colin
/
UBUNTU24-CIS
mirror of https://github.com/ansible-lockdown/UBUNTU24-CIS.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
UBUNTU24-CIS/tasks/section_5/cis_5.3.1.x.yml

49 lines
1.2 KiB
YAML
Raw Permalink Blame History

---
- name: "5.3.1.1 | PATCH | Ensure latest version of pam is installed"
when:
- ubtu24cis_rule_5_3_1_1
- ansible_facts.packages['libpam-runtime'][0]['version'] is version('1.5.3-5', '<=') or
"'libpam-runtime' not in ansible_facts.packages"
tags:
- level1-server
- level1-workstation
- patch
- pam
- rule_5.3.1.1
- NIST800-53R5_NA
ansible.builtin.package:
name: libpam-runtime
state: latest
- name: "5.3.1.2 | PATCH | Ensure libpam-modules is installed"
when:
- ubtu24cis_rule_5_3_1_2
- ansible_facts.packages['libpam-modules'][0]['version'] is version('1.5.3-5', '<=') or
"'libpam-modules' not in ansible_facts.packages"
tags:
- level1-server
- level1-workstation
- patch
- pam
- rule_5.3.1.2
- NIST800-53R5_NA
ansible.builtin.package:
name: libpam-modules
state: latest
- name: "5.3.1.3 | PATCH | Ensure libpam-pwquality is installed"
when:
- ubtu24cis_rule_5_3_1_3
- "'libpam-pwquality' not in ansible_facts.packages"
tags:
- level1-server
- level1-workstation
- patch
- pam
- rule_5.3.1.3
- NIST800-53R5_NA
ansible.builtin.package:
name: libpam-pwquality
state: latest
Reference in New Issue View Git Blame Copy Permalink