colin
/
UBUNTU24-CIS
mirror of https://github.com/ansible-lockdown/UBUNTU24-CIS.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 5166856c69
         updated group ternary to be better defined for issue #33 issue_33_fix George Nalen 2025-04-17 16:52:03 -0500
  • 5445766fe2
         adjust for crontab group on cron.allow issue #33 George Nalen 2025-04-17 16:39:08 -0500
  • e7d62e81e1
         Merge fe8c656c3c into f90b698a57 rronneburger 2025-04-15 15:39:49 -0500
  • f90b698a57
         Merge pull request #36 from ansible-lockdown/pre-commit-ci-update-config devel George Nalen 2025-04-15 14:39:47 -0500
  • f3f3622ae8
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci-update-config pre-commit-ci[bot] 2025-04-14 17:22:18 +0000
  • 371a35d4bf
         Merge pull request #35 from ansible-lockdown/tidy_up Fred W. 2025-04-14 11:39:49 -0400
  • b4239f6aef
         improve notes for fetch Mark Bolwell 2025-04-14 11:55:35 +0100
  • 86a14fdc78
         updated fetch default settings and tidy Mark Bolwell 2025-04-14 11:53:22 +0100
  • 7da19e8106
         Merge pull request #34 from ansible-lockdown/fileglob_update uk-bolly 2025-04-11 18:07:16 +0100
  • b6fb3c7dcc
         remove fileglob Mark Bolwell 2025-04-11 11:40:11 +0100
  • 7f0291fbf2
         improve container checks Mark Bolwell 2025-04-11 11:40:04 +0100
  • 9ac5740127
         updated features facts and audit fetch Mark Bolwell 2025-04-11 11:20:44 +0100
  • c755e9ed71
         Merge pull request #31 from ansible-lockdown/updates_march25 uk-bolly 2025-04-09 14:48:41 +0100
  • 9d62bba61e
         Merge pull request #32 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-04-09 10:39:49 +0100
  • 09562855b3
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-04-07 17:34:16 +0000
  • 7e3ae1d0a8
         added apt cache update prelim Mark Bolwell 2025-04-01 11:16:30 +0100
  • 38831269c9
         fix typo Mark Bolwell 2025-04-01 11:00:08 +0100
  • 6dfa7564be
         updated template Mark Bolwell 2025-04-01 10:48:25 +0100
  • 20cb8001e5
         addressed #28 thanks to @guba-elleschr Mark Bolwell 2025-04-01 08:22:56 +0100
  • 84f4a69c2d
         renamed moduel from ansible.builtin.systemd_service Mark Bolwell 2025-04-01 08:20:25 +0100
  • a931c60b5c
         lint updates Mark Bolwell 2025-04-01 08:14:51 +0100
  • f7b504afba
         Added options for fetch_audit and ansible facts Mark Bolwell 2025-04-01 08:10:33 +0100
  • 36945eb561
         added package when minimal install Mark Bolwell 2025-04-01 07:59:49 +0100
  • 85acc99536
         Merge pull request #30 from ansible-lockdown/updates_march25 uk-bolly 2025-03-31 13:45:47 +0100
  • c1684508f6
         updated Mark Bolwell 2025-03-31 09:07:09 +0100
  • 62c67740e4
         typo fixes Mark Bolwell 2025-03-31 08:41:38 +0100
  • 2611117b33
         Updated Mark Bolwell 2025-03-31 08:40:25 +0100
  • ecfee57c60
         updated workflow files Mark Bolwell 2025-03-31 08:38:59 +0100
  • b32cd33fcb
         Merge pull request #27 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-03-25 11:23:30 +0000
  • 7d5187fc43
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-03-24 17:26:14 +0000
  • ecb63ea0d4
         Merge pull request #26 from ansible-lockdown/devel 1.0.1 main uk-bolly 2025-03-18 15:56:54 +0000
  • 94be1d18d1
         Merge pull request #25 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-03-18 09:17:30 +0000
  • ef9d8ef176
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-03-17 17:28:27 +0000
  • fe8c656c3c make sure audit_log_dir exists, make sure shell_session_file does not contain readonly twice (leading to error messages upon login) Ralf Ronneburger 2025-02-28 18:09:13 +0100
  • 20c84823de
         Merge pull request #23 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-02-25 08:23:21 +0000
  • 29febe9be2
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-02-24 17:24:30 +0000
  • f7b759396e
         Merge pull request #18 from ansible-lockdown/Feb25_updates uk-bolly 2025-02-21 15:32:43 +0000
  • 39507838e6
         added workaround for ssh-server patching breaks /run/ssh Mark Bolwell 2025-02-21 11:15:52 +0000
  • 0835a05b08
         reset 5.1.1 settings Mark Bolwell 2025-02-21 11:13:47 +0000
  • 345928b74f
         updated 5.1.1 logic for ec2 image Mark Bolwell 2025-02-21 09:45:33 +0000
  • 39efaecdd2
         Added updated for 5.1.1 to ignore ec2 based ssh config perms change Mark Bolwell 2025-02-20 17:09:21 +0000
  • fca0434bb3
         Lint Mark Bolwell 2025-02-20 16:46:42 +0000
  • 764b0eaa63
         removed tag typo in 5.1.7 #20 Mark Bolwell 2025-02-20 09:56:37 +0000
  • 5553ddb0a8
         updated rules for 4.4.x.x thanks to issue #19 Mark Bolwell 2025-02-20 09:52:24 +0000
  • a290776eee
         issue #10 thanks to cf-sewe Mark Bolwell 2025-02-14 12:06:57 +0000
  • 889377b507
         updated for precommit Mark Bolwell 2025-02-14 12:00:29 +0000
  • dae6f8ab9f
         issue #12 addressed moduel update thanks to @VitaliySynytskyi Mark Bolwell 2025-02-14 11:59:54 +0000
  • fdcee67e0a
         addressed #15 thanks tou @WhiteRoseLK Mark Bolwell 2025-02-14 11:58:46 +0000
  • 2bb9240aae
         addressed #9 thanks to @kerjox Mark Bolwell 2025-02-14 11:28:10 +0000
  • 9aa55e5616
         Merge pull request #14 from ShawnHardwick/shawn.hardwick/idempotency uk-bolly 2025-02-11 12:09:11 +0100
  • 3c39ff1ed0
         Merge pull request #17 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-02-11 12:05:08 +0100
  • a929843683
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-02-10 17:53:59 +0000
  • 9a2a7ad96f
         If prelim_auditd_logfile does not evaluate, check mode will fail on rule 6.2.4.3 with 'file () is absent, cannot continue' error Shawn Hardwick 2025-02-05 12:08:20 -0500
  • a9df5eb912
         Set a default variable value for control_1_3_1_4_was_run; if only level1-server tasks are executed, this variable is never set and tasks fail Shawn Hardwick 2025-02-05 12:06:02 -0500
  • 4af134cd74
         Update rule 5.4.1.5 to use shell task which supports pipes instead of command task; previously this would silently fail Shawn Hardwick 2025-02-05 12:03:30 -0500
  • 1cf3c4d58b
         Update regexp for rule 2.1.21 to be more strict when updating line in file; allows task to be idempotent with itself Shawn Hardwick 2025-02-05 12:02:23 -0500
  • 8a38650658
         Add ignore_apt_update_changed_when default variable to allow users to specify changed_when behavior of apt update task; allows for idempotency checks (like Molecule) Shawn Hardwick 2025-02-05 11:59:30 -0500
  • a41047672d
         Merge pull request #13 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-02-04 06:43:26 +0000
  • a167970bcf
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-02-03 18:04:53 +0000
  • 7ed58ca8a6
         Merge pull request #8 from ansible-lockdown/auditd_arm64 uk-bolly 2025-02-02 11:35:40 +0000
  • 043fb4451b
         Added auditd arm compatibility thanks to @arousseau-coveo for the excellent work auditd_arm64 Mark Bolwell 2025-01-28 10:53:33 +0000
  • b3ed09583c
         Merge pull request #7 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-01-28 10:33:55 +0000
  • 05e9d75328
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-01-27 17:53:22 +0000
  • 30719a77b5
         Merge pull request #6 from ansible-lockdown/apt_update uk-bolly 2025-01-21 16:22:21 +0000
  • c8e368e541
         Merge pull request #5 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-01-21 16:21:55 +0000
  • bba53315f2
         moved apt update order to assist with audit Mark Bolwell 2025-01-21 08:07:27 +0000
  • 46e23a7c4b
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-01-20 17:45:16 +0000
  • 7a1b8b5250
         Merge pull request #4 from ansible-lockdown/pre-commit-ci-update-config uk-bolly 2025-01-14 08:14:20 +0000
  • 1b98e1ed7b
         Merge pull request #3 from ansible-lockdown/jan25_updates uk-bolly 2025-01-13 20:04:27 +0000
  • a857b1e552
         [pre-commit.ci] pre-commit autoupdate pre-commit-ci[bot] 2025-01-13 17:50:19 +0000
  • 5de8d4c558
         Added optional logrotate install and variable, improved 6.1.3.8 logic Mark Bolwell 2025-01-10 15:33:10 +0000
  • 7095fdc49f
         added rsyslog override logging option Mark Bolwell 2025-01-10 14:29:47 +0000
  • d190c51fa4
         Updated since ubuntu removes unncessary time pkgs Mark Bolwell 2025-01-10 14:00:34 +0000
  • e69c18fa1c
         improved audit handler and related rules Mark Bolwell 2025-01-10 13:16:56 +0000
  • 6e78559776
         tidy up grub/bootloader logic Mark Bolwell 2025-01-10 12:40:06 +0000
  • 18152bc17d
         fix conditional for snap/squashfs Mark Bolwell 2025-01-10 12:39:13 +0000
  • 113b32018f
         profile script Mark Bolwell 2025-01-10 12:38:24 +0000
  • cc307541a9
         5.4.3.3 updated to add profile script Mark Bolwell 2025-01-10 12:37:54 +0000
  • 9709aa503b
         5.4.3.2 updated permissions Mark Bolwell 2025-01-10 09:27:23 +0000
  • b7bdc7f67c
         Updated bootloader hash var and time tool inherit Mark Bolwell 2025-01-10 09:26:52 +0000
  • 3c62843418
         fixed file permissions 2.3.2.1 Mark Bolwell 2025-01-10 09:05:37 +0000
  • c129cf0552
         removed mask section u24 now removes time package not used automatically Mark Bolwell 2025-01-10 09:03:01 +0000
  • 3e92d4b54b
         fixed permissions 5.4.3.2 Mark Bolwell 2025-01-10 08:40:32 +0000
  • 21735de06a
         Merge pull request #2 from ansible-lockdown/devel Stephen Williams 2025-01-07 14:33:17 -0500
  • cffe5e4056
         Merge pull request #1 from ansible-lockdown/quote_fix 1.0.0 uk-bolly 2025-01-07 19:02:40 +0000
  • 01df043bdd
         moved welcome to github self-hosted Mark Bolwell 2025-01-07 18:32:29 +0000
  • 08987aca24
         fixed quotes on line25 Mark Bolwell 2025-01-07 18:20:54 +0000
  • 909fdd414c
         updated company naming Mark Bolwell 2025-01-06 08:43:45 +0000
  • 1e286afdd8
         Merge pull request #5 from ansible-lockdown/align_audit_mounts uk-bolly 2024-12-11 16:45:37 +0000
  • f77befa17e
         lint mode update Mark Bolwell 2024-12-11 11:50:29 +0000
  • 0dce656a92
         lint update Mark Bolwell 2024-12-11 11:04:24 +0000
  • cd84a2930d
         updated variable name Mark Bolwell 2024-12-11 10:23:16 +0000
  • 853faab523
         Added comment on set_fact for mountpoints Mark Bolwell 2024-12-11 10:23:05 +0000
  • 66ca3976a9
         fixed spacing Mark Bolwell 2024-12-11 10:10:22 +0000
  • b2cded315b
         Updated mountpoint vars correctly Mark Bolwell 2024-12-11 10:10:14 +0000
  • de47c63145
         Updated auditd handler Mark Bolwell 2024-12-10 12:22:34 +0000
  • 4f5a3f7c8d
         Update to mounts section1 Mark Bolwell 2024-12-10 12:07:31 +0000
  • 342489f4d9
         lint update Mark Bolwell 2024-12-10 12:07:14 +0000
  • a39fb43a48
         Updated lint file Mark Bolwell 2024-12-10 12:06:56 +0000
  • b87b6fbefd
         Merge pull request #4 from ansible-lockdown/alignment uk-bolly 2024-12-10 08:13:27 +0000