mirror of
https://github.com/ovh/debian-cis.git
synced 2024-12-23 14:35:26 +01:00
Fixed disabled features, headers and preparing main script
This commit is contained in:
parent
ef14c475fe
commit
756fce8c2e
@ -14,3 +14,9 @@
|
||||
# Audit mode
|
||||
|
||||
# ls | sort -V
|
||||
|
||||
cd /opt/cis-hardening/bin/hardening
|
||||
for i in $(ls | sort -V); do
|
||||
echo "$i"
|
||||
./$i --audit
|
||||
done
|
||||
|
@ -6,7 +6,7 @@
|
||||
#
|
||||
|
||||
#
|
||||
# 13.18 Check for Presence of User .netrc Files (Scored)
|
||||
# 13.19 Check for Presence of User .forward Files (Scored)
|
||||
#
|
||||
|
||||
set -e # One error, it's over
|
||||
|
@ -6,7 +6,7 @@
|
||||
#
|
||||
|
||||
#
|
||||
# 13.18 Check for Presence of User .netrc Files (Scored)
|
||||
# 13.20 Ensure shadow group is empty (Scored)
|
||||
#
|
||||
|
||||
set -e # One error, it's over
|
||||
|
2
etc/conf.d/7.5.3_disable_rds.cfg
Normal file
2
etc/conf.d/7.5.3_disable_rds.cfg
Normal file
@ -0,0 +1,2 @@
|
||||
# Configuration for script of same name
|
||||
status=enabled
|
@ -27,7 +27,7 @@ while [[ $# > 0 ]]; do
|
||||
ARG="$1"
|
||||
case $ARG in
|
||||
--audit)
|
||||
if [ $status != 'disabled' -o $status != 'false' ]; then
|
||||
if [ $status != 'disabled' -a $status != 'false' ]; then
|
||||
debug "Audit argument detected, setting status to audit"
|
||||
status=audit
|
||||
else
|
||||
@ -58,17 +58,17 @@ case $status in
|
||||
;;
|
||||
disabled | false )
|
||||
info "$SCRIPT_NAME is disabled, ignoring"
|
||||
exit 2 # Means unknown status
|
||||
;;
|
||||
*)
|
||||
warn "Wrong value for status : $status. Must be [ enabled | true | audit | disabled | false ]"
|
||||
;;
|
||||
esac
|
||||
|
||||
info "Results : "
|
||||
if [ $CRITICAL_ERRORS_NUMBER = 0 ]; then
|
||||
ok "Check Passed"
|
||||
exit 0
|
||||
exit 0 # Means ok status
|
||||
else
|
||||
crit "Check Failed"
|
||||
exit 1
|
||||
exit 1 # Means critical status
|
||||
fi
|
||||
|
Loading…
Reference in New Issue
Block a user