2
         moved apt update order to assist with audit Mark Bolwell 2025-01-21 08:07:27 +0000
  • 46e23a7c4b
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-01-20 17:45:16 +0000
  • 7a1b8b5250
         Merge pull request #4 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-01-14 08:14:20 +0000
  • 1b98e1ed7b
         Merge pull request #3 from ansible-lockdown/jan25_updates uk-bolly 2025-01-13 20:04:27 +0000
  • a857b1e552
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-01-13 17:50:19 +0000
  • 5de8d4c558
         Added optional logrotate install and variable, improved 6.1.3.8 logic Mark Bolwell 2025-01-10 15:33:10 +0000
  • 7095fdc49f
         added rsyslog override logging option Mark Bolwell 2025-01-10 14:29:47 +0000
  • d190c51fa4
         Updated since ubuntu removes unncessary time pkgs Mark Bolwell 2025-01-10 14:00:34 +0000
  • e69c18fa1c
         improved audit handler and related rules Mark Bolwell 2025-01-10 13:16:56 +0000
  • 6e78559776
         tidy up grub/bootloader logic Mark Bolwell 2025-01-10 12:40:06 +0000
  • 18152bc17d
         fix conditional for snap/squashfs Mark Bolwell 2025-01-10 12:39:13 +0000
  • 113b32018f
         profile script Mark Bolwell 2025-01-10 12:38:24 +0000
  • cc307541a9
         5.4.3.3 updated to add profile script Mark Bolwell 2025-01-10 12:37:54 +0000