From 091eec57ee7f706c2dd16150c75b4d93a183b724 Mon Sep 17 00:00:00 2001 From: "thibault.dewailly" Date: Mon, 18 Apr 2016 13:19:46 +0200 Subject: [PATCH] All configuration defaults to disabled README updated --- README | 11 +++++++++++ bin/hardening.sh | 13 ++++++------- bin/hardening/1.1_install_updates.sh | 1 - bin/hardening/10.1.1_set_password_exp_days.sh | 1 - .../10.1.2_set_password_min_days_change.sh | 1 - .../10.1.3_set_password_exp_warning_days.sh | 1 - bin/hardening/10.2_disable_system_accounts.sh | 1 - bin/hardening/10.3_default_root_group.sh | 1 - bin/hardening/10.4_default_umask.sh | 1 - bin/hardening/10.5_lock_inactive_user_account.sh | 1 - bin/hardening/11.1_warning_banners.sh | 1 - .../11.2_remove_os_info_warning_banners.sh | 1 - bin/hardening/11.3_graphical_warning_banners.sh | 1 - bin/hardening/12.10_find_suid_files.sh | 1 - bin/hardening/12.11_find_sgid_files.sh | 1 - bin/hardening/12.1_etc_passwd_permissions.sh | 1 - bin/hardening/12.2_etc_shadow_permissions.sh | 1 - bin/hardening/12.3_etc_group_permissions.sh | 1 - bin/hardening/12.4_etc_passwd_ownership.sh | 1 - bin/hardening/12.5_etc_shadow_ownership.sh | 1 - bin/hardening/12.6_etc_group_ownership.sh | 1 - bin/hardening/12.7_find_world_writable_file.sh | 1 - bin/hardening/12.8_find_unowned_files.sh | 1 - bin/hardening/12.9_find_ungrouped_files.sh | 1 - bin/hardening/13.10_find_user_rhosts_files.sh | 1 - .../13.11_find_passwd_group_inconsistencies.sh | 1 - bin/hardening/13.12_users_valid_homedir.sh | 1 - bin/hardening/13.13_check_user_homedir_ownership.sh | 1 - bin/hardening/13.14_check_duplicate_uid.sh | 1 - bin/hardening/13.15_check_duplicate_gid.sh | 1 - bin/hardening/13.16_check_duplicate_username.sh | 1 - bin/hardening/13.17_check_duplicate_groupname.sh | 1 - bin/hardening/13.18_find_user_netrc_files.sh | 1 - bin/hardening/13.19_find_user_forward_files.sh | 1 - bin/hardening/13.1_remove_empty_password_field.sh | 1 - bin/hardening/13.20_shadow_group_empty.sh | 1 - bin/hardening/13.2_remove_legacy_passwd_entries.sh | 1 - bin/hardening/13.3_remove_legacy_shadow_entries.sh | 1 - bin/hardening/13.4_remove_legacy_group_entries.sh | 1 - bin/hardening/13.5_find_0_uid_non_root_account.sh | 1 - bin/hardening/13.6_sanitize_root_path.sh | 1 - bin/hardening/13.7_check_user_dir_perm.sh | 1 - bin/hardening/13.8_check_user_dot_file_perm.sh | 1 - bin/hardening/13.9_set_perm_on_user_netrc.sh | 1 - bin/hardening/2.10_home_nodev.sh | 1 - bin/hardening/2.11_removable_device_nodev.sh | 1 - bin/hardening/2.12_removable_device_noexec.sh | 1 - bin/hardening/2.13_removable_device_nosuid.sh | 1 - bin/hardening/2.14_run_shm_nodev.sh | 1 - bin/hardening/2.15_run_shm_nosuid.sh | 1 - bin/hardening/2.16_run_shm_noexec.sh | 1 - .../2.17_sticky_bit_world_writable_folder.sh | 1 - bin/hardening/2.18_disable_cramfs.sh | 1 - bin/hardening/2.19_disable_freevxfs.sh | 1 - bin/hardening/2.1_tmp_partition.sh | 1 - bin/hardening/2.20_disable_jffs2.sh | 1 - bin/hardening/2.21_disable_hfs.sh | 1 - bin/hardening/2.22_disable_hfsplus.sh | 1 - bin/hardening/2.23_disable_squashfs.sh | 1 - bin/hardening/2.24_disable_udf.sh | 1 - bin/hardening/2.25_disable_automounting.sh | 1 - bin/hardening/2.2_tmp_nodev.sh | 1 - bin/hardening/2.3_tmp_nosuid.sh | 1 - bin/hardening/2.4_tmp_noexec.sh | 1 - bin/hardening/2.5_var_partition.sh | 1 - bin/hardening/2.6.1_var_tmp_partition.sh | 1 - bin/hardening/2.6.2_var_tmp_nodev.sh | 1 - bin/hardening/2.6.3_var_tmp_nosuid.sh | 1 - bin/hardening/2.6.4_var_tmp_noexec.sh | 1 - bin/hardening/2.7_var_log_partition.sh | 1 - bin/hardening/2.8_var_log_audit_partition.sh | 1 - bin/hardening/2.9_home_partition.sh | 1 - bin/hardening/3.1_bootloader_ownership.sh | 1 - bin/hardening/3.2_bootloader_permissions.sh | 1 - bin/hardening/3.3_bootloader_password.sh | 1 - bin/hardening/3.4_root_password.sh | 1 - bin/hardening/4.1_restrict_core_dumps.sh | 1 - bin/hardening/4.2_enable_nx_support.sh | 1 - bin/hardening/4.3_enable_randomized_vm_placement.sh | 1 - bin/hardening/4.4_disable_prelink.sh | 1 - bin/hardening/4.5_enable_apparmor.sh | 1 - bin/hardening/5.1.1_disable_nis.sh | 1 - bin/hardening/5.1.2_disable_rsh.sh | 1 - bin/hardening/5.1.3_disable_rsh_client.sh | 1 - bin/hardening/5.1.4_disable_talk.sh | 1 - bin/hardening/5.1.5_disable_talk_client.sh | 1 - bin/hardening/5.1.6_disable_telnet_server.sh | 1 - bin/hardening/5.1.7_disable_tftp_server.sh | 1 - bin/hardening/5.1.8_disable_inetd.sh | 1 - bin/hardening/5.2_disable_chargen.sh | 1 - bin/hardening/5.3_disable_daytime.sh | 1 - bin/hardening/5.4_disable_echo.sh | 1 - bin/hardening/5.5_disable_discard.sh | 1 - bin/hardening/5.6_disable_time.sh | 1 - bin/hardening/6.10_disable_http_server.sh | 1 - bin/hardening/6.11_disable_imap_pop.sh | 1 - bin/hardening/6.12_disable_samba.sh | 1 - bin/hardening/6.13_diable_http_proxy.sh | 1 - bin/hardening/6.14_disable_snmp_server.sh | 1 - bin/hardening/6.15_mta_localhost.sh | 1 - bin/hardening/6.16_disable_rsync.sh | 1 - bin/hardening/6.1_disable_xwindow_system.sh | 1 - bin/hardening/6.2_disable_avahi_server.sh | 1 - bin/hardening/6.3_disable_print_server.sh | 1 - bin/hardening/6.4_disable_dhcp.sh | 1 - bin/hardening/6.5_configure_ntp.sh | 1 - bin/hardening/6.6_diable_ldap.sh | 1 - bin/hardening/6.7_disable_nfs_rpc.sh | 1 - bin/hardening/6.8_disable_dns_server.sh | 1 - bin/hardening/6.9_disable_ftp.sh | 1 - bin/hardening/7.1.1_disable_ip_forwarding.sh | 1 - .../7.1.2_disable_send_packet_redirects.sh | 1 - .../7.2.1_disable_source_routed_packets.sh | 1 - bin/hardening/7.2.2_disable_icmp_redirect.sh | 1 - bin/hardening/7.2.3_disable_secure_icmp_redirect.sh | 1 - bin/hardening/7.2.4_log_martian_packets.sh | 1 - bin/hardening/7.2.5_ignore_broadcast_requests.sh | 1 - .../7.2.6_enable_bad_error_message_protection.sh | 1 - .../7.2.7_enable_source_route_validation.sh | 1 - bin/hardening/7.2.8_enable_tcp_syn_cookies.sh | 1 - .../7.3.1_disable_ipv6_router_advertisement.sh | 1 - bin/hardening/7.3.2_disable_ipv6_redirect.sh | 1 - bin/hardening/7.3.3_disable_ipv6.sh | 1 - bin/hardening/7.4.1_install_tcp_wrapper.sh | 1 - bin/hardening/7.4.2_hosts_allow.sh | 1 - bin/hardening/7.4.3_hosts_allow_permissions.sh | 1 - bin/hardening/7.4.4_hosts_deny.sh | 1 - bin/hardening/7.4.5_hosts_deny_permissions.sh | 1 - bin/hardening/7.5.1_disable_dccp.sh | 1 - bin/hardening/7.5.2_disable_sctp.sh | 1 - bin/hardening/7.5.3_disable_rds.sh | 1 - bin/hardening/7.5.4_disable_tipc.sh | 1 - bin/hardening/7.6_disable_wireless.sh | 1 - bin/hardening/7.7_enable_firewall.sh | 1 - bin/hardening/8.0_enable_auditd_kernel.sh | 1 - bin/hardening/8.1.1.1_audit_log_storage.sh | 1 - bin/hardening/8.1.1.2_halt_when_audit_log_full.sh | 1 - bin/hardening/8.1.1.3_keep_all_audit_logs.sh | 1 - bin/hardening/8.1.10_record_dac_edit.sh | 1 - bin/hardening/8.1.11_record_failed_access_file.sh | 1 - bin/hardening/8.1.12_record_privileged_commands.sh | 1 - bin/hardening/8.1.13_record_successful_mount.sh | 1 - bin/hardening/8.1.14_record_file_deletions.sh | 1 - bin/hardening/8.1.15_record_sudoers_edit.sh | 1 - bin/hardening/8.1.16_record_sudo_usage.sh | 1 - bin/hardening/8.1.17_record_kernel_modules.sh | 1 - bin/hardening/8.1.18_freeze_auditd_conf.sh | 1 - bin/hardening/8.1.2_enable_auditd.sh | 1 - bin/hardening/8.1.3_audit_bootloader.sh | 1 - bin/hardening/8.1.4_record_date_time_edit.sh | 1 - bin/hardening/8.1.5_record_user_group_edit.sh | 1 - bin/hardening/8.1.6_record_network_edit.sh | 1 - bin/hardening/8.1.7_record_mac_edit.sh | 1 - bin/hardening/8.1.8_record_login_logout.sh | 1 - bin/hardening/8.1.9_record_session_init.sh | 1 - bin/hardening/8.2.1_install_syslog-ng.sh | 1 - bin/hardening/8.2.2_enable_syslog-ng.sh | 1 - bin/hardening/8.2.3_configure_syslog-ng.sh | 1 - bin/hardening/8.2.4_set_logfile_perm.sh | 1 - bin/hardening/8.2.5_syslog-ng_remote_host.sh | 1 - bin/hardening/8.2.6_remote_syslog-ng_acl.sh | 1 - bin/hardening/8.3.1_install_tripwire.sh | 1 - bin/hardening/8.3.2_tripwire_cron.sh | 1 - bin/hardening/8.4_configure_logrotate.sh | 1 - bin/hardening/9.1.1_enable_cron.sh | 1 - bin/hardening/9.1.2_crontab_perm_ownership.sh | 1 - bin/hardening/9.1.3_cron_hourly_perm_ownership.sh | 1 - bin/hardening/9.1.4_cron_daily_perm_ownership.sh | 1 - bin/hardening/9.1.5_cron_weekly_perm_ownership.sh | 1 - bin/hardening/9.1.6_cron_monthly_perm_ownership.sh | 1 - bin/hardening/9.1.7_cron_d_perm_ownership.sh | 1 - bin/hardening/9.1.8_cron_users.sh | 1 - bin/hardening/9.2.1_enable_cracklib.sh | 1 - .../9.2.2_enable_lockout_failed_password.sh | 1 - bin/hardening/9.2.3_limit_password_reuse.sh | 1 - bin/hardening/9.3.10_disable_sshd_setenv.sh | 1 - bin/hardening/9.3.11_sshd_ciphers.sh | 1 - bin/hardening/9.3.12_sshd_idle_timeout.sh | 1 - bin/hardening/9.3.13_sshd_limit_access.sh | 1 - bin/hardening/9.3.14_ssh_banner.sh | 1 - bin/hardening/9.3.1_sshd_protocol.sh | 1 - bin/hardening/9.3.2_sshd_loglevel.sh | 1 - bin/hardening/9.3.3_sshd_conf_perm_ownership.sh | 1 - bin/hardening/9.3.4_disable_x11_forwarding.sh | 1 - bin/hardening/9.3.5_sshd_maxauthtries.sh | 1 - bin/hardening/9.3.6_enable_sshd_ignorerhosts.sh | 1 - .../9.3.7_disable_sshd_hostbasedauthentication.sh | 1 - bin/hardening/9.3.8_disable_root_login.sh | 1 - .../9.3.9_disable_sshd_permitemptypasswords.sh | 1 - bin/hardening/9.4_secure_tty.sh | 1 - bin/hardening/9.5_restrict_su.sh | 1 - bin/hardening/99.1_timeout_tty.sh | 1 - bin/hardening/99.2_disable_usb_devices.sh | 1 - etc/conf.d/1.1_install_updates.cfg | 2 +- etc/conf.d/10.1.1_set_password_exp_days.cfg | 2 +- etc/conf.d/10.1.2_set_password_min_days_change.cfg | 2 +- etc/conf.d/10.1.3_set_password_exp_warning_days.cfg | 2 +- etc/conf.d/10.2_disable_system_accounts.cfg | 2 +- etc/conf.d/10.3_default_root_group.cfg | 2 +- etc/conf.d/10.4_default_umask.cfg | 2 +- etc/conf.d/10.5_lock_inactive_user_account.cfg | 2 +- etc/conf.d/11.1_warning_banners.cfg | 2 +- etc/conf.d/11.2_remove_os_info_warning_banners.cfg | 2 +- etc/conf.d/11.3_graphical_warning_banners.cfg | 2 +- etc/conf.d/12.10_find_suid_files.cfg | 2 +- etc/conf.d/12.11_find_sgid_files.cfg | 2 +- etc/conf.d/12.1_etc_passwd_permissions.cfg | 2 +- etc/conf.d/12.2_etc_shadow_permissions.cfg | 2 +- etc/conf.d/12.3_etc_group_permissions.cfg | 2 +- etc/conf.d/12.4_etc_passwd_ownership.cfg | 2 +- etc/conf.d/12.5_etc_shadow_ownership.cfg | 2 +- etc/conf.d/12.6_etc_group_ownership.cfg | 2 +- etc/conf.d/12.7_find_world_writable_file.cfg | 2 +- etc/conf.d/12.8_find_unowned_files.cfg | 2 +- etc/conf.d/12.9_find_ungrouped_files.cfg | 2 +- etc/conf.d/13.10_find_user_rhosts_files.cfg | 2 +- .../13.11_find_passwd_group_inconsistencies.cfg | 2 +- etc/conf.d/13.12_users_valid_homedir.cfg | 2 +- etc/conf.d/13.13_check_user_homedir_ownership.cfg | 2 +- etc/conf.d/13.14_check_duplicate_uid.cfg | 2 +- etc/conf.d/13.15_check_duplicate_gid.cfg | 2 +- etc/conf.d/13.16_check_duplicate_username.cfg | 2 +- etc/conf.d/13.17_check_duplicate_groupname.cfg | 2 +- etc/conf.d/13.18_find_user_netrc_files.cfg | 2 +- etc/conf.d/13.19_find_user_forward_files.cfg | 2 +- etc/conf.d/13.1_remove_empty_password_field.cfg | 2 +- etc/conf.d/13.20_shadow_group_empty.cfg | 2 +- etc/conf.d/13.2_remove_legacy_passwd_entries.cfg | 2 +- etc/conf.d/13.3_remove_legacy_shadow_entries.cfg | 2 +- etc/conf.d/13.4_remove_legacy_group_entries.cfg | 2 +- etc/conf.d/13.5_find_0_uid_non_root_account.cfg | 2 +- etc/conf.d/13.6_sanitize_root_path.cfg | 2 +- etc/conf.d/13.7_check_user_dir_perm.cfg | 2 +- etc/conf.d/13.8_check_user_dot_file_perm.cfg | 2 +- etc/conf.d/13.9_set_perm_on_user_netrc.cfg | 2 +- etc/conf.d/5.1.2_disable_rsh.cfg | 2 +- etc/conf.d/5.1.4_disable_talk.cfg | 2 +- etc/conf.d/5.1.5_disable_talk_client.cfg | 2 +- etc/conf.d/5.1.6_disable_telnet_server.cfg | 2 +- etc/conf.d/5.1.7_disable_tftp_server.cfg | 2 +- etc/conf.d/5.1.8_disable_inetd.cfg | 2 +- etc/conf.d/5.2_disable_chargen.cfg | 2 +- etc/conf.d/5.3_disable_daytime.cfg | 2 +- etc/conf.d/5.4_disable_echo.cfg | 2 +- etc/conf.d/5.5_disable_discard.cfg | 2 +- etc/conf.d/5.6_disable_time.cfg | 2 +- etc/conf.d/6.10_disable_http_server.cfg | 2 +- etc/conf.d/6.11_disable_imap_pop.cfg | 2 +- etc/conf.d/6.12_disable_samba.cfg | 2 +- etc/conf.d/6.13_diable_http_proxy.cfg | 2 +- etc/conf.d/6.14_disable_snmp_server.cfg | 2 +- etc/conf.d/6.15_mta_localhost.cfg | 2 +- etc/conf.d/6.16_disable_rsync.cfg | 2 +- etc/conf.d/6.1_disable_xwindow_system.cfg | 2 +- etc/conf.d/6.2_disable_avahi_server.cfg | 2 +- etc/conf.d/6.3_disable_print_server.cfg | 2 +- etc/conf.d/6.4_disable_dhcp.cfg | 2 +- etc/conf.d/6.5_configure_ntp.cfg | 2 +- etc/conf.d/6.6_diable_ldap.cfg | 2 +- etc/conf.d/6.7_disable_nfs_rpc.cfg | 2 +- etc/conf.d/6.8_disable_dns_server.cfg | 2 +- etc/conf.d/6.9_disable_ftp.cfg | 2 +- etc/conf.d/7.1.1_disable_ip_forwarding.cfg | 2 +- etc/conf.d/7.1.2_disable_send_packet_redirects.cfg | 2 +- etc/conf.d/7.2.1_disable_source_routed_packets.cfg | 2 +- etc/conf.d/7.2.2_disable_icmp_redirect.cfg | 2 +- etc/conf.d/7.2.3_disable_secure_icmp_redirect.cfg | 2 +- etc/conf.d/7.2.4_log_martian_packets.cfg | 2 +- etc/conf.d/7.2.5_ignore_broadcast_requests.cfg | 2 +- .../7.2.6_enable_bad_error_message_protection.cfg | 2 +- etc/conf.d/7.2.7_enable_source_route_validation.cfg | 2 +- etc/conf.d/7.2.8_enable_tcp_syn_cookies.cfg | 2 +- .../7.3.1_disable_ipv6_router_advertisement.cfg | 2 +- etc/conf.d/7.3.2_disable_ipv6_redirect.cfg | 2 +- etc/conf.d/7.3.3_disable_ipv6.cfg | 2 +- etc/conf.d/7.4.1_install_tcp_wrapper.cfg | 2 +- etc/conf.d/7.4.2_hosts_allow.cfg | 2 +- etc/conf.d/7.4.3_hosts_allow_permissions.cfg | 2 +- etc/conf.d/7.4.4_hosts_deny.cfg | 2 +- etc/conf.d/7.4.5_hosts_deny_permissions.cfg | 2 +- etc/conf.d/7.5.1_disable_dccp.cfg | 2 +- etc/conf.d/7.5.2_disable_sctp.cfg | 2 +- etc/conf.d/7.5.3_disable_rds.cfg | 2 +- etc/conf.d/7.6_disable_wireless.cfg | 2 +- etc/conf.d/7.7_enable_firewall.cfg | 2 +- etc/conf.d/8.0_enable_auditd_kernel.cfg | 2 +- etc/conf.d/8.1.1.1_audit_log_storage.cfg | 2 +- etc/conf.d/8.1.1.2_halt_when_audit_log_full.cfg | 2 +- etc/conf.d/8.1.1.3_keep_all_audit_logs.cfg | 2 +- etc/conf.d/8.1.10_record_dac_edit.cfg | 2 +- etc/conf.d/8.1.11_record_failed_access_file.cfg | 2 +- etc/conf.d/8.1.12_record_privileged_commands.cfg | 2 +- etc/conf.d/8.1.13_record_successful_mount.cfg | 2 +- etc/conf.d/8.1.14_record_file_deletions.cfg | 2 +- etc/conf.d/8.1.15_record_sudoers_edit.cfg | 2 +- etc/conf.d/8.1.16_record_sudo_usage.cfg | 2 +- etc/conf.d/8.1.17_record_kernel_modules.cfg | 2 +- etc/conf.d/8.1.18_freeze_auditd_conf.cfg | 2 +- etc/conf.d/8.1.2_enable_auditd.cfg | 2 +- etc/conf.d/8.1.3_audit_bootloader.cfg | 2 +- etc/conf.d/8.1.4_record_date_time_edit.cfg | 2 +- etc/conf.d/8.1.5_record_user_group_edit.cfg | 2 +- etc/conf.d/8.1.6_record_network_edit.cfg | 2 +- etc/conf.d/8.1.7_record_mac_edit.cfg | 2 +- etc/conf.d/8.1.8_record_login_logout.cfg | 2 +- etc/conf.d/8.1.9_record_session_init.cfg | 2 +- etc/conf.d/8.2.1_install_syslog-ng.cfg | 2 +- etc/conf.d/8.2.2_enable_syslog-ng.cfg | 2 +- etc/conf.d/8.2.3_configure_syslog-ng.cfg | 2 +- etc/conf.d/8.2.4_set_logfile_perm.cfg | 2 +- etc/conf.d/8.2.5_syslog-ng_remote_host.cfg | 2 +- etc/conf.d/8.2.6_remote_syslog-ng_acl.cfg | 2 +- etc/conf.d/8.3.1_install_tripwire.cfg | 2 +- etc/conf.d/8.3.2_tripwire_cron.cfg | 2 +- etc/conf.d/8.4_configure_logrotate.cfg | 2 +- etc/conf.d/9.1.1_enable_cron.cfg | 2 +- etc/conf.d/9.1.2_crontab_perm_ownership.cfg | 2 +- etc/conf.d/9.1.3_cron_hourly_perm_ownership.cfg | 2 +- etc/conf.d/9.1.4_cron_daily_perm_ownership.cfg | 2 +- etc/conf.d/9.1.5_cron_weekly_perm_ownership.cfg | 2 +- etc/conf.d/9.1.6_cron_monthly_perm_ownership.cfg | 2 +- etc/conf.d/9.1.7_cron_d_perm_ownership.cfg | 2 +- etc/conf.d/9.1.8_cron_users.cfg | 2 +- etc/conf.d/9.2.1_enable_cracklib.cfg | 2 +- etc/conf.d/9.2.2_enable_lockout_failed_password.cfg | 2 +- etc/conf.d/9.2.3_limit_password_reuse.cfg | 2 +- etc/conf.d/9.3.10_disable_sshd_setenv.cfg | 2 +- etc/conf.d/9.3.11_sshd_ciphers.cfg | 2 +- etc/conf.d/9.3.12_sshd_idle_timeout.cfg | 2 +- etc/conf.d/9.3.13_sshd_limit_access.cfg | 2 +- etc/conf.d/9.3.14_ssh_banner.cfg | 2 +- etc/conf.d/9.3.1_sshd_protocol.cfg | 2 +- etc/conf.d/9.3.2_sshd_loglevel.cfg | 2 +- etc/conf.d/9.3.3_sshd_conf_perm_ownership.cfg | 2 +- etc/conf.d/9.3.4_disable_x11_forwarding.cfg | 2 +- etc/conf.d/9.3.5_sshd_maxauthtries.cfg | 2 +- etc/conf.d/9.3.6_enable_sshd_ignorerhosts.cfg | 2 +- .../9.3.7_disable_sshd_hostbasedauthentication.cfg | 2 +- etc/conf.d/9.3.8_disable_root_login.cfg | 2 +- .../9.3.9_disable_sshd_permitemptypasswords.cfg | 2 +- etc/conf.d/9.4_secure_tty.cfg | 2 +- etc/conf.d/9.5_restrict_su.cfg | 2 +- etc/conf.d/99.1_timeout_tty.cfg | 2 +- etc/conf.d/99.2_disable_usb_devices.cfg | 2 +- lib/main.sh | 2 +- 345 files changed, 169 insertions(+), 350 deletions(-) diff --git a/README b/README index 4d4935b..70d130e 100644 --- a/README +++ b/README @@ -1,2 +1,13 @@ # CIS Debian 7 Hardening git repository +# Authors : Thibault Dewailly, OVH # This is the code base which will be used to fill CIS hardening requirements + +# Hardening scripts : +# bin/hardening : Every script has a .cfg associated, status must be defined here + +# Main script : +# bin/hardening.sh : Will execute hardening according to configuration + +# Configuration +# etc/hardening.cfg : Global variables defined such as backup directory, or log level +# etc/conf.d : Folder with all .cfg associated to hardenign scripts diff --git a/bin/hardening.sh b/bin/hardening.sh index b853bd7..27c2b8b 100755 --- a/bin/hardening.sh +++ b/bin/hardening.sh @@ -9,11 +9,6 @@ # Main script : Execute hardening considering configuration # -# Execute blindly binaries -# Audit mode - -# ls | sort -V - LONG_SCRIPT_NAME=$(basename $0) SCRIPT_NAME=${LONG_SCRIPT_NAME%.sh} DISABLED_CHECKS=0 @@ -29,7 +24,7 @@ usage() { $LONG_SCRIPT_NAME ( --apply | -- audit ) < -h | --help > --apply : Apply hardening if told in configuration --audit : If script not disabled, audit configuration only - -h|--help : this help + -h|--help : This help EOF exit 0 } @@ -116,4 +111,8 @@ printf "%30s %s\n" "Total Runned Checks :" "$TOTAL_TREATED_CHECKS" printf "%30s [ %7s ]\n" "Total Passed Checks :" "$PASSED_CHECKS/$TOTAL_TREATED_CHECKS" printf "%30s [ %7s ]\n" "Total Failed Checks :" "$FAILED_CHECKS/$TOTAL_TREATED_CHECKS" printf "%30s %.2f %%\n" "Enabled Checks Percentage :" "$( echo "($TOTAL_TREATED_CHECKS/$TOTAL_CHECKS) * 100" | bc -l)" -printf "%30s %.2f %%\n" "Conformity Percentage :" "$( echo "($PASSED_CHECKS/$TOTAL_TREATED_CHECKS) * 100" | bc -l)" +if [ $TOTAL_TREATED_CHECKS != 0 ]; then + printf "%30s %.2f %%\n" "Conformity Percentage :" "$( echo "($PASSED_CHECKS/$TOTAL_TREATED_CHECKS) * 100" | bc -l)" +else + printf "%30s %s %%\n" "Conformity Percentage :" "N.A" # No check runned, avoid division by 0 +fi diff --git a/bin/hardening/1.1_install_updates.sh b/bin/hardening/1.1_install_updates.sh index 89d5557..63acf4d 100755 --- a/bin/hardening/1.1_install_updates.sh +++ b/bin/hardening/1.1_install_updates.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/10.1.1_set_password_exp_days.sh b/bin/hardening/10.1.1_set_password_exp_days.sh index 3e0a60d..039bb5c 100755 --- a/bin/hardening/10.1.1_set_password_exp_days.sh +++ b/bin/hardening/10.1.1_set_password_exp_days.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/10.1.2_set_password_min_days_change.sh b/bin/hardening/10.1.2_set_password_min_days_change.sh index 136b0e2..cc0cdd8 100755 --- a/bin/hardening/10.1.2_set_password_min_days_change.sh +++ b/bin/hardening/10.1.2_set_password_min_days_change.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/10.1.3_set_password_exp_warning_days.sh b/bin/hardening/10.1.3_set_password_exp_warning_days.sh index ce7b164..cef3353 100755 --- a/bin/hardening/10.1.3_set_password_exp_warning_days.sh +++ b/bin/hardening/10.1.3_set_password_exp_warning_days.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/10.2_disable_system_accounts.sh b/bin/hardening/10.2_disable_system_accounts.sh index 7821e66..ab1ac15 100755 --- a/bin/hardening/10.2_disable_system_accounts.sh +++ b/bin/hardening/10.2_disable_system_accounts.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/10.3_default_root_group.sh b/bin/hardening/10.3_default_root_group.sh index d534d35..f2e5364 100755 --- a/bin/hardening/10.3_default_root_group.sh +++ b/bin/hardening/10.3_default_root_group.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/10.4_default_umask.sh b/bin/hardening/10.4_default_umask.sh index 343cf59..6b30f3e 100755 --- a/bin/hardening/10.4_default_umask.sh +++ b/bin/hardening/10.4_default_umask.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/10.5_lock_inactive_user_account.sh b/bin/hardening/10.5_lock_inactive_user_account.sh index 9c025ec..6208f75 100755 --- a/bin/hardening/10.5_lock_inactive_user_account.sh +++ b/bin/hardening/10.5_lock_inactive_user_account.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/11.1_warning_banners.sh b/bin/hardening/11.1_warning_banners.sh index b4620ce..8285edf 100755 --- a/bin/hardening/11.1_warning_banners.sh +++ b/bin/hardening/11.1_warning_banners.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/11.2_remove_os_info_warning_banners.sh b/bin/hardening/11.2_remove_os_info_warning_banners.sh index 9ed0bc9..a622644 100755 --- a/bin/hardening/11.2_remove_os_info_warning_banners.sh +++ b/bin/hardening/11.2_remove_os_info_warning_banners.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/11.3_graphical_warning_banners.sh b/bin/hardening/11.3_graphical_warning_banners.sh index 7126b93..5dee2bb 100755 --- a/bin/hardening/11.3_graphical_warning_banners.sh +++ b/bin/hardening/11.3_graphical_warning_banners.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/12.10_find_suid_files.sh b/bin/hardening/12.10_find_suid_files.sh index f43cbc0..6495b6a 100755 --- a/bin/hardening/12.10_find_suid_files.sh +++ b/bin/hardening/12.10_find_suid_files.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/12.11_find_sgid_files.sh b/bin/hardening/12.11_find_sgid_files.sh index 783be7e..0ca7f66 100755 --- a/bin/hardening/12.11_find_sgid_files.sh +++ b/bin/hardening/12.11_find_sgid_files.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/12.1_etc_passwd_permissions.sh b/bin/hardening/12.1_etc_passwd_permissions.sh index 3b6ffc4..249c5d0 100755 --- a/bin/hardening/12.1_etc_passwd_permissions.sh +++ b/bin/hardening/12.1_etc_passwd_permissions.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/12.2_etc_shadow_permissions.sh b/bin/hardening/12.2_etc_shadow_permissions.sh index 774b470..7f51c02 100755 --- a/bin/hardening/12.2_etc_shadow_permissions.sh +++ b/bin/hardening/12.2_etc_shadow_permissions.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/12.3_etc_group_permissions.sh b/bin/hardening/12.3_etc_group_permissions.sh index acfbb87..a3bdae1 100755 --- a/bin/hardening/12.3_etc_group_permissions.sh +++ b/bin/hardening/12.3_etc_group_permissions.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/12.4_etc_passwd_ownership.sh b/bin/hardening/12.4_etc_passwd_ownership.sh index e33312d..51eb6da 100755 --- a/bin/hardening/12.4_etc_passwd_ownership.sh +++ b/bin/hardening/12.4_etc_passwd_ownership.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/12.5_etc_shadow_ownership.sh b/bin/hardening/12.5_etc_shadow_ownership.sh index e7c26cd..2e5ec7c 100755 --- a/bin/hardening/12.5_etc_shadow_ownership.sh +++ b/bin/hardening/12.5_etc_shadow_ownership.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/12.6_etc_group_ownership.sh b/bin/hardening/12.6_etc_group_ownership.sh index c2c0a88..e89d807 100755 --- a/bin/hardening/12.6_etc_group_ownership.sh +++ b/bin/hardening/12.6_etc_group_ownership.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/12.7_find_world_writable_file.sh b/bin/hardening/12.7_find_world_writable_file.sh index f530dd6..ec8d6f9 100755 --- a/bin/hardening/12.7_find_world_writable_file.sh +++ b/bin/hardening/12.7_find_world_writable_file.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/12.8_find_unowned_files.sh b/bin/hardening/12.8_find_unowned_files.sh index 7b1936c..db6858d 100755 --- a/bin/hardening/12.8_find_unowned_files.sh +++ b/bin/hardening/12.8_find_unowned_files.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/12.9_find_ungrouped_files.sh b/bin/hardening/12.9_find_ungrouped_files.sh index 3ccb671..f1ed3c5 100755 --- a/bin/hardening/12.9_find_ungrouped_files.sh +++ b/bin/hardening/12.9_find_ungrouped_files.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.10_find_user_rhosts_files.sh b/bin/hardening/13.10_find_user_rhosts_files.sh index 8fa7ea9..93aa00e 100755 --- a/bin/hardening/13.10_find_user_rhosts_files.sh +++ b/bin/hardening/13.10_find_user_rhosts_files.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.11_find_passwd_group_inconsistencies.sh b/bin/hardening/13.11_find_passwd_group_inconsistencies.sh index d16fed3..1ee48b1 100755 --- a/bin/hardening/13.11_find_passwd_group_inconsistencies.sh +++ b/bin/hardening/13.11_find_passwd_group_inconsistencies.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.12_users_valid_homedir.sh b/bin/hardening/13.12_users_valid_homedir.sh index e0fd8e9..f267331 100755 --- a/bin/hardening/13.12_users_valid_homedir.sh +++ b/bin/hardening/13.12_users_valid_homedir.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.13_check_user_homedir_ownership.sh b/bin/hardening/13.13_check_user_homedir_ownership.sh index 6adc24e..206f56b 100755 --- a/bin/hardening/13.13_check_user_homedir_ownership.sh +++ b/bin/hardening/13.13_check_user_homedir_ownership.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.14_check_duplicate_uid.sh b/bin/hardening/13.14_check_duplicate_uid.sh index fc79b7e..4de08fc 100755 --- a/bin/hardening/13.14_check_duplicate_uid.sh +++ b/bin/hardening/13.14_check_duplicate_uid.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.15_check_duplicate_gid.sh b/bin/hardening/13.15_check_duplicate_gid.sh index b07b5b7..1f93779 100755 --- a/bin/hardening/13.15_check_duplicate_gid.sh +++ b/bin/hardening/13.15_check_duplicate_gid.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.16_check_duplicate_username.sh b/bin/hardening/13.16_check_duplicate_username.sh index 172198b..6168eca 100755 --- a/bin/hardening/13.16_check_duplicate_username.sh +++ b/bin/hardening/13.16_check_duplicate_username.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.17_check_duplicate_groupname.sh b/bin/hardening/13.17_check_duplicate_groupname.sh index ab1e36b..a1a2824 100755 --- a/bin/hardening/13.17_check_duplicate_groupname.sh +++ b/bin/hardening/13.17_check_duplicate_groupname.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.18_find_user_netrc_files.sh b/bin/hardening/13.18_find_user_netrc_files.sh index 64986ce..414254b 100755 --- a/bin/hardening/13.18_find_user_netrc_files.sh +++ b/bin/hardening/13.18_find_user_netrc_files.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.19_find_user_forward_files.sh b/bin/hardening/13.19_find_user_forward_files.sh index eff76e3..8ff6648 100755 --- a/bin/hardening/13.19_find_user_forward_files.sh +++ b/bin/hardening/13.19_find_user_forward_files.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.1_remove_empty_password_field.sh b/bin/hardening/13.1_remove_empty_password_field.sh index 6c17732..469e84c 100755 --- a/bin/hardening/13.1_remove_empty_password_field.sh +++ b/bin/hardening/13.1_remove_empty_password_field.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.20_shadow_group_empty.sh b/bin/hardening/13.20_shadow_group_empty.sh index a65e1e8..dd23e41 100755 --- a/bin/hardening/13.20_shadow_group_empty.sh +++ b/bin/hardening/13.20_shadow_group_empty.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.2_remove_legacy_passwd_entries.sh b/bin/hardening/13.2_remove_legacy_passwd_entries.sh index 1ad0e75..5c4f341 100755 --- a/bin/hardening/13.2_remove_legacy_passwd_entries.sh +++ b/bin/hardening/13.2_remove_legacy_passwd_entries.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.3_remove_legacy_shadow_entries.sh b/bin/hardening/13.3_remove_legacy_shadow_entries.sh index e272c64..b88932b 100755 --- a/bin/hardening/13.3_remove_legacy_shadow_entries.sh +++ b/bin/hardening/13.3_remove_legacy_shadow_entries.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.4_remove_legacy_group_entries.sh b/bin/hardening/13.4_remove_legacy_group_entries.sh index 64c7cd4..5980c90 100755 --- a/bin/hardening/13.4_remove_legacy_group_entries.sh +++ b/bin/hardening/13.4_remove_legacy_group_entries.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.5_find_0_uid_non_root_account.sh b/bin/hardening/13.5_find_0_uid_non_root_account.sh index e6ab002..40e2173 100755 --- a/bin/hardening/13.5_find_0_uid_non_root_account.sh +++ b/bin/hardening/13.5_find_0_uid_non_root_account.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.6_sanitize_root_path.sh b/bin/hardening/13.6_sanitize_root_path.sh index 73f03ea..36178d4 100755 --- a/bin/hardening/13.6_sanitize_root_path.sh +++ b/bin/hardening/13.6_sanitize_root_path.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.7_check_user_dir_perm.sh b/bin/hardening/13.7_check_user_dir_perm.sh index bd8eb5f..c34a96d 100755 --- a/bin/hardening/13.7_check_user_dir_perm.sh +++ b/bin/hardening/13.7_check_user_dir_perm.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.8_check_user_dot_file_perm.sh b/bin/hardening/13.8_check_user_dot_file_perm.sh index 0f2024d..d00379e 100755 --- a/bin/hardening/13.8_check_user_dot_file_perm.sh +++ b/bin/hardening/13.8_check_user_dot_file_perm.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/13.9_set_perm_on_user_netrc.sh b/bin/hardening/13.9_set_perm_on_user_netrc.sh index 553e740..d6f8e8e 100755 --- a/bin/hardening/13.9_set_perm_on_user_netrc.sh +++ b/bin/hardening/13.9_set_perm_on_user_netrc.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.10_home_nodev.sh b/bin/hardening/2.10_home_nodev.sh index 75a36ed..1c8a414 100755 --- a/bin/hardening/2.10_home_nodev.sh +++ b/bin/hardening/2.10_home_nodev.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.11_removable_device_nodev.sh b/bin/hardening/2.11_removable_device_nodev.sh index 6015175..010a432 100755 --- a/bin/hardening/2.11_removable_device_nodev.sh +++ b/bin/hardening/2.11_removable_device_nodev.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.12_removable_device_noexec.sh b/bin/hardening/2.12_removable_device_noexec.sh index 15d64db..1258880 100755 --- a/bin/hardening/2.12_removable_device_noexec.sh +++ b/bin/hardening/2.12_removable_device_noexec.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.13_removable_device_nosuid.sh b/bin/hardening/2.13_removable_device_nosuid.sh index 6c64b41..351d94b 100755 --- a/bin/hardening/2.13_removable_device_nosuid.sh +++ b/bin/hardening/2.13_removable_device_nosuid.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.14_run_shm_nodev.sh b/bin/hardening/2.14_run_shm_nodev.sh index 5759c2d..d58d354 100755 --- a/bin/hardening/2.14_run_shm_nodev.sh +++ b/bin/hardening/2.14_run_shm_nodev.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.15_run_shm_nosuid.sh b/bin/hardening/2.15_run_shm_nosuid.sh index d5944eb..451944a 100755 --- a/bin/hardening/2.15_run_shm_nosuid.sh +++ b/bin/hardening/2.15_run_shm_nosuid.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.16_run_shm_noexec.sh b/bin/hardening/2.16_run_shm_noexec.sh index 3f94baf..9f111b5 100755 --- a/bin/hardening/2.16_run_shm_noexec.sh +++ b/bin/hardening/2.16_run_shm_noexec.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.17_sticky_bit_world_writable_folder.sh b/bin/hardening/2.17_sticky_bit_world_writable_folder.sh index 6fbf176..0183a36 100755 --- a/bin/hardening/2.17_sticky_bit_world_writable_folder.sh +++ b/bin/hardening/2.17_sticky_bit_world_writable_folder.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.18_disable_cramfs.sh b/bin/hardening/2.18_disable_cramfs.sh index 2fa2d47..9ddf758 100755 --- a/bin/hardening/2.18_disable_cramfs.sh +++ b/bin/hardening/2.18_disable_cramfs.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.19_disable_freevxfs.sh b/bin/hardening/2.19_disable_freevxfs.sh index e8e8429..65ce4cf 100755 --- a/bin/hardening/2.19_disable_freevxfs.sh +++ b/bin/hardening/2.19_disable_freevxfs.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.1_tmp_partition.sh b/bin/hardening/2.1_tmp_partition.sh index 5161cec..f2b5469 100755 --- a/bin/hardening/2.1_tmp_partition.sh +++ b/bin/hardening/2.1_tmp_partition.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.20_disable_jffs2.sh b/bin/hardening/2.20_disable_jffs2.sh index a567953..c2fe78d 100755 --- a/bin/hardening/2.20_disable_jffs2.sh +++ b/bin/hardening/2.20_disable_jffs2.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.21_disable_hfs.sh b/bin/hardening/2.21_disable_hfs.sh index 2f482e3..de679b2 100755 --- a/bin/hardening/2.21_disable_hfs.sh +++ b/bin/hardening/2.21_disable_hfs.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.22_disable_hfsplus.sh b/bin/hardening/2.22_disable_hfsplus.sh index 98d0d6e..3fede5a 100755 --- a/bin/hardening/2.22_disable_hfsplus.sh +++ b/bin/hardening/2.22_disable_hfsplus.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.23_disable_squashfs.sh b/bin/hardening/2.23_disable_squashfs.sh index 08c7fb9..37f8da3 100755 --- a/bin/hardening/2.23_disable_squashfs.sh +++ b/bin/hardening/2.23_disable_squashfs.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.24_disable_udf.sh b/bin/hardening/2.24_disable_udf.sh index e49ecb1..f429c38 100755 --- a/bin/hardening/2.24_disable_udf.sh +++ b/bin/hardening/2.24_disable_udf.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.25_disable_automounting.sh b/bin/hardening/2.25_disable_automounting.sh index 7b72cbb..1323bad 100755 --- a/bin/hardening/2.25_disable_automounting.sh +++ b/bin/hardening/2.25_disable_automounting.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.2_tmp_nodev.sh b/bin/hardening/2.2_tmp_nodev.sh index cd089a1..6b34d0f 100755 --- a/bin/hardening/2.2_tmp_nodev.sh +++ b/bin/hardening/2.2_tmp_nodev.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.3_tmp_nosuid.sh b/bin/hardening/2.3_tmp_nosuid.sh index 824eb34..a361ca7 100755 --- a/bin/hardening/2.3_tmp_nosuid.sh +++ b/bin/hardening/2.3_tmp_nosuid.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.4_tmp_noexec.sh b/bin/hardening/2.4_tmp_noexec.sh index 3971c4d..9d61da1 100755 --- a/bin/hardening/2.4_tmp_noexec.sh +++ b/bin/hardening/2.4_tmp_noexec.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.5_var_partition.sh b/bin/hardening/2.5_var_partition.sh index bba19c3..3a0fed6 100755 --- a/bin/hardening/2.5_var_partition.sh +++ b/bin/hardening/2.5_var_partition.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.6.1_var_tmp_partition.sh b/bin/hardening/2.6.1_var_tmp_partition.sh index 57dc4e2..1a1348b 100755 --- a/bin/hardening/2.6.1_var_tmp_partition.sh +++ b/bin/hardening/2.6.1_var_tmp_partition.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.6.2_var_tmp_nodev.sh b/bin/hardening/2.6.2_var_tmp_nodev.sh index 13df7e8..2be7322 100755 --- a/bin/hardening/2.6.2_var_tmp_nodev.sh +++ b/bin/hardening/2.6.2_var_tmp_nodev.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.6.3_var_tmp_nosuid.sh b/bin/hardening/2.6.3_var_tmp_nosuid.sh index 8e745af..992d8e6 100755 --- a/bin/hardening/2.6.3_var_tmp_nosuid.sh +++ b/bin/hardening/2.6.3_var_tmp_nosuid.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.6.4_var_tmp_noexec.sh b/bin/hardening/2.6.4_var_tmp_noexec.sh index 6f6cf4b..223477f 100755 --- a/bin/hardening/2.6.4_var_tmp_noexec.sh +++ b/bin/hardening/2.6.4_var_tmp_noexec.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.7_var_log_partition.sh b/bin/hardening/2.7_var_log_partition.sh index b05593a..32b2c74 100755 --- a/bin/hardening/2.7_var_log_partition.sh +++ b/bin/hardening/2.7_var_log_partition.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.8_var_log_audit_partition.sh b/bin/hardening/2.8_var_log_audit_partition.sh index 721d49a..9c7bf92 100755 --- a/bin/hardening/2.8_var_log_audit_partition.sh +++ b/bin/hardening/2.8_var_log_audit_partition.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/2.9_home_partition.sh b/bin/hardening/2.9_home_partition.sh index 3d3c2c5..04270db 100755 --- a/bin/hardening/2.9_home_partition.sh +++ b/bin/hardening/2.9_home_partition.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/3.1_bootloader_ownership.sh b/bin/hardening/3.1_bootloader_ownership.sh index b5f8ef2..044d2b0 100755 --- a/bin/hardening/3.1_bootloader_ownership.sh +++ b/bin/hardening/3.1_bootloader_ownership.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/3.2_bootloader_permissions.sh b/bin/hardening/3.2_bootloader_permissions.sh index faba57c..4bc0dec 100755 --- a/bin/hardening/3.2_bootloader_permissions.sh +++ b/bin/hardening/3.2_bootloader_permissions.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/3.3_bootloader_password.sh b/bin/hardening/3.3_bootloader_password.sh index 8443de7..05a9ab0 100755 --- a/bin/hardening/3.3_bootloader_password.sh +++ b/bin/hardening/3.3_bootloader_password.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/3.4_root_password.sh b/bin/hardening/3.4_root_password.sh index 9bef628..f37bfb0 100755 --- a/bin/hardening/3.4_root_password.sh +++ b/bin/hardening/3.4_root_password.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/4.1_restrict_core_dumps.sh b/bin/hardening/4.1_restrict_core_dumps.sh index c59526d..7f6a4b6 100755 --- a/bin/hardening/4.1_restrict_core_dumps.sh +++ b/bin/hardening/4.1_restrict_core_dumps.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/4.2_enable_nx_support.sh b/bin/hardening/4.2_enable_nx_support.sh index 1a86838..d5c4962 100755 --- a/bin/hardening/4.2_enable_nx_support.sh +++ b/bin/hardening/4.2_enable_nx_support.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/4.3_enable_randomized_vm_placement.sh b/bin/hardening/4.3_enable_randomized_vm_placement.sh index 03a7f71..ded11c1 100755 --- a/bin/hardening/4.3_enable_randomized_vm_placement.sh +++ b/bin/hardening/4.3_enable_randomized_vm_placement.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/4.4_disable_prelink.sh b/bin/hardening/4.4_disable_prelink.sh index a0b9549..3770a6b 100755 --- a/bin/hardening/4.4_disable_prelink.sh +++ b/bin/hardening/4.4_disable_prelink.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/4.5_enable_apparmor.sh b/bin/hardening/4.5_enable_apparmor.sh index 4714fbf..88b7bbc 100755 --- a/bin/hardening/4.5_enable_apparmor.sh +++ b/bin/hardening/4.5_enable_apparmor.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.1.1_disable_nis.sh b/bin/hardening/5.1.1_disable_nis.sh index 01cf8d7..ddabc5b 100755 --- a/bin/hardening/5.1.1_disable_nis.sh +++ b/bin/hardening/5.1.1_disable_nis.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.1.2_disable_rsh.sh b/bin/hardening/5.1.2_disable_rsh.sh index 3b6d3e5..802ab4b 100755 --- a/bin/hardening/5.1.2_disable_rsh.sh +++ b/bin/hardening/5.1.2_disable_rsh.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.1.3_disable_rsh_client.sh b/bin/hardening/5.1.3_disable_rsh_client.sh index 15d0b6d..679093a 100755 --- a/bin/hardening/5.1.3_disable_rsh_client.sh +++ b/bin/hardening/5.1.3_disable_rsh_client.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.1.4_disable_talk.sh b/bin/hardening/5.1.4_disable_talk.sh index e283fec..ffd320b 100755 --- a/bin/hardening/5.1.4_disable_talk.sh +++ b/bin/hardening/5.1.4_disable_talk.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.1.5_disable_talk_client.sh b/bin/hardening/5.1.5_disable_talk_client.sh index c6f4b10..3e5c927 100755 --- a/bin/hardening/5.1.5_disable_talk_client.sh +++ b/bin/hardening/5.1.5_disable_talk_client.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.1.6_disable_telnet_server.sh b/bin/hardening/5.1.6_disable_telnet_server.sh index 61b19eb..9d7b3f6 100755 --- a/bin/hardening/5.1.6_disable_telnet_server.sh +++ b/bin/hardening/5.1.6_disable_telnet_server.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.1.7_disable_tftp_server.sh b/bin/hardening/5.1.7_disable_tftp_server.sh index ae17ef1..0c39f26 100755 --- a/bin/hardening/5.1.7_disable_tftp_server.sh +++ b/bin/hardening/5.1.7_disable_tftp_server.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.1.8_disable_inetd.sh b/bin/hardening/5.1.8_disable_inetd.sh index 9a1bd52..bad5b8c 100755 --- a/bin/hardening/5.1.8_disable_inetd.sh +++ b/bin/hardening/5.1.8_disable_inetd.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.2_disable_chargen.sh b/bin/hardening/5.2_disable_chargen.sh index 9fdc3c1..2ce2870 100755 --- a/bin/hardening/5.2_disable_chargen.sh +++ b/bin/hardening/5.2_disable_chargen.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.3_disable_daytime.sh b/bin/hardening/5.3_disable_daytime.sh index 8509fd1..cb12750 100755 --- a/bin/hardening/5.3_disable_daytime.sh +++ b/bin/hardening/5.3_disable_daytime.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.4_disable_echo.sh b/bin/hardening/5.4_disable_echo.sh index 0113670..d899e8f 100755 --- a/bin/hardening/5.4_disable_echo.sh +++ b/bin/hardening/5.4_disable_echo.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.5_disable_discard.sh b/bin/hardening/5.5_disable_discard.sh index 77601fa..0fce91d 100755 --- a/bin/hardening/5.5_disable_discard.sh +++ b/bin/hardening/5.5_disable_discard.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/5.6_disable_time.sh b/bin/hardening/5.6_disable_time.sh index 106dc69..0267904 100755 --- a/bin/hardening/5.6_disable_time.sh +++ b/bin/hardening/5.6_disable_time.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.10_disable_http_server.sh b/bin/hardening/6.10_disable_http_server.sh index 8909daa..72d3076 100755 --- a/bin/hardening/6.10_disable_http_server.sh +++ b/bin/hardening/6.10_disable_http_server.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.11_disable_imap_pop.sh b/bin/hardening/6.11_disable_imap_pop.sh index a7dec19..9d4b82d 100755 --- a/bin/hardening/6.11_disable_imap_pop.sh +++ b/bin/hardening/6.11_disable_imap_pop.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.12_disable_samba.sh b/bin/hardening/6.12_disable_samba.sh index b696c4e..d635a34 100755 --- a/bin/hardening/6.12_disable_samba.sh +++ b/bin/hardening/6.12_disable_samba.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.13_diable_http_proxy.sh b/bin/hardening/6.13_diable_http_proxy.sh index c923be9..b1a4b29 100755 --- a/bin/hardening/6.13_diable_http_proxy.sh +++ b/bin/hardening/6.13_diable_http_proxy.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.14_disable_snmp_server.sh b/bin/hardening/6.14_disable_snmp_server.sh index 6754f73..6eceacb 100755 --- a/bin/hardening/6.14_disable_snmp_server.sh +++ b/bin/hardening/6.14_disable_snmp_server.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.15_mta_localhost.sh b/bin/hardening/6.15_mta_localhost.sh index 4651471..e08325c 100755 --- a/bin/hardening/6.15_mta_localhost.sh +++ b/bin/hardening/6.15_mta_localhost.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.16_disable_rsync.sh b/bin/hardening/6.16_disable_rsync.sh index 5007e13..5b9800d 100755 --- a/bin/hardening/6.16_disable_rsync.sh +++ b/bin/hardening/6.16_disable_rsync.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.1_disable_xwindow_system.sh b/bin/hardening/6.1_disable_xwindow_system.sh index 65ae917..bd30e09 100755 --- a/bin/hardening/6.1_disable_xwindow_system.sh +++ b/bin/hardening/6.1_disable_xwindow_system.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.2_disable_avahi_server.sh b/bin/hardening/6.2_disable_avahi_server.sh index d548b90..7a4a13a 100755 --- a/bin/hardening/6.2_disable_avahi_server.sh +++ b/bin/hardening/6.2_disable_avahi_server.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.3_disable_print_server.sh b/bin/hardening/6.3_disable_print_server.sh index 80224a4..2a606f9 100755 --- a/bin/hardening/6.3_disable_print_server.sh +++ b/bin/hardening/6.3_disable_print_server.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.4_disable_dhcp.sh b/bin/hardening/6.4_disable_dhcp.sh index 4cd9d48..dcf76d9 100755 --- a/bin/hardening/6.4_disable_dhcp.sh +++ b/bin/hardening/6.4_disable_dhcp.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.5_configure_ntp.sh b/bin/hardening/6.5_configure_ntp.sh index cad9deb..df3c861 100755 --- a/bin/hardening/6.5_configure_ntp.sh +++ b/bin/hardening/6.5_configure_ntp.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.6_diable_ldap.sh b/bin/hardening/6.6_diable_ldap.sh index 75bf546..9fb4f35 100755 --- a/bin/hardening/6.6_diable_ldap.sh +++ b/bin/hardening/6.6_diable_ldap.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.7_disable_nfs_rpc.sh b/bin/hardening/6.7_disable_nfs_rpc.sh index 2c0a0d0..d1f0d00 100755 --- a/bin/hardening/6.7_disable_nfs_rpc.sh +++ b/bin/hardening/6.7_disable_nfs_rpc.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.8_disable_dns_server.sh b/bin/hardening/6.8_disable_dns_server.sh index a2bcbac..492a9bb 100755 --- a/bin/hardening/6.8_disable_dns_server.sh +++ b/bin/hardening/6.8_disable_dns_server.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/6.9_disable_ftp.sh b/bin/hardening/6.9_disable_ftp.sh index ea58eaf..579f933 100755 --- a/bin/hardening/6.9_disable_ftp.sh +++ b/bin/hardening/6.9_disable_ftp.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.1.1_disable_ip_forwarding.sh b/bin/hardening/7.1.1_disable_ip_forwarding.sh index 47ef9d9..24ef503 100755 --- a/bin/hardening/7.1.1_disable_ip_forwarding.sh +++ b/bin/hardening/7.1.1_disable_ip_forwarding.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.1.2_disable_send_packet_redirects.sh b/bin/hardening/7.1.2_disable_send_packet_redirects.sh index 2fcd772..f608988 100755 --- a/bin/hardening/7.1.2_disable_send_packet_redirects.sh +++ b/bin/hardening/7.1.2_disable_send_packet_redirects.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.2.1_disable_source_routed_packets.sh b/bin/hardening/7.2.1_disable_source_routed_packets.sh index 521e14b..660d374 100755 --- a/bin/hardening/7.2.1_disable_source_routed_packets.sh +++ b/bin/hardening/7.2.1_disable_source_routed_packets.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.2.2_disable_icmp_redirect.sh b/bin/hardening/7.2.2_disable_icmp_redirect.sh index 9b29b30..7ac408c 100755 --- a/bin/hardening/7.2.2_disable_icmp_redirect.sh +++ b/bin/hardening/7.2.2_disable_icmp_redirect.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.2.3_disable_secure_icmp_redirect.sh b/bin/hardening/7.2.3_disable_secure_icmp_redirect.sh index 0ab668e..1f0b405 100755 --- a/bin/hardening/7.2.3_disable_secure_icmp_redirect.sh +++ b/bin/hardening/7.2.3_disable_secure_icmp_redirect.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.2.4_log_martian_packets.sh b/bin/hardening/7.2.4_log_martian_packets.sh index 464fa36..b8a48bb 100755 --- a/bin/hardening/7.2.4_log_martian_packets.sh +++ b/bin/hardening/7.2.4_log_martian_packets.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.2.5_ignore_broadcast_requests.sh b/bin/hardening/7.2.5_ignore_broadcast_requests.sh index 56475b1..dab592b 100755 --- a/bin/hardening/7.2.5_ignore_broadcast_requests.sh +++ b/bin/hardening/7.2.5_ignore_broadcast_requests.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.2.6_enable_bad_error_message_protection.sh b/bin/hardening/7.2.6_enable_bad_error_message_protection.sh index c964383..43a7747 100755 --- a/bin/hardening/7.2.6_enable_bad_error_message_protection.sh +++ b/bin/hardening/7.2.6_enable_bad_error_message_protection.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.2.7_enable_source_route_validation.sh b/bin/hardening/7.2.7_enable_source_route_validation.sh index 5a7e8d8..1391ce7 100755 --- a/bin/hardening/7.2.7_enable_source_route_validation.sh +++ b/bin/hardening/7.2.7_enable_source_route_validation.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.2.8_enable_tcp_syn_cookies.sh b/bin/hardening/7.2.8_enable_tcp_syn_cookies.sh index 69503fb..8d2da10 100755 --- a/bin/hardening/7.2.8_enable_tcp_syn_cookies.sh +++ b/bin/hardening/7.2.8_enable_tcp_syn_cookies.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.3.1_disable_ipv6_router_advertisement.sh b/bin/hardening/7.3.1_disable_ipv6_router_advertisement.sh index 5903ad7..173a289 100755 --- a/bin/hardening/7.3.1_disable_ipv6_router_advertisement.sh +++ b/bin/hardening/7.3.1_disable_ipv6_router_advertisement.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.3.2_disable_ipv6_redirect.sh b/bin/hardening/7.3.2_disable_ipv6_redirect.sh index 594bbd3..7f858be 100755 --- a/bin/hardening/7.3.2_disable_ipv6_redirect.sh +++ b/bin/hardening/7.3.2_disable_ipv6_redirect.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.3.3_disable_ipv6.sh b/bin/hardening/7.3.3_disable_ipv6.sh index a1a325d..22a087d 100755 --- a/bin/hardening/7.3.3_disable_ipv6.sh +++ b/bin/hardening/7.3.3_disable_ipv6.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.4.1_install_tcp_wrapper.sh b/bin/hardening/7.4.1_install_tcp_wrapper.sh index 751eeda..ad564d2 100755 --- a/bin/hardening/7.4.1_install_tcp_wrapper.sh +++ b/bin/hardening/7.4.1_install_tcp_wrapper.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.4.2_hosts_allow.sh b/bin/hardening/7.4.2_hosts_allow.sh index a0de311..4d0c808 100755 --- a/bin/hardening/7.4.2_hosts_allow.sh +++ b/bin/hardening/7.4.2_hosts_allow.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.4.3_hosts_allow_permissions.sh b/bin/hardening/7.4.3_hosts_allow_permissions.sh index a6536ae..6f0fea4 100755 --- a/bin/hardening/7.4.3_hosts_allow_permissions.sh +++ b/bin/hardening/7.4.3_hosts_allow_permissions.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.4.4_hosts_deny.sh b/bin/hardening/7.4.4_hosts_deny.sh index 7403589..1649115 100755 --- a/bin/hardening/7.4.4_hosts_deny.sh +++ b/bin/hardening/7.4.4_hosts_deny.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.4.5_hosts_deny_permissions.sh b/bin/hardening/7.4.5_hosts_deny_permissions.sh index 50aae37..933a7c6 100755 --- a/bin/hardening/7.4.5_hosts_deny_permissions.sh +++ b/bin/hardening/7.4.5_hosts_deny_permissions.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.5.1_disable_dccp.sh b/bin/hardening/7.5.1_disable_dccp.sh index b159a29..bad110c 100755 --- a/bin/hardening/7.5.1_disable_dccp.sh +++ b/bin/hardening/7.5.1_disable_dccp.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.5.2_disable_sctp.sh b/bin/hardening/7.5.2_disable_sctp.sh index d521282..bf4bb75 100755 --- a/bin/hardening/7.5.2_disable_sctp.sh +++ b/bin/hardening/7.5.2_disable_sctp.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.5.3_disable_rds.sh b/bin/hardening/7.5.3_disable_rds.sh index 061a653..78ee539 100755 --- a/bin/hardening/7.5.3_disable_rds.sh +++ b/bin/hardening/7.5.3_disable_rds.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.5.4_disable_tipc.sh b/bin/hardening/7.5.4_disable_tipc.sh index db8dc27..f0e8a26 100755 --- a/bin/hardening/7.5.4_disable_tipc.sh +++ b/bin/hardening/7.5.4_disable_tipc.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.6_disable_wireless.sh b/bin/hardening/7.6_disable_wireless.sh index d792361..f782b01 100755 --- a/bin/hardening/7.6_disable_wireless.sh +++ b/bin/hardening/7.6_disable_wireless.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/7.7_enable_firewall.sh b/bin/hardening/7.7_enable_firewall.sh index 999fb2e..82af538 100755 --- a/bin/hardening/7.7_enable_firewall.sh +++ b/bin/hardening/7.7_enable_firewall.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.0_enable_auditd_kernel.sh b/bin/hardening/8.0_enable_auditd_kernel.sh index 03229c6..02da848 100755 --- a/bin/hardening/8.0_enable_auditd_kernel.sh +++ b/bin/hardening/8.0_enable_auditd_kernel.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.1.1_audit_log_storage.sh b/bin/hardening/8.1.1.1_audit_log_storage.sh index 369c4c7..b9817f8 100755 --- a/bin/hardening/8.1.1.1_audit_log_storage.sh +++ b/bin/hardening/8.1.1.1_audit_log_storage.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.1.2_halt_when_audit_log_full.sh b/bin/hardening/8.1.1.2_halt_when_audit_log_full.sh index df21b6f..2c5fd88 100755 --- a/bin/hardening/8.1.1.2_halt_when_audit_log_full.sh +++ b/bin/hardening/8.1.1.2_halt_when_audit_log_full.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.1.3_keep_all_audit_logs.sh b/bin/hardening/8.1.1.3_keep_all_audit_logs.sh index c83a005..cca57ab 100755 --- a/bin/hardening/8.1.1.3_keep_all_audit_logs.sh +++ b/bin/hardening/8.1.1.3_keep_all_audit_logs.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.10_record_dac_edit.sh b/bin/hardening/8.1.10_record_dac_edit.sh index 88d8fee..69ef81c 100755 --- a/bin/hardening/8.1.10_record_dac_edit.sh +++ b/bin/hardening/8.1.10_record_dac_edit.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.11_record_failed_access_file.sh b/bin/hardening/8.1.11_record_failed_access_file.sh index 1069c0c..c7e1c3a 100755 --- a/bin/hardening/8.1.11_record_failed_access_file.sh +++ b/bin/hardening/8.1.11_record_failed_access_file.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.12_record_privileged_commands.sh b/bin/hardening/8.1.12_record_privileged_commands.sh index 1b38815..d067596 100755 --- a/bin/hardening/8.1.12_record_privileged_commands.sh +++ b/bin/hardening/8.1.12_record_privileged_commands.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.13_record_successful_mount.sh b/bin/hardening/8.1.13_record_successful_mount.sh index 9a23678..8e64cdc 100755 --- a/bin/hardening/8.1.13_record_successful_mount.sh +++ b/bin/hardening/8.1.13_record_successful_mount.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.14_record_file_deletions.sh b/bin/hardening/8.1.14_record_file_deletions.sh index ba4e0a4..2b3cf19 100755 --- a/bin/hardening/8.1.14_record_file_deletions.sh +++ b/bin/hardening/8.1.14_record_file_deletions.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.15_record_sudoers_edit.sh b/bin/hardening/8.1.15_record_sudoers_edit.sh index 4701849..9fc5215 100755 --- a/bin/hardening/8.1.15_record_sudoers_edit.sh +++ b/bin/hardening/8.1.15_record_sudoers_edit.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.16_record_sudo_usage.sh b/bin/hardening/8.1.16_record_sudo_usage.sh index 021d08b..c3c87e5 100755 --- a/bin/hardening/8.1.16_record_sudo_usage.sh +++ b/bin/hardening/8.1.16_record_sudo_usage.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.17_record_kernel_modules.sh b/bin/hardening/8.1.17_record_kernel_modules.sh index 06128d8..eac57af 100755 --- a/bin/hardening/8.1.17_record_kernel_modules.sh +++ b/bin/hardening/8.1.17_record_kernel_modules.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.18_freeze_auditd_conf.sh b/bin/hardening/8.1.18_freeze_auditd_conf.sh index 0b20cbc..335b044 100755 --- a/bin/hardening/8.1.18_freeze_auditd_conf.sh +++ b/bin/hardening/8.1.18_freeze_auditd_conf.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.2_enable_auditd.sh b/bin/hardening/8.1.2_enable_auditd.sh index 02962e9..a2c3472 100755 --- a/bin/hardening/8.1.2_enable_auditd.sh +++ b/bin/hardening/8.1.2_enable_auditd.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.3_audit_bootloader.sh b/bin/hardening/8.1.3_audit_bootloader.sh index 7a8f5e3..9914a58 100755 --- a/bin/hardening/8.1.3_audit_bootloader.sh +++ b/bin/hardening/8.1.3_audit_bootloader.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.4_record_date_time_edit.sh b/bin/hardening/8.1.4_record_date_time_edit.sh index f1ac82b..f2f5f29 100755 --- a/bin/hardening/8.1.4_record_date_time_edit.sh +++ b/bin/hardening/8.1.4_record_date_time_edit.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.5_record_user_group_edit.sh b/bin/hardening/8.1.5_record_user_group_edit.sh index e181316..706f4bb 100755 --- a/bin/hardening/8.1.5_record_user_group_edit.sh +++ b/bin/hardening/8.1.5_record_user_group_edit.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.6_record_network_edit.sh b/bin/hardening/8.1.6_record_network_edit.sh index b6385e6..4e0c718 100755 --- a/bin/hardening/8.1.6_record_network_edit.sh +++ b/bin/hardening/8.1.6_record_network_edit.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.7_record_mac_edit.sh b/bin/hardening/8.1.7_record_mac_edit.sh index 41b8e98..78f0bff 100755 --- a/bin/hardening/8.1.7_record_mac_edit.sh +++ b/bin/hardening/8.1.7_record_mac_edit.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.8_record_login_logout.sh b/bin/hardening/8.1.8_record_login_logout.sh index 8949f90..7d35a38 100755 --- a/bin/hardening/8.1.8_record_login_logout.sh +++ b/bin/hardening/8.1.8_record_login_logout.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.1.9_record_session_init.sh b/bin/hardening/8.1.9_record_session_init.sh index c2d0474..b939105 100755 --- a/bin/hardening/8.1.9_record_session_init.sh +++ b/bin/hardening/8.1.9_record_session_init.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.2.1_install_syslog-ng.sh b/bin/hardening/8.2.1_install_syslog-ng.sh index 572f274..aa56a5f 100755 --- a/bin/hardening/8.2.1_install_syslog-ng.sh +++ b/bin/hardening/8.2.1_install_syslog-ng.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.2.2_enable_syslog-ng.sh b/bin/hardening/8.2.2_enable_syslog-ng.sh index 548d576..9b08561 100755 --- a/bin/hardening/8.2.2_enable_syslog-ng.sh +++ b/bin/hardening/8.2.2_enable_syslog-ng.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.2.3_configure_syslog-ng.sh b/bin/hardening/8.2.3_configure_syslog-ng.sh index 423e0e2..ae0351f 100755 --- a/bin/hardening/8.2.3_configure_syslog-ng.sh +++ b/bin/hardening/8.2.3_configure_syslog-ng.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.2.4_set_logfile_perm.sh b/bin/hardening/8.2.4_set_logfile_perm.sh index f2efcf5..cd48564 100755 --- a/bin/hardening/8.2.4_set_logfile_perm.sh +++ b/bin/hardening/8.2.4_set_logfile_perm.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.2.5_syslog-ng_remote_host.sh b/bin/hardening/8.2.5_syslog-ng_remote_host.sh index 50e1729..5f5e942 100755 --- a/bin/hardening/8.2.5_syslog-ng_remote_host.sh +++ b/bin/hardening/8.2.5_syslog-ng_remote_host.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.2.6_remote_syslog-ng_acl.sh b/bin/hardening/8.2.6_remote_syslog-ng_acl.sh index c307c73..0c80c3f 100755 --- a/bin/hardening/8.2.6_remote_syslog-ng_acl.sh +++ b/bin/hardening/8.2.6_remote_syslog-ng_acl.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.3.1_install_tripwire.sh b/bin/hardening/8.3.1_install_tripwire.sh index d3ec4d6..6bc85c9 100755 --- a/bin/hardening/8.3.1_install_tripwire.sh +++ b/bin/hardening/8.3.1_install_tripwire.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.3.2_tripwire_cron.sh b/bin/hardening/8.3.2_tripwire_cron.sh index b6758a9..c119a08 100755 --- a/bin/hardening/8.3.2_tripwire_cron.sh +++ b/bin/hardening/8.3.2_tripwire_cron.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/8.4_configure_logrotate.sh b/bin/hardening/8.4_configure_logrotate.sh index 88ad028..8f93e73 100755 --- a/bin/hardening/8.4_configure_logrotate.sh +++ b/bin/hardening/8.4_configure_logrotate.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.1.1_enable_cron.sh b/bin/hardening/9.1.1_enable_cron.sh index 33eb86d..6dc1ce5 100755 --- a/bin/hardening/9.1.1_enable_cron.sh +++ b/bin/hardening/9.1.1_enable_cron.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.1.2_crontab_perm_ownership.sh b/bin/hardening/9.1.2_crontab_perm_ownership.sh index e378b56..b3ecd62 100755 --- a/bin/hardening/9.1.2_crontab_perm_ownership.sh +++ b/bin/hardening/9.1.2_crontab_perm_ownership.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.1.3_cron_hourly_perm_ownership.sh b/bin/hardening/9.1.3_cron_hourly_perm_ownership.sh index 49d1c6b..25595a9 100755 --- a/bin/hardening/9.1.3_cron_hourly_perm_ownership.sh +++ b/bin/hardening/9.1.3_cron_hourly_perm_ownership.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.1.4_cron_daily_perm_ownership.sh b/bin/hardening/9.1.4_cron_daily_perm_ownership.sh index 75f43cf..122ec4a 100755 --- a/bin/hardening/9.1.4_cron_daily_perm_ownership.sh +++ b/bin/hardening/9.1.4_cron_daily_perm_ownership.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.1.5_cron_weekly_perm_ownership.sh b/bin/hardening/9.1.5_cron_weekly_perm_ownership.sh index cb03ec0..21bca7c 100755 --- a/bin/hardening/9.1.5_cron_weekly_perm_ownership.sh +++ b/bin/hardening/9.1.5_cron_weekly_perm_ownership.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.1.6_cron_monthly_perm_ownership.sh b/bin/hardening/9.1.6_cron_monthly_perm_ownership.sh index 9b531fd..38a8bd1 100755 --- a/bin/hardening/9.1.6_cron_monthly_perm_ownership.sh +++ b/bin/hardening/9.1.6_cron_monthly_perm_ownership.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.1.7_cron_d_perm_ownership.sh b/bin/hardening/9.1.7_cron_d_perm_ownership.sh index 2d1399c..bca5fb9 100755 --- a/bin/hardening/9.1.7_cron_d_perm_ownership.sh +++ b/bin/hardening/9.1.7_cron_d_perm_ownership.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.1.8_cron_users.sh b/bin/hardening/9.1.8_cron_users.sh index ed15ed0..2706b5e 100755 --- a/bin/hardening/9.1.8_cron_users.sh +++ b/bin/hardening/9.1.8_cron_users.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.2.1_enable_cracklib.sh b/bin/hardening/9.2.1_enable_cracklib.sh index 464305d..0f0eb5e 100755 --- a/bin/hardening/9.2.1_enable_cracklib.sh +++ b/bin/hardening/9.2.1_enable_cracklib.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.2.2_enable_lockout_failed_password.sh b/bin/hardening/9.2.2_enable_lockout_failed_password.sh index 6215780..4144119 100755 --- a/bin/hardening/9.2.2_enable_lockout_failed_password.sh +++ b/bin/hardening/9.2.2_enable_lockout_failed_password.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.2.3_limit_password_reuse.sh b/bin/hardening/9.2.3_limit_password_reuse.sh index b70ed54..2b81158 100755 --- a/bin/hardening/9.2.3_limit_password_reuse.sh +++ b/bin/hardening/9.2.3_limit_password_reuse.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.10_disable_sshd_setenv.sh b/bin/hardening/9.3.10_disable_sshd_setenv.sh index a4c072b..e0f9d5f 100755 --- a/bin/hardening/9.3.10_disable_sshd_setenv.sh +++ b/bin/hardening/9.3.10_disable_sshd_setenv.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.11_sshd_ciphers.sh b/bin/hardening/9.3.11_sshd_ciphers.sh index 21b5d24..4836119 100755 --- a/bin/hardening/9.3.11_sshd_ciphers.sh +++ b/bin/hardening/9.3.11_sshd_ciphers.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.12_sshd_idle_timeout.sh b/bin/hardening/9.3.12_sshd_idle_timeout.sh index e888c8b..94e4da2 100755 --- a/bin/hardening/9.3.12_sshd_idle_timeout.sh +++ b/bin/hardening/9.3.12_sshd_idle_timeout.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.13_sshd_limit_access.sh b/bin/hardening/9.3.13_sshd_limit_access.sh index 6446cfa..f6475f8 100755 --- a/bin/hardening/9.3.13_sshd_limit_access.sh +++ b/bin/hardening/9.3.13_sshd_limit_access.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.14_ssh_banner.sh b/bin/hardening/9.3.14_ssh_banner.sh index 8df24fa..b44a310 100755 --- a/bin/hardening/9.3.14_ssh_banner.sh +++ b/bin/hardening/9.3.14_ssh_banner.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.1_sshd_protocol.sh b/bin/hardening/9.3.1_sshd_protocol.sh index 167b167..ad0c5f3 100755 --- a/bin/hardening/9.3.1_sshd_protocol.sh +++ b/bin/hardening/9.3.1_sshd_protocol.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.2_sshd_loglevel.sh b/bin/hardening/9.3.2_sshd_loglevel.sh index 8114340..b15af1b 100755 --- a/bin/hardening/9.3.2_sshd_loglevel.sh +++ b/bin/hardening/9.3.2_sshd_loglevel.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.3_sshd_conf_perm_ownership.sh b/bin/hardening/9.3.3_sshd_conf_perm_ownership.sh index ca23cf7..0acef81 100755 --- a/bin/hardening/9.3.3_sshd_conf_perm_ownership.sh +++ b/bin/hardening/9.3.3_sshd_conf_perm_ownership.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.4_disable_x11_forwarding.sh b/bin/hardening/9.3.4_disable_x11_forwarding.sh index 5b3b2ae..57df8d5 100755 --- a/bin/hardening/9.3.4_disable_x11_forwarding.sh +++ b/bin/hardening/9.3.4_disable_x11_forwarding.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.5_sshd_maxauthtries.sh b/bin/hardening/9.3.5_sshd_maxauthtries.sh index 79a6f40..00db940 100755 --- a/bin/hardening/9.3.5_sshd_maxauthtries.sh +++ b/bin/hardening/9.3.5_sshd_maxauthtries.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.6_enable_sshd_ignorerhosts.sh b/bin/hardening/9.3.6_enable_sshd_ignorerhosts.sh index bc550a6..e74c30c 100755 --- a/bin/hardening/9.3.6_enable_sshd_ignorerhosts.sh +++ b/bin/hardening/9.3.6_enable_sshd_ignorerhosts.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.7_disable_sshd_hostbasedauthentication.sh b/bin/hardening/9.3.7_disable_sshd_hostbasedauthentication.sh index faa23d4..4ae0486 100755 --- a/bin/hardening/9.3.7_disable_sshd_hostbasedauthentication.sh +++ b/bin/hardening/9.3.7_disable_sshd_hostbasedauthentication.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.8_disable_root_login.sh b/bin/hardening/9.3.8_disable_root_login.sh index 96df935..890e636 100755 --- a/bin/hardening/9.3.8_disable_root_login.sh +++ b/bin/hardening/9.3.8_disable_root_login.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.3.9_disable_sshd_permitemptypasswords.sh b/bin/hardening/9.3.9_disable_sshd_permitemptypasswords.sh index 383ca48..bda4337 100755 --- a/bin/hardening/9.3.9_disable_sshd_permitemptypasswords.sh +++ b/bin/hardening/9.3.9_disable_sshd_permitemptypasswords.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.4_secure_tty.sh b/bin/hardening/9.4_secure_tty.sh index ddeb0d9..e809230 100755 --- a/bin/hardening/9.4_secure_tty.sh +++ b/bin/hardening/9.4_secure_tty.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/9.5_restrict_su.sh b/bin/hardening/9.5_restrict_su.sh index 90737da..e79f726 100755 --- a/bin/hardening/9.5_restrict_su.sh +++ b/bin/hardening/9.5_restrict_su.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/99.1_timeout_tty.sh b/bin/hardening/99.1_timeout_tty.sh index d4bcfb1..9c14f24 100755 --- a/bin/hardening/99.1_timeout_tty.sh +++ b/bin/hardening/99.1_timeout_tty.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening /!\ Not in the Guide -# Authors : Thibault Dewailly, OVH # # diff --git a/bin/hardening/99.2_disable_usb_devices.sh b/bin/hardening/99.2_disable_usb_devices.sh index 97077ae..9c40d04 100755 --- a/bin/hardening/99.2_disable_usb_devices.sh +++ b/bin/hardening/99.2_disable_usb_devices.sh @@ -2,7 +2,6 @@ # # CIS Debian 7 Hardening /!\ Not in the Guide -# Authors : Thibault Dewailly, OVH # # diff --git a/etc/conf.d/1.1_install_updates.cfg b/etc/conf.d/1.1_install_updates.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/1.1_install_updates.cfg +++ b/etc/conf.d/1.1_install_updates.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/10.1.1_set_password_exp_days.cfg b/etc/conf.d/10.1.1_set_password_exp_days.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/10.1.1_set_password_exp_days.cfg +++ b/etc/conf.d/10.1.1_set_password_exp_days.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/10.1.2_set_password_min_days_change.cfg b/etc/conf.d/10.1.2_set_password_min_days_change.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/10.1.2_set_password_min_days_change.cfg +++ b/etc/conf.d/10.1.2_set_password_min_days_change.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/10.1.3_set_password_exp_warning_days.cfg b/etc/conf.d/10.1.3_set_password_exp_warning_days.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/10.1.3_set_password_exp_warning_days.cfg +++ b/etc/conf.d/10.1.3_set_password_exp_warning_days.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/10.2_disable_system_accounts.cfg b/etc/conf.d/10.2_disable_system_accounts.cfg index 3ddfab4..984069e 100644 --- a/etc/conf.d/10.2_disable_system_accounts.cfg +++ b/etc/conf.d/10.2_disable_system_accounts.cfg @@ -1,4 +1,4 @@ # Configuration for script of same name -status=enabled +status=disabled # Put here your exceptions concerning admin accounts shells separated by spaces EXCEPTIONS="" diff --git a/etc/conf.d/10.3_default_root_group.cfg b/etc/conf.d/10.3_default_root_group.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/10.3_default_root_group.cfg +++ b/etc/conf.d/10.3_default_root_group.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/10.4_default_umask.cfg b/etc/conf.d/10.4_default_umask.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/10.4_default_umask.cfg +++ b/etc/conf.d/10.4_default_umask.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/10.5_lock_inactive_user_account.cfg b/etc/conf.d/10.5_lock_inactive_user_account.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/10.5_lock_inactive_user_account.cfg +++ b/etc/conf.d/10.5_lock_inactive_user_account.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/11.1_warning_banners.cfg b/etc/conf.d/11.1_warning_banners.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/11.1_warning_banners.cfg +++ b/etc/conf.d/11.1_warning_banners.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/11.2_remove_os_info_warning_banners.cfg b/etc/conf.d/11.2_remove_os_info_warning_banners.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/11.2_remove_os_info_warning_banners.cfg +++ b/etc/conf.d/11.2_remove_os_info_warning_banners.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/11.3_graphical_warning_banners.cfg b/etc/conf.d/11.3_graphical_warning_banners.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/11.3_graphical_warning_banners.cfg +++ b/etc/conf.d/11.3_graphical_warning_banners.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/12.10_find_suid_files.cfg b/etc/conf.d/12.10_find_suid_files.cfg index 329e0ff..102c278 100644 --- a/etc/conf.d/12.10_find_suid_files.cfg +++ b/etc/conf.d/12.10_find_suid_files.cfg @@ -1,5 +1,5 @@ # Configuration for script of same name -status=enabled +status=disabled # Put Here your valid suid binaries so that they do not appear during the audit EXCEPTIONS="/bin/mount /bin/ping /bin/ping6 /bin/su /bin/umount /usr/bin/chfn /usr/bin/chsh /usr/bin/fping /usr/bin/fping6 /usr/bin/gpasswd /usr/bin/mtr /usr/bin/newgrp /usr/bin/passwd /usr/bin/sudo /usr/bin/sudoedit /usr/lib/openssh/ssh-keysign /usr/lib/pt_chown" diff --git a/etc/conf.d/12.11_find_sgid_files.cfg b/etc/conf.d/12.11_find_sgid_files.cfg index 09b501c..066ca9e 100644 --- a/etc/conf.d/12.11_find_sgid_files.cfg +++ b/etc/conf.d/12.11_find_sgid_files.cfg @@ -1,4 +1,4 @@ # Configuration for script of same name -status=enabled +status=disabled # Put here valid binaries with sgid enabled separated by spaces EXCEPTIONS="/sbin/unix_chkpwd /usr/bin/bsd-write /usr/bin/chage /usr/bin/crontab /usr/bin/expiry /usr/bin/mutt_dotlock /usr/bin/screen /usr/bin/ssh-agent /usr/bin/wall /usr/sbin/postdrop /usr/sbin/postqueue" diff --git a/etc/conf.d/12.1_etc_passwd_permissions.cfg b/etc/conf.d/12.1_etc_passwd_permissions.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/12.1_etc_passwd_permissions.cfg +++ b/etc/conf.d/12.1_etc_passwd_permissions.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/12.2_etc_shadow_permissions.cfg b/etc/conf.d/12.2_etc_shadow_permissions.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/12.2_etc_shadow_permissions.cfg +++ b/etc/conf.d/12.2_etc_shadow_permissions.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/12.3_etc_group_permissions.cfg b/etc/conf.d/12.3_etc_group_permissions.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/12.3_etc_group_permissions.cfg +++ b/etc/conf.d/12.3_etc_group_permissions.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/12.4_etc_passwd_ownership.cfg b/etc/conf.d/12.4_etc_passwd_ownership.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/12.4_etc_passwd_ownership.cfg +++ b/etc/conf.d/12.4_etc_passwd_ownership.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/12.5_etc_shadow_ownership.cfg b/etc/conf.d/12.5_etc_shadow_ownership.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/12.5_etc_shadow_ownership.cfg +++ b/etc/conf.d/12.5_etc_shadow_ownership.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/12.6_etc_group_ownership.cfg b/etc/conf.d/12.6_etc_group_ownership.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/12.6_etc_group_ownership.cfg +++ b/etc/conf.d/12.6_etc_group_ownership.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/12.7_find_world_writable_file.cfg b/etc/conf.d/12.7_find_world_writable_file.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/12.7_find_world_writable_file.cfg +++ b/etc/conf.d/12.7_find_world_writable_file.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/12.8_find_unowned_files.cfg b/etc/conf.d/12.8_find_unowned_files.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/12.8_find_unowned_files.cfg +++ b/etc/conf.d/12.8_find_unowned_files.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/12.9_find_ungrouped_files.cfg b/etc/conf.d/12.9_find_ungrouped_files.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/12.9_find_ungrouped_files.cfg +++ b/etc/conf.d/12.9_find_ungrouped_files.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.10_find_user_rhosts_files.cfg b/etc/conf.d/13.10_find_user_rhosts_files.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.10_find_user_rhosts_files.cfg +++ b/etc/conf.d/13.10_find_user_rhosts_files.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.11_find_passwd_group_inconsistencies.cfg b/etc/conf.d/13.11_find_passwd_group_inconsistencies.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.11_find_passwd_group_inconsistencies.cfg +++ b/etc/conf.d/13.11_find_passwd_group_inconsistencies.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.12_users_valid_homedir.cfg b/etc/conf.d/13.12_users_valid_homedir.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.12_users_valid_homedir.cfg +++ b/etc/conf.d/13.12_users_valid_homedir.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.13_check_user_homedir_ownership.cfg b/etc/conf.d/13.13_check_user_homedir_ownership.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.13_check_user_homedir_ownership.cfg +++ b/etc/conf.d/13.13_check_user_homedir_ownership.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.14_check_duplicate_uid.cfg b/etc/conf.d/13.14_check_duplicate_uid.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.14_check_duplicate_uid.cfg +++ b/etc/conf.d/13.14_check_duplicate_uid.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.15_check_duplicate_gid.cfg b/etc/conf.d/13.15_check_duplicate_gid.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.15_check_duplicate_gid.cfg +++ b/etc/conf.d/13.15_check_duplicate_gid.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.16_check_duplicate_username.cfg b/etc/conf.d/13.16_check_duplicate_username.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.16_check_duplicate_username.cfg +++ b/etc/conf.d/13.16_check_duplicate_username.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.17_check_duplicate_groupname.cfg b/etc/conf.d/13.17_check_duplicate_groupname.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.17_check_duplicate_groupname.cfg +++ b/etc/conf.d/13.17_check_duplicate_groupname.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.18_find_user_netrc_files.cfg b/etc/conf.d/13.18_find_user_netrc_files.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.18_find_user_netrc_files.cfg +++ b/etc/conf.d/13.18_find_user_netrc_files.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.19_find_user_forward_files.cfg b/etc/conf.d/13.19_find_user_forward_files.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.19_find_user_forward_files.cfg +++ b/etc/conf.d/13.19_find_user_forward_files.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.1_remove_empty_password_field.cfg b/etc/conf.d/13.1_remove_empty_password_field.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.1_remove_empty_password_field.cfg +++ b/etc/conf.d/13.1_remove_empty_password_field.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.20_shadow_group_empty.cfg b/etc/conf.d/13.20_shadow_group_empty.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.20_shadow_group_empty.cfg +++ b/etc/conf.d/13.20_shadow_group_empty.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.2_remove_legacy_passwd_entries.cfg b/etc/conf.d/13.2_remove_legacy_passwd_entries.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.2_remove_legacy_passwd_entries.cfg +++ b/etc/conf.d/13.2_remove_legacy_passwd_entries.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.3_remove_legacy_shadow_entries.cfg b/etc/conf.d/13.3_remove_legacy_shadow_entries.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.3_remove_legacy_shadow_entries.cfg +++ b/etc/conf.d/13.3_remove_legacy_shadow_entries.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.4_remove_legacy_group_entries.cfg b/etc/conf.d/13.4_remove_legacy_group_entries.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.4_remove_legacy_group_entries.cfg +++ b/etc/conf.d/13.4_remove_legacy_group_entries.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.5_find_0_uid_non_root_account.cfg b/etc/conf.d/13.5_find_0_uid_non_root_account.cfg index 9b61b4a..9575e88 100644 --- a/etc/conf.d/13.5_find_0_uid_non_root_account.cfg +++ b/etc/conf.d/13.5_find_0_uid_non_root_account.cfg @@ -1,4 +1,4 @@ # Configuration for script of same name -status=enabled +status=disabled # Put here valid accounts with uid 0 separated by spaces EXCEPTIONS="" diff --git a/etc/conf.d/13.6_sanitize_root_path.cfg b/etc/conf.d/13.6_sanitize_root_path.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.6_sanitize_root_path.cfg +++ b/etc/conf.d/13.6_sanitize_root_path.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.7_check_user_dir_perm.cfg b/etc/conf.d/13.7_check_user_dir_perm.cfg index cfad1b4..16b509e 100644 --- a/etc/conf.d/13.7_check_user_dir_perm.cfg +++ b/etc/conf.d/13.7_check_user_dir_perm.cfg @@ -1,4 +1,4 @@ # Configuration for script of same name -status=enabled +status=disabled # Put here user home directories exceptions, separated by spaces EXCEPTIONS="" diff --git a/etc/conf.d/13.8_check_user_dot_file_perm.cfg b/etc/conf.d/13.8_check_user_dot_file_perm.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.8_check_user_dot_file_perm.cfg +++ b/etc/conf.d/13.8_check_user_dot_file_perm.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/13.9_set_perm_on_user_netrc.cfg b/etc/conf.d/13.9_set_perm_on_user_netrc.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/13.9_set_perm_on_user_netrc.cfg +++ b/etc/conf.d/13.9_set_perm_on_user_netrc.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/5.1.2_disable_rsh.cfg b/etc/conf.d/5.1.2_disable_rsh.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/5.1.2_disable_rsh.cfg +++ b/etc/conf.d/5.1.2_disable_rsh.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/5.1.4_disable_talk.cfg b/etc/conf.d/5.1.4_disable_talk.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/5.1.4_disable_talk.cfg +++ b/etc/conf.d/5.1.4_disable_talk.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/5.1.5_disable_talk_client.cfg b/etc/conf.d/5.1.5_disable_talk_client.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/5.1.5_disable_talk_client.cfg +++ b/etc/conf.d/5.1.5_disable_talk_client.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/5.1.6_disable_telnet_server.cfg b/etc/conf.d/5.1.6_disable_telnet_server.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/5.1.6_disable_telnet_server.cfg +++ b/etc/conf.d/5.1.6_disable_telnet_server.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/5.1.7_disable_tftp_server.cfg b/etc/conf.d/5.1.7_disable_tftp_server.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/5.1.7_disable_tftp_server.cfg +++ b/etc/conf.d/5.1.7_disable_tftp_server.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/5.1.8_disable_inetd.cfg b/etc/conf.d/5.1.8_disable_inetd.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/5.1.8_disable_inetd.cfg +++ b/etc/conf.d/5.1.8_disable_inetd.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/5.2_disable_chargen.cfg b/etc/conf.d/5.2_disable_chargen.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/5.2_disable_chargen.cfg +++ b/etc/conf.d/5.2_disable_chargen.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/5.3_disable_daytime.cfg b/etc/conf.d/5.3_disable_daytime.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/5.3_disable_daytime.cfg +++ b/etc/conf.d/5.3_disable_daytime.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/5.4_disable_echo.cfg b/etc/conf.d/5.4_disable_echo.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/5.4_disable_echo.cfg +++ b/etc/conf.d/5.4_disable_echo.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/5.5_disable_discard.cfg b/etc/conf.d/5.5_disable_discard.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/5.5_disable_discard.cfg +++ b/etc/conf.d/5.5_disable_discard.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/5.6_disable_time.cfg b/etc/conf.d/5.6_disable_time.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/5.6_disable_time.cfg +++ b/etc/conf.d/5.6_disable_time.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.10_disable_http_server.cfg b/etc/conf.d/6.10_disable_http_server.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.10_disable_http_server.cfg +++ b/etc/conf.d/6.10_disable_http_server.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.11_disable_imap_pop.cfg b/etc/conf.d/6.11_disable_imap_pop.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.11_disable_imap_pop.cfg +++ b/etc/conf.d/6.11_disable_imap_pop.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.12_disable_samba.cfg b/etc/conf.d/6.12_disable_samba.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.12_disable_samba.cfg +++ b/etc/conf.d/6.12_disable_samba.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.13_diable_http_proxy.cfg b/etc/conf.d/6.13_diable_http_proxy.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.13_diable_http_proxy.cfg +++ b/etc/conf.d/6.13_diable_http_proxy.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.14_disable_snmp_server.cfg b/etc/conf.d/6.14_disable_snmp_server.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.14_disable_snmp_server.cfg +++ b/etc/conf.d/6.14_disable_snmp_server.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.15_mta_localhost.cfg b/etc/conf.d/6.15_mta_localhost.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.15_mta_localhost.cfg +++ b/etc/conf.d/6.15_mta_localhost.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.16_disable_rsync.cfg b/etc/conf.d/6.16_disable_rsync.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.16_disable_rsync.cfg +++ b/etc/conf.d/6.16_disable_rsync.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.1_disable_xwindow_system.cfg b/etc/conf.d/6.1_disable_xwindow_system.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.1_disable_xwindow_system.cfg +++ b/etc/conf.d/6.1_disable_xwindow_system.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.2_disable_avahi_server.cfg b/etc/conf.d/6.2_disable_avahi_server.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.2_disable_avahi_server.cfg +++ b/etc/conf.d/6.2_disable_avahi_server.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.3_disable_print_server.cfg b/etc/conf.d/6.3_disable_print_server.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.3_disable_print_server.cfg +++ b/etc/conf.d/6.3_disable_print_server.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.4_disable_dhcp.cfg b/etc/conf.d/6.4_disable_dhcp.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.4_disable_dhcp.cfg +++ b/etc/conf.d/6.4_disable_dhcp.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.5_configure_ntp.cfg b/etc/conf.d/6.5_configure_ntp.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.5_configure_ntp.cfg +++ b/etc/conf.d/6.5_configure_ntp.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.6_diable_ldap.cfg b/etc/conf.d/6.6_diable_ldap.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.6_diable_ldap.cfg +++ b/etc/conf.d/6.6_diable_ldap.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.7_disable_nfs_rpc.cfg b/etc/conf.d/6.7_disable_nfs_rpc.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.7_disable_nfs_rpc.cfg +++ b/etc/conf.d/6.7_disable_nfs_rpc.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.8_disable_dns_server.cfg b/etc/conf.d/6.8_disable_dns_server.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.8_disable_dns_server.cfg +++ b/etc/conf.d/6.8_disable_dns_server.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/6.9_disable_ftp.cfg b/etc/conf.d/6.9_disable_ftp.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/6.9_disable_ftp.cfg +++ b/etc/conf.d/6.9_disable_ftp.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.1.1_disable_ip_forwarding.cfg b/etc/conf.d/7.1.1_disable_ip_forwarding.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.1.1_disable_ip_forwarding.cfg +++ b/etc/conf.d/7.1.1_disable_ip_forwarding.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.1.2_disable_send_packet_redirects.cfg b/etc/conf.d/7.1.2_disable_send_packet_redirects.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.1.2_disable_send_packet_redirects.cfg +++ b/etc/conf.d/7.1.2_disable_send_packet_redirects.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.2.1_disable_source_routed_packets.cfg b/etc/conf.d/7.2.1_disable_source_routed_packets.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.2.1_disable_source_routed_packets.cfg +++ b/etc/conf.d/7.2.1_disable_source_routed_packets.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.2.2_disable_icmp_redirect.cfg b/etc/conf.d/7.2.2_disable_icmp_redirect.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.2.2_disable_icmp_redirect.cfg +++ b/etc/conf.d/7.2.2_disable_icmp_redirect.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.2.3_disable_secure_icmp_redirect.cfg b/etc/conf.d/7.2.3_disable_secure_icmp_redirect.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.2.3_disable_secure_icmp_redirect.cfg +++ b/etc/conf.d/7.2.3_disable_secure_icmp_redirect.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.2.4_log_martian_packets.cfg b/etc/conf.d/7.2.4_log_martian_packets.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.2.4_log_martian_packets.cfg +++ b/etc/conf.d/7.2.4_log_martian_packets.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.2.5_ignore_broadcast_requests.cfg b/etc/conf.d/7.2.5_ignore_broadcast_requests.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.2.5_ignore_broadcast_requests.cfg +++ b/etc/conf.d/7.2.5_ignore_broadcast_requests.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.2.6_enable_bad_error_message_protection.cfg b/etc/conf.d/7.2.6_enable_bad_error_message_protection.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.2.6_enable_bad_error_message_protection.cfg +++ b/etc/conf.d/7.2.6_enable_bad_error_message_protection.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.2.7_enable_source_route_validation.cfg b/etc/conf.d/7.2.7_enable_source_route_validation.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.2.7_enable_source_route_validation.cfg +++ b/etc/conf.d/7.2.7_enable_source_route_validation.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.2.8_enable_tcp_syn_cookies.cfg b/etc/conf.d/7.2.8_enable_tcp_syn_cookies.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.2.8_enable_tcp_syn_cookies.cfg +++ b/etc/conf.d/7.2.8_enable_tcp_syn_cookies.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.3.1_disable_ipv6_router_advertisement.cfg b/etc/conf.d/7.3.1_disable_ipv6_router_advertisement.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.3.1_disable_ipv6_router_advertisement.cfg +++ b/etc/conf.d/7.3.1_disable_ipv6_router_advertisement.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.3.2_disable_ipv6_redirect.cfg b/etc/conf.d/7.3.2_disable_ipv6_redirect.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.3.2_disable_ipv6_redirect.cfg +++ b/etc/conf.d/7.3.2_disable_ipv6_redirect.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.3.3_disable_ipv6.cfg b/etc/conf.d/7.3.3_disable_ipv6.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.3.3_disable_ipv6.cfg +++ b/etc/conf.d/7.3.3_disable_ipv6.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.4.1_install_tcp_wrapper.cfg b/etc/conf.d/7.4.1_install_tcp_wrapper.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.4.1_install_tcp_wrapper.cfg +++ b/etc/conf.d/7.4.1_install_tcp_wrapper.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.4.2_hosts_allow.cfg b/etc/conf.d/7.4.2_hosts_allow.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.4.2_hosts_allow.cfg +++ b/etc/conf.d/7.4.2_hosts_allow.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.4.3_hosts_allow_permissions.cfg b/etc/conf.d/7.4.3_hosts_allow_permissions.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.4.3_hosts_allow_permissions.cfg +++ b/etc/conf.d/7.4.3_hosts_allow_permissions.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.4.4_hosts_deny.cfg b/etc/conf.d/7.4.4_hosts_deny.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.4.4_hosts_deny.cfg +++ b/etc/conf.d/7.4.4_hosts_deny.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.4.5_hosts_deny_permissions.cfg b/etc/conf.d/7.4.5_hosts_deny_permissions.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.4.5_hosts_deny_permissions.cfg +++ b/etc/conf.d/7.4.5_hosts_deny_permissions.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.5.1_disable_dccp.cfg b/etc/conf.d/7.5.1_disable_dccp.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.5.1_disable_dccp.cfg +++ b/etc/conf.d/7.5.1_disable_dccp.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.5.2_disable_sctp.cfg b/etc/conf.d/7.5.2_disable_sctp.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.5.2_disable_sctp.cfg +++ b/etc/conf.d/7.5.2_disable_sctp.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.5.3_disable_rds.cfg b/etc/conf.d/7.5.3_disable_rds.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.5.3_disable_rds.cfg +++ b/etc/conf.d/7.5.3_disable_rds.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.6_disable_wireless.cfg b/etc/conf.d/7.6_disable_wireless.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.6_disable_wireless.cfg +++ b/etc/conf.d/7.6_disable_wireless.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/7.7_enable_firewall.cfg b/etc/conf.d/7.7_enable_firewall.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/7.7_enable_firewall.cfg +++ b/etc/conf.d/7.7_enable_firewall.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.0_enable_auditd_kernel.cfg b/etc/conf.d/8.0_enable_auditd_kernel.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.0_enable_auditd_kernel.cfg +++ b/etc/conf.d/8.0_enable_auditd_kernel.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.1.1_audit_log_storage.cfg b/etc/conf.d/8.1.1.1_audit_log_storage.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.1.1_audit_log_storage.cfg +++ b/etc/conf.d/8.1.1.1_audit_log_storage.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.1.2_halt_when_audit_log_full.cfg b/etc/conf.d/8.1.1.2_halt_when_audit_log_full.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.1.2_halt_when_audit_log_full.cfg +++ b/etc/conf.d/8.1.1.2_halt_when_audit_log_full.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.1.3_keep_all_audit_logs.cfg b/etc/conf.d/8.1.1.3_keep_all_audit_logs.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.1.3_keep_all_audit_logs.cfg +++ b/etc/conf.d/8.1.1.3_keep_all_audit_logs.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.10_record_dac_edit.cfg b/etc/conf.d/8.1.10_record_dac_edit.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.10_record_dac_edit.cfg +++ b/etc/conf.d/8.1.10_record_dac_edit.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.11_record_failed_access_file.cfg b/etc/conf.d/8.1.11_record_failed_access_file.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.11_record_failed_access_file.cfg +++ b/etc/conf.d/8.1.11_record_failed_access_file.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.12_record_privileged_commands.cfg b/etc/conf.d/8.1.12_record_privileged_commands.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.12_record_privileged_commands.cfg +++ b/etc/conf.d/8.1.12_record_privileged_commands.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.13_record_successful_mount.cfg b/etc/conf.d/8.1.13_record_successful_mount.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.13_record_successful_mount.cfg +++ b/etc/conf.d/8.1.13_record_successful_mount.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.14_record_file_deletions.cfg b/etc/conf.d/8.1.14_record_file_deletions.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.14_record_file_deletions.cfg +++ b/etc/conf.d/8.1.14_record_file_deletions.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.15_record_sudoers_edit.cfg b/etc/conf.d/8.1.15_record_sudoers_edit.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.15_record_sudoers_edit.cfg +++ b/etc/conf.d/8.1.15_record_sudoers_edit.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.16_record_sudo_usage.cfg b/etc/conf.d/8.1.16_record_sudo_usage.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.16_record_sudo_usage.cfg +++ b/etc/conf.d/8.1.16_record_sudo_usage.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.17_record_kernel_modules.cfg b/etc/conf.d/8.1.17_record_kernel_modules.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.17_record_kernel_modules.cfg +++ b/etc/conf.d/8.1.17_record_kernel_modules.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.18_freeze_auditd_conf.cfg b/etc/conf.d/8.1.18_freeze_auditd_conf.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.18_freeze_auditd_conf.cfg +++ b/etc/conf.d/8.1.18_freeze_auditd_conf.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.2_enable_auditd.cfg b/etc/conf.d/8.1.2_enable_auditd.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.2_enable_auditd.cfg +++ b/etc/conf.d/8.1.2_enable_auditd.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.3_audit_bootloader.cfg b/etc/conf.d/8.1.3_audit_bootloader.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.3_audit_bootloader.cfg +++ b/etc/conf.d/8.1.3_audit_bootloader.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.4_record_date_time_edit.cfg b/etc/conf.d/8.1.4_record_date_time_edit.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.4_record_date_time_edit.cfg +++ b/etc/conf.d/8.1.4_record_date_time_edit.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.5_record_user_group_edit.cfg b/etc/conf.d/8.1.5_record_user_group_edit.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.5_record_user_group_edit.cfg +++ b/etc/conf.d/8.1.5_record_user_group_edit.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.6_record_network_edit.cfg b/etc/conf.d/8.1.6_record_network_edit.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.6_record_network_edit.cfg +++ b/etc/conf.d/8.1.6_record_network_edit.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.7_record_mac_edit.cfg b/etc/conf.d/8.1.7_record_mac_edit.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.7_record_mac_edit.cfg +++ b/etc/conf.d/8.1.7_record_mac_edit.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.8_record_login_logout.cfg b/etc/conf.d/8.1.8_record_login_logout.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.8_record_login_logout.cfg +++ b/etc/conf.d/8.1.8_record_login_logout.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.1.9_record_session_init.cfg b/etc/conf.d/8.1.9_record_session_init.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.1.9_record_session_init.cfg +++ b/etc/conf.d/8.1.9_record_session_init.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.2.1_install_syslog-ng.cfg b/etc/conf.d/8.2.1_install_syslog-ng.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.2.1_install_syslog-ng.cfg +++ b/etc/conf.d/8.2.1_install_syslog-ng.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.2.2_enable_syslog-ng.cfg b/etc/conf.d/8.2.2_enable_syslog-ng.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.2.2_enable_syslog-ng.cfg +++ b/etc/conf.d/8.2.2_enable_syslog-ng.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.2.3_configure_syslog-ng.cfg b/etc/conf.d/8.2.3_configure_syslog-ng.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.2.3_configure_syslog-ng.cfg +++ b/etc/conf.d/8.2.3_configure_syslog-ng.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.2.4_set_logfile_perm.cfg b/etc/conf.d/8.2.4_set_logfile_perm.cfg index 83a0977..2b93105 100644 --- a/etc/conf.d/8.2.4_set_logfile_perm.cfg +++ b/etc/conf.d/8.2.4_set_logfile_perm.cfg @@ -1,3 +1,3 @@ # Configuration for script of same name -status=enabled +status=disabled SYSLOG_BASEDIR='/etc/syslog-ng' diff --git a/etc/conf.d/8.2.5_syslog-ng_remote_host.cfg b/etc/conf.d/8.2.5_syslog-ng_remote_host.cfg index 83a0977..2b93105 100644 --- a/etc/conf.d/8.2.5_syslog-ng_remote_host.cfg +++ b/etc/conf.d/8.2.5_syslog-ng_remote_host.cfg @@ -1,3 +1,3 @@ # Configuration for script of same name -status=enabled +status=disabled SYSLOG_BASEDIR='/etc/syslog-ng' diff --git a/etc/conf.d/8.2.6_remote_syslog-ng_acl.cfg b/etc/conf.d/8.2.6_remote_syslog-ng_acl.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.2.6_remote_syslog-ng_acl.cfg +++ b/etc/conf.d/8.2.6_remote_syslog-ng_acl.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.3.1_install_tripwire.cfg b/etc/conf.d/8.3.1_install_tripwire.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.3.1_install_tripwire.cfg +++ b/etc/conf.d/8.3.1_install_tripwire.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.3.2_tripwire_cron.cfg b/etc/conf.d/8.3.2_tripwire_cron.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.3.2_tripwire_cron.cfg +++ b/etc/conf.d/8.3.2_tripwire_cron.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/8.4_configure_logrotate.cfg b/etc/conf.d/8.4_configure_logrotate.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/8.4_configure_logrotate.cfg +++ b/etc/conf.d/8.4_configure_logrotate.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.1.1_enable_cron.cfg b/etc/conf.d/9.1.1_enable_cron.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.1.1_enable_cron.cfg +++ b/etc/conf.d/9.1.1_enable_cron.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.1.2_crontab_perm_ownership.cfg b/etc/conf.d/9.1.2_crontab_perm_ownership.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.1.2_crontab_perm_ownership.cfg +++ b/etc/conf.d/9.1.2_crontab_perm_ownership.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.1.3_cron_hourly_perm_ownership.cfg b/etc/conf.d/9.1.3_cron_hourly_perm_ownership.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.1.3_cron_hourly_perm_ownership.cfg +++ b/etc/conf.d/9.1.3_cron_hourly_perm_ownership.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.1.4_cron_daily_perm_ownership.cfg b/etc/conf.d/9.1.4_cron_daily_perm_ownership.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.1.4_cron_daily_perm_ownership.cfg +++ b/etc/conf.d/9.1.4_cron_daily_perm_ownership.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.1.5_cron_weekly_perm_ownership.cfg b/etc/conf.d/9.1.5_cron_weekly_perm_ownership.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.1.5_cron_weekly_perm_ownership.cfg +++ b/etc/conf.d/9.1.5_cron_weekly_perm_ownership.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.1.6_cron_monthly_perm_ownership.cfg b/etc/conf.d/9.1.6_cron_monthly_perm_ownership.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.1.6_cron_monthly_perm_ownership.cfg +++ b/etc/conf.d/9.1.6_cron_monthly_perm_ownership.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.1.7_cron_d_perm_ownership.cfg b/etc/conf.d/9.1.7_cron_d_perm_ownership.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.1.7_cron_d_perm_ownership.cfg +++ b/etc/conf.d/9.1.7_cron_d_perm_ownership.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.1.8_cron_users.cfg b/etc/conf.d/9.1.8_cron_users.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.1.8_cron_users.cfg +++ b/etc/conf.d/9.1.8_cron_users.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.2.1_enable_cracklib.cfg b/etc/conf.d/9.2.1_enable_cracklib.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.2.1_enable_cracklib.cfg +++ b/etc/conf.d/9.2.1_enable_cracklib.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.2.2_enable_lockout_failed_password.cfg b/etc/conf.d/9.2.2_enable_lockout_failed_password.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.2.2_enable_lockout_failed_password.cfg +++ b/etc/conf.d/9.2.2_enable_lockout_failed_password.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.2.3_limit_password_reuse.cfg b/etc/conf.d/9.2.3_limit_password_reuse.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.2.3_limit_password_reuse.cfg +++ b/etc/conf.d/9.2.3_limit_password_reuse.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.3.10_disable_sshd_setenv.cfg b/etc/conf.d/9.3.10_disable_sshd_setenv.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.3.10_disable_sshd_setenv.cfg +++ b/etc/conf.d/9.3.10_disable_sshd_setenv.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.3.11_sshd_ciphers.cfg b/etc/conf.d/9.3.11_sshd_ciphers.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.3.11_sshd_ciphers.cfg +++ b/etc/conf.d/9.3.11_sshd_ciphers.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.3.12_sshd_idle_timeout.cfg b/etc/conf.d/9.3.12_sshd_idle_timeout.cfg index c17c30f..34efc50 100644 --- a/etc/conf.d/9.3.12_sshd_idle_timeout.cfg +++ b/etc/conf.d/9.3.12_sshd_idle_timeout.cfg @@ -1,5 +1,5 @@ # Configuration for script of same name -status=enabled +status=disabled # In seconds, value of ClientAliveInterval, ClientAliveCountMax bedoing set to 0 # Settles sshd idle timeout SSHD_TIMEOUT=900 diff --git a/etc/conf.d/9.3.13_sshd_limit_access.cfg b/etc/conf.d/9.3.13_sshd_limit_access.cfg index 3373d5c..1fd153a 100644 --- a/etc/conf.d/9.3.13_sshd_limit_access.cfg +++ b/etc/conf.d/9.3.13_sshd_limit_access.cfg @@ -1,5 +1,5 @@ # Configuration for script of same name -status=enabled +status=disabled # Put here ssh user hardening list, there is a default in script to not break your configuration # However, it can erase current configuration diff --git a/etc/conf.d/9.3.14_ssh_banner.cfg b/etc/conf.d/9.3.14_ssh_banner.cfg index 500c8d6..91ec8ae 100644 --- a/etc/conf.d/9.3.14_ssh_banner.cfg +++ b/etc/conf.d/9.3.14_ssh_banner.cfg @@ -1,4 +1,4 @@ # Configuration for script of same name -status=enabled +status=disabled # Put here banner file, default to /etc/issue.net BANNER_FILE="" diff --git a/etc/conf.d/9.3.1_sshd_protocol.cfg b/etc/conf.d/9.3.1_sshd_protocol.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.3.1_sshd_protocol.cfg +++ b/etc/conf.d/9.3.1_sshd_protocol.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.3.2_sshd_loglevel.cfg b/etc/conf.d/9.3.2_sshd_loglevel.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.3.2_sshd_loglevel.cfg +++ b/etc/conf.d/9.3.2_sshd_loglevel.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.3.3_sshd_conf_perm_ownership.cfg b/etc/conf.d/9.3.3_sshd_conf_perm_ownership.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.3.3_sshd_conf_perm_ownership.cfg +++ b/etc/conf.d/9.3.3_sshd_conf_perm_ownership.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.3.4_disable_x11_forwarding.cfg b/etc/conf.d/9.3.4_disable_x11_forwarding.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.3.4_disable_x11_forwarding.cfg +++ b/etc/conf.d/9.3.4_disable_x11_forwarding.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.3.5_sshd_maxauthtries.cfg b/etc/conf.d/9.3.5_sshd_maxauthtries.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.3.5_sshd_maxauthtries.cfg +++ b/etc/conf.d/9.3.5_sshd_maxauthtries.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.3.6_enable_sshd_ignorerhosts.cfg b/etc/conf.d/9.3.6_enable_sshd_ignorerhosts.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.3.6_enable_sshd_ignorerhosts.cfg +++ b/etc/conf.d/9.3.6_enable_sshd_ignorerhosts.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.3.7_disable_sshd_hostbasedauthentication.cfg b/etc/conf.d/9.3.7_disable_sshd_hostbasedauthentication.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.3.7_disable_sshd_hostbasedauthentication.cfg +++ b/etc/conf.d/9.3.7_disable_sshd_hostbasedauthentication.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.3.8_disable_root_login.cfg b/etc/conf.d/9.3.8_disable_root_login.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.3.8_disable_root_login.cfg +++ b/etc/conf.d/9.3.8_disable_root_login.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.3.9_disable_sshd_permitemptypasswords.cfg b/etc/conf.d/9.3.9_disable_sshd_permitemptypasswords.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.3.9_disable_sshd_permitemptypasswords.cfg +++ b/etc/conf.d/9.3.9_disable_sshd_permitemptypasswords.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.4_secure_tty.cfg b/etc/conf.d/9.4_secure_tty.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.4_secure_tty.cfg +++ b/etc/conf.d/9.4_secure_tty.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/9.5_restrict_su.cfg b/etc/conf.d/9.5_restrict_su.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/9.5_restrict_su.cfg +++ b/etc/conf.d/9.5_restrict_su.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/99.1_timeout_tty.cfg b/etc/conf.d/99.1_timeout_tty.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/99.1_timeout_tty.cfg +++ b/etc/conf.d/99.1_timeout_tty.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/etc/conf.d/99.2_disable_usb_devices.cfg b/etc/conf.d/99.2_disable_usb_devices.cfg index e1e4502..acee522 100644 --- a/etc/conf.d/99.2_disable_usb_devices.cfg +++ b/etc/conf.d/99.2_disable_usb_devices.cfg @@ -1,2 +1,2 @@ # Configuration for script of same name -status=enabled +status=disabled diff --git a/lib/main.sh b/lib/main.sh index fd73202..5c1497c 100644 --- a/lib/main.sh +++ b/lib/main.sh @@ -19,7 +19,7 @@ info "Working on $SCRIPT_NAME" if [ -z $status ]; then crit "Could not find status variable for $SCRIPT_NAME, considered as disabled" - exit 0 + exit 2 fi # Arguments parsing