From 7ce8ec8b89d2285705ac27e49fdb602491d86e58 Mon Sep 17 00:00:00 2001 From: Thibault Ayanides Date: Tue, 22 Dec 2020 08:52:43 +0100 Subject: [PATCH] Renum 2.x and 3.x files to comply with debian10 CIS renamed: bin/hardening/3.7_disable_ipv6.sh -> bin/hardening/3.1.1_disable_ipv6.sh renamed: bin/hardening/3.6_disable_wireless.sh -> bin/hardening/3.1.2_disable_wireless.sh renamed: bin/hardening/3.1.2_disable_send_packet_redirects.sh -> bin/hardening/3.2.1_disable_send_packet_redirects.sh renamed: bin/hardening/3.1.1_disable_ip_forwarding.sh -> bin/hardening/3.2.2_disable_ip_forwarding.sh renamed: bin/hardening/3.2.1_disable_source_routed_packets.sh -> bin/hardening/3.3.1_disable_source_routed_packets.sh renamed: bin/hardening/3.2.2_disable_icmp_redirect.sh -> bin/hardening/3.3.2_disable_icmp_redirect.sh renamed: bin/hardening/3.2.3_disable_secure_icmp_redirect.sh -> bin/hardening/3.3.3_disable_secure_icmp_redirect.sh renamed: bin/hardening/3.2.4_log_martian_packets.sh -> bin/hardening/3.3.4_log_martian_packets.sh renamed: bin/hardening/3.2.5_ignore_broadcast_requests.sh -> bin/hardening/3.3.5_ignore_broadcast_requests.sh renamed: bin/hardening/3.2.6_enable_bad_error_message_protection.sh -> bin/hardening/3.3.6_enable_bad_error_message_protection.sh renamed: bin/hardening/3.2.7_enable_source_route_validation.sh -> bin/hardening/3.3.7_enable_source_route_validation.sh renamed: bin/hardening/3.2.8_enable_tcp_syn_cookies.sh -> bin/hardening/3.3.8_enable_tcp_syn_cookies.sh renamed: bin/hardening/3.2.9_disable_ipv6_router_advertisement.sh -> bin/hardening/3.3.9_disable_ipv6_router_advertisement.sh renamed: bin/hardening/3.5_enable_firewall.sh -> bin/hardening/3.5.1.1_enable_firewall.sh renamed: bin/hardening/3.5.1.1_net_fw_default_policy_drop.sh -> bin/hardening/3.5.4.1.1_net_fw_default_policy_drop.sh renamed: bin/hardening/3.3.1_install_tcp_wrapper.sh -> bin/hardening/99.3.3.1_install_tcp_wrapper.sh renamed: bin/hardening/3.3.2_hosts_allow.sh -> bin/hardening/99.3.3.2_hosts_allow.sh renamed: bin/hardening/3.3.3_hosts_deny.sh -> bin/hardening/99.3.3.3_hosts_deny.sh renamed: bin/hardening/3.3.4_hosts_allow_permissions.sh -> bin/hardening/99.3.3.4_hosts_allow_permissions.sh renamed: bin/hardening/3.3.5_hosts_deny_permissions.sh -> bin/hardening/99.3.3.5_hosts_deny_permissions.sh renamed: tests/hardening/3.1.2_disable_send_packet_redirects.sh -> tests/hardening/3.1.1_disable_ipv6.sh renamed: tests/hardening/3.2.1_disable_source_routed_packets.sh -> tests/hardening/3.1.2_disable_wireless.sh renamed: tests/hardening/3.2.2_disable_icmp_redirect.sh -> tests/hardening/3.2.1_disable_send_packet_redirects.sh renamed: tests/hardening/3.1.1_disable_ip_forwarding.sh -> tests/hardening/3.2.2_disable_ip_forwarding.sh renamed: tests/hardening/3.2.3_disable_secure_icmp_redirect.sh -> tests/hardening/3.3.1_disable_source_routed_packets.sh renamed: tests/hardening/3.2.4_log_martian_packets.sh -> tests/hardening/3.3.2_disable_icmp_redirect.sh renamed: tests/hardening/3.2.5_ignore_broadcast_requests.sh -> tests/hardening/3.3.3_disable_secure_icmp_redirect.sh renamed: tests/hardening/3.2.6_enable_bad_error_message_protection.sh -> tests/hardening/3.3.4_log_martian_packets.sh renamed: tests/hardening/3.2.7_enable_source_route_validation.sh -> tests/hardening/3.3.5_ignore_broadcast_requests.sh renamed: tests/hardening/3.2.8_enable_tcp_syn_cookies.sh -> tests/hardening/3.3.6_enable_bad_error_message_protection.sh renamed: tests/hardening/3.2.9_disable_ipv6_router_advertisement.sh -> tests/hardening/3.3.7_enable_source_route_validation.sh renamed: tests/hardening/3.3.1_install_tcp_wrapper.sh -> tests/hardening/3.3.8_enable_tcp_syn_cookies.sh renamed: tests/hardening/3.3.2_hosts_allow.sh -> tests/hardening/3.3.9_disable_ipv6_router_advertisement.sh renamed: tests/hardening/3.3.3_hosts_deny.sh -> tests/hardening/3.5.1.1_enable_firewall.sh renamed: tests/hardening/3.3.4_hosts_allow_permissions.sh -> tests/hardening/3.5.4.1.1_net_fw_default_policy_drop.sh renamed: tests/hardening/3.3.5_hosts_deny_permissions.sh -> tests/hardening/99.3.3.1_install_tcp_wrapper.sh renamed: tests/hardening/3.5.1.1_net_fw_default_policy_drop.sh -> tests/hardening/99.3.3.2_hosts_allow.sh renamed: tests/hardening/3.5_enable_firewall.sh -> tests/hardening/99.3.3.3_hosts_deny.sh renamed: tests/hardening/3.6_disable_wireless.sh -> tests/hardening/99.3.3.4_hosts_allow_permissions.sh renamed: tests/hardening/3.7_disable_ipv6.sh -> tests/hardening/99.3.3.5_hosts_deny_permissions.sh renamed: bin/hardening/2.2.1.2_configure_ntp.sh -> bin/hardening/2.2.1.4_configure_ntp.sh renamed: tests/hardening/2.2.1.2_configure_ntp.sh -> tests/hardening/2.2.1.4_configure_ntp.sh --- .../{2.2.1.2_configure_ntp.sh => 2.2.1.4_configure_ntp.sh} | 0 bin/hardening/{3.7_disable_ipv6.sh => 3.1.1_disable_ipv6.sh} | 2 +- .../{3.6_disable_wireless.sh => 3.1.2_disable_wireless.sh} | 2 +- ...cket_redirects.sh => 3.2.1_disable_send_packet_redirects.sh} | 2 +- ..._disable_ip_forwarding.sh => 3.2.2_disable_ip_forwarding.sh} | 2 +- ...routed_packets.sh => 3.3.1_disable_source_routed_packets.sh} | 2 +- ..._disable_icmp_redirect.sh => 3.3.2_disable_icmp_redirect.sh} | 2 +- ...e_icmp_redirect.sh => 3.3.3_disable_secure_icmp_redirect.sh} | 2 +- ....2.4_log_martian_packets.sh => 3.3.4_log_martian_packets.sh} | 2 +- ...broadcast_requests.sh => 3.3.5_ignore_broadcast_requests.sh} | 2 +- ...otection.sh => 3.3.6_enable_bad_error_message_protection.sh} | 2 +- ...te_validation.sh => 3.3.7_enable_source_route_validation.sh} | 2 +- ...nable_tcp_syn_cookies.sh => 3.3.8_enable_tcp_syn_cookies.sh} | 2 +- ...ertisement.sh => 3.3.9_disable_ipv6_router_advertisement.sh} | 2 +- .../{3.5_enable_firewall.sh => 3.5.1.1_enable_firewall.sh} | 2 +- ...t_policy_drop.sh => 3.5.4.1.1_net_fw_default_policy_drop.sh} | 2 +- ...disable_telnet_server.sh => 99.2.2_disable_telnet_server.sh} | 0 ...1_install_tcp_wrapper.sh => 99.3.3.1_install_tcp_wrapper.sh} | 2 +- bin/hardening/{3.3.2_hosts_allow.sh => 99.3.3.2_hosts_allow.sh} | 2 +- bin/hardening/{3.3.3_hosts_deny.sh => 99.3.3.3_hosts_deny.sh} | 2 +- ...allow_permissions.sh => 99.3.3.4_hosts_allow_permissions.sh} | 2 +- ...s_deny_permissions.sh => 99.3.3.5_hosts_deny_permissions.sh} | 2 +- .../{2.2.1.2_configure_ntp.sh => 2.2.1.4_configure_ntp.sh} | 0 .../{2.2.18_disable_telnet_server.sh => 3.1.1_disable_ipv6.sh} | 0 ...sable_send_packet_redirects.sh => 3.1.2_disable_wireless.sh} | 0 ...routed_packets.sh => 3.2.1_disable_send_packet_redirects.sh} | 0 ..._disable_ip_forwarding.sh => 3.2.2_disable_ip_forwarding.sh} | 0 ..._icmp_redirect.sh => 3.3.1_disable_source_routed_packets.sh} | 0 ...e_secure_icmp_redirect.sh => 3.3.2_disable_icmp_redirect.sh} | 0 ...martian_packets.sh => 3.3.3_disable_secure_icmp_redirect.sh} | 0 ...gnore_broadcast_requests.sh => 3.3.4_log_martian_packets.sh} | 0 ...message_protection.sh => 3.3.5_ignore_broadcast_requests.sh} | 0 ...lidation.sh => 3.3.6_enable_bad_error_message_protection.sh} | 0 ...p_syn_cookies.sh => 3.3.7_enable_source_route_validation.sh} | 0 ..._router_advertisement.sh => 3.3.8_enable_tcp_syn_cookies.sh} | 0 ...cp_wrapper.sh => 3.3.9_disable_ipv6_router_advertisement.sh} | 0 .../{3.3.2_hosts_allow.sh => 3.5.1.1_enable_firewall.sh} | 0 ....3_hosts_deny.sh => 3.5.4.1.1_net_fw_default_policy_drop.sh} | 0 ...sts_allow_permissions.sh => 99.2.2_disable_telnet_server.sh} | 0 ...osts_deny_permissions.sh => 99.3.3.1_install_tcp_wrapper.sh} | 0 ....1_net_fw_default_policy_drop.sh => 99.3.3.2_hosts_allow.sh} | 0 .../{3.5_enable_firewall.sh => 99.3.3.3_hosts_deny.sh} | 0 ..._disable_wireless.sh => 99.3.3.4_hosts_allow_permissions.sh} | 0 .../{3.7_disable_ipv6.sh => 99.3.3.5_hosts_deny_permissions.sh} | 0 44 files changed, 20 insertions(+), 20 deletions(-) rename bin/hardening/{2.2.1.2_configure_ntp.sh => 2.2.1.4_configure_ntp.sh} (100%) rename bin/hardening/{3.7_disable_ipv6.sh => 3.1.1_disable_ipv6.sh} (98%) rename bin/hardening/{3.6_disable_wireless.sh => 3.1.2_disable_wireless.sh} (96%) rename bin/hardening/{3.1.2_disable_send_packet_redirects.sh => 3.2.1_disable_send_packet_redirects.sh} (97%) rename bin/hardening/{3.1.1_disable_ip_forwarding.sh => 3.2.2_disable_ip_forwarding.sh} (98%) rename bin/hardening/{3.2.1_disable_source_routed_packets.sh => 3.3.1_disable_source_routed_packets.sh} (98%) rename bin/hardening/{3.2.2_disable_icmp_redirect.sh => 3.3.2_disable_icmp_redirect.sh} (98%) rename bin/hardening/{3.2.3_disable_secure_icmp_redirect.sh => 3.3.3_disable_secure_icmp_redirect.sh} (97%) rename bin/hardening/{3.2.4_log_martian_packets.sh => 3.3.4_log_martian_packets.sh} (98%) rename bin/hardening/{3.2.5_ignore_broadcast_requests.sh => 3.3.5_ignore_broadcast_requests.sh} (97%) rename bin/hardening/{3.2.6_enable_bad_error_message_protection.sh => 3.3.6_enable_bad_error_message_protection.sh} (97%) rename bin/hardening/{3.2.7_enable_source_route_validation.sh => 3.3.7_enable_source_route_validation.sh} (97%) rename bin/hardening/{3.2.8_enable_tcp_syn_cookies.sh => 3.3.8_enable_tcp_syn_cookies.sh} (98%) rename bin/hardening/{3.2.9_disable_ipv6_router_advertisement.sh => 3.3.9_disable_ipv6_router_advertisement.sh} (97%) rename bin/hardening/{3.5_enable_firewall.sh => 3.5.1.1_enable_firewall.sh} (97%) rename bin/hardening/{3.5.1.1_net_fw_default_policy_drop.sh => 3.5.4.1.1_net_fw_default_policy_drop.sh} (97%) rename bin/hardening/{2.2.18_disable_telnet_server.sh => 99.2.2_disable_telnet_server.sh} (100%) rename bin/hardening/{3.3.1_install_tcp_wrapper.sh => 99.3.3.1_install_tcp_wrapper.sh} (96%) rename bin/hardening/{3.3.2_hosts_allow.sh => 99.3.3.2_hosts_allow.sh} (96%) rename bin/hardening/{3.3.3_hosts_deny.sh => 99.3.3.3_hosts_deny.sh} (97%) rename bin/hardening/{3.3.4_hosts_allow_permissions.sh => 99.3.3.4_hosts_allow_permissions.sh} (96%) rename bin/hardening/{3.3.5_hosts_deny_permissions.sh => 99.3.3.5_hosts_deny_permissions.sh} (97%) rename tests/hardening/{2.2.1.2_configure_ntp.sh => 2.2.1.4_configure_ntp.sh} (100%) rename tests/hardening/{2.2.18_disable_telnet_server.sh => 3.1.1_disable_ipv6.sh} (100%) rename tests/hardening/{3.1.2_disable_send_packet_redirects.sh => 3.1.2_disable_wireless.sh} (100%) rename tests/hardening/{3.2.1_disable_source_routed_packets.sh => 3.2.1_disable_send_packet_redirects.sh} (100%) rename tests/hardening/{3.1.1_disable_ip_forwarding.sh => 3.2.2_disable_ip_forwarding.sh} (100%) rename tests/hardening/{3.2.2_disable_icmp_redirect.sh => 3.3.1_disable_source_routed_packets.sh} (100%) rename tests/hardening/{3.2.3_disable_secure_icmp_redirect.sh => 3.3.2_disable_icmp_redirect.sh} (100%) rename tests/hardening/{3.2.4_log_martian_packets.sh => 3.3.3_disable_secure_icmp_redirect.sh} (100%) rename tests/hardening/{3.2.5_ignore_broadcast_requests.sh => 3.3.4_log_martian_packets.sh} (100%) rename tests/hardening/{3.2.6_enable_bad_error_message_protection.sh => 3.3.5_ignore_broadcast_requests.sh} (100%) rename tests/hardening/{3.2.7_enable_source_route_validation.sh => 3.3.6_enable_bad_error_message_protection.sh} (100%) rename tests/hardening/{3.2.8_enable_tcp_syn_cookies.sh => 3.3.7_enable_source_route_validation.sh} (100%) rename tests/hardening/{3.2.9_disable_ipv6_router_advertisement.sh => 3.3.8_enable_tcp_syn_cookies.sh} (100%) rename tests/hardening/{3.3.1_install_tcp_wrapper.sh => 3.3.9_disable_ipv6_router_advertisement.sh} (100%) rename tests/hardening/{3.3.2_hosts_allow.sh => 3.5.1.1_enable_firewall.sh} (100%) rename tests/hardening/{3.3.3_hosts_deny.sh => 3.5.4.1.1_net_fw_default_policy_drop.sh} (100%) rename tests/hardening/{3.3.4_hosts_allow_permissions.sh => 99.2.2_disable_telnet_server.sh} (100%) rename tests/hardening/{3.3.5_hosts_deny_permissions.sh => 99.3.3.1_install_tcp_wrapper.sh} (100%) rename tests/hardening/{3.5.1.1_net_fw_default_policy_drop.sh => 99.3.3.2_hosts_allow.sh} (100%) rename tests/hardening/{3.5_enable_firewall.sh => 99.3.3.3_hosts_deny.sh} (100%) rename tests/hardening/{3.6_disable_wireless.sh => 99.3.3.4_hosts_allow_permissions.sh} (100%) rename tests/hardening/{3.7_disable_ipv6.sh => 99.3.3.5_hosts_deny_permissions.sh} (100%) diff --git a/bin/hardening/2.2.1.2_configure_ntp.sh b/bin/hardening/2.2.1.4_configure_ntp.sh similarity index 100% rename from bin/hardening/2.2.1.2_configure_ntp.sh rename to bin/hardening/2.2.1.4_configure_ntp.sh diff --git a/bin/hardening/3.7_disable_ipv6.sh b/bin/hardening/3.1.1_disable_ipv6.sh similarity index 98% rename from bin/hardening/3.7_disable_ipv6.sh rename to bin/hardening/3.1.1_disable_ipv6.sh index f25b555..7c3b3b3 100755 --- a/bin/hardening/3.7_disable_ipv6.sh +++ b/bin/hardening/3.1.1_disable_ipv6.sh @@ -6,7 +6,7 @@ # # -# 3.7 Disable IPv6 (Not Scored) +# 3.1.1 Disable IPv6 (Not Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.6_disable_wireless.sh b/bin/hardening/3.1.2_disable_wireless.sh similarity index 96% rename from bin/hardening/3.6_disable_wireless.sh rename to bin/hardening/3.1.2_disable_wireless.sh index f11b039..3dfa777 100755 --- a/bin/hardening/3.6_disable_wireless.sh +++ b/bin/hardening/3.1.2_disable_wireless.sh @@ -6,7 +6,7 @@ # # -# 3.6 Ensure wireless interfaces are disabled (Not Scored) +# 3.1.2 Ensure wireless interfaces are disabled (Not Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.1.2_disable_send_packet_redirects.sh b/bin/hardening/3.2.1_disable_send_packet_redirects.sh similarity index 97% rename from bin/hardening/3.1.2_disable_send_packet_redirects.sh rename to bin/hardening/3.2.1_disable_send_packet_redirects.sh index 1807d7b..077a102 100755 --- a/bin/hardening/3.1.2_disable_send_packet_redirects.sh +++ b/bin/hardening/3.2.1_disable_send_packet_redirects.sh @@ -6,7 +6,7 @@ # # -# 3.1.2 Ensure packet redirect sending is disabled (Scored) +# 3.2.1 Ensure packet redirect sending is disabled (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.1.1_disable_ip_forwarding.sh b/bin/hardening/3.2.2_disable_ip_forwarding.sh similarity index 98% rename from bin/hardening/3.1.1_disable_ip_forwarding.sh rename to bin/hardening/3.2.2_disable_ip_forwarding.sh index deb5551..46a2fb3 100755 --- a/bin/hardening/3.1.1_disable_ip_forwarding.sh +++ b/bin/hardening/3.2.2_disable_ip_forwarding.sh @@ -6,7 +6,7 @@ # # -# 3.1.1 Ensure IP forwarding is disabled (Scored) +# 3.2.2 Ensure IP forwarding is disabled (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.2.1_disable_source_routed_packets.sh b/bin/hardening/3.3.1_disable_source_routed_packets.sh similarity index 98% rename from bin/hardening/3.2.1_disable_source_routed_packets.sh rename to bin/hardening/3.3.1_disable_source_routed_packets.sh index 5c82463..7d4b702 100755 --- a/bin/hardening/3.2.1_disable_source_routed_packets.sh +++ b/bin/hardening/3.3.1_disable_source_routed_packets.sh @@ -6,7 +6,7 @@ # # -# 3.2.1 Ensure source routed packets are not accepted (Scored) +# 3.3.1 Ensure source routed packets are not accepted (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.2.2_disable_icmp_redirect.sh b/bin/hardening/3.3.2_disable_icmp_redirect.sh similarity index 98% rename from bin/hardening/3.2.2_disable_icmp_redirect.sh rename to bin/hardening/3.3.2_disable_icmp_redirect.sh index e6dcc17..69a351d 100755 --- a/bin/hardening/3.2.2_disable_icmp_redirect.sh +++ b/bin/hardening/3.3.2_disable_icmp_redirect.sh @@ -6,7 +6,7 @@ # # -# 3.2.2 Ensure ICMP redirects are not accepted (Scored) +# 3.3.2 Ensure ICMP redirects are not accepted (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.2.3_disable_secure_icmp_redirect.sh b/bin/hardening/3.3.3_disable_secure_icmp_redirect.sh similarity index 97% rename from bin/hardening/3.2.3_disable_secure_icmp_redirect.sh rename to bin/hardening/3.3.3_disable_secure_icmp_redirect.sh index f733d42..037470a 100755 --- a/bin/hardening/3.2.3_disable_secure_icmp_redirect.sh +++ b/bin/hardening/3.3.3_disable_secure_icmp_redirect.sh @@ -6,7 +6,7 @@ # # -# 3.2.3 Ensure secure ICMP redirects are not accepted (Scored) +# 3.3.3 Ensure secure ICMP redirects are not accepted (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.2.4_log_martian_packets.sh b/bin/hardening/3.3.4_log_martian_packets.sh similarity index 98% rename from bin/hardening/3.2.4_log_martian_packets.sh rename to bin/hardening/3.3.4_log_martian_packets.sh index 170966f..2e2a869 100755 --- a/bin/hardening/3.2.4_log_martian_packets.sh +++ b/bin/hardening/3.3.4_log_martian_packets.sh @@ -6,7 +6,7 @@ # # -# 3.2.4 Ensure suspicious packets are logged (Scored) +# 3.3.4 Ensure suspicious packets are logged (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.2.5_ignore_broadcast_requests.sh b/bin/hardening/3.3.5_ignore_broadcast_requests.sh similarity index 97% rename from bin/hardening/3.2.5_ignore_broadcast_requests.sh rename to bin/hardening/3.3.5_ignore_broadcast_requests.sh index 397ed2d..b2a2841 100755 --- a/bin/hardening/3.2.5_ignore_broadcast_requests.sh +++ b/bin/hardening/3.3.5_ignore_broadcast_requests.sh @@ -6,7 +6,7 @@ # # -# 3.2.5 Ensure broadcast ICMP requests are ignored (Scored) +# 3.3.5 Ensure broadcast ICMP requests are ignored (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.2.6_enable_bad_error_message_protection.sh b/bin/hardening/3.3.6_enable_bad_error_message_protection.sh similarity index 97% rename from bin/hardening/3.2.6_enable_bad_error_message_protection.sh rename to bin/hardening/3.3.6_enable_bad_error_message_protection.sh index 8f451a2..8ceb274 100755 --- a/bin/hardening/3.2.6_enable_bad_error_message_protection.sh +++ b/bin/hardening/3.3.6_enable_bad_error_message_protection.sh @@ -6,7 +6,7 @@ # # -# 3.2.6 Ensure bogus ICMP responses are ignored (Scored) +# 3.3.6 Ensure bogus ICMP responses are ignored (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.2.7_enable_source_route_validation.sh b/bin/hardening/3.3.7_enable_source_route_validation.sh similarity index 97% rename from bin/hardening/3.2.7_enable_source_route_validation.sh rename to bin/hardening/3.3.7_enable_source_route_validation.sh index b3d0635..a03cc11 100755 --- a/bin/hardening/3.2.7_enable_source_route_validation.sh +++ b/bin/hardening/3.3.7_enable_source_route_validation.sh @@ -6,7 +6,7 @@ # # -# 3.2.7 Ensure Reverse Path Filtering is enabled (Scored) +# 3.3.7 Ensure Reverse Path Filtering is enabled (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.2.8_enable_tcp_syn_cookies.sh b/bin/hardening/3.3.8_enable_tcp_syn_cookies.sh similarity index 98% rename from bin/hardening/3.2.8_enable_tcp_syn_cookies.sh rename to bin/hardening/3.3.8_enable_tcp_syn_cookies.sh index 37db31c..9d54caf 100755 --- a/bin/hardening/3.2.8_enable_tcp_syn_cookies.sh +++ b/bin/hardening/3.3.8_enable_tcp_syn_cookies.sh @@ -6,7 +6,7 @@ # # -# 3.2.8 Ensure TCP SYN Cookies is enabled (Scored) +# 3.3.8 Ensure TCP SYN Cookies is enabled (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.2.9_disable_ipv6_router_advertisement.sh b/bin/hardening/3.3.9_disable_ipv6_router_advertisement.sh similarity index 97% rename from bin/hardening/3.2.9_disable_ipv6_router_advertisement.sh rename to bin/hardening/3.3.9_disable_ipv6_router_advertisement.sh index bcd99ab..887c56b 100755 --- a/bin/hardening/3.2.9_disable_ipv6_router_advertisement.sh +++ b/bin/hardening/3.3.9_disable_ipv6_router_advertisement.sh @@ -6,7 +6,7 @@ # # -# 3.2.9 Ensure IPv6 router advertisements are not accepted (Scored) +# 3.3.9 Ensure IPv6 router advertisements are not accepted (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.5_enable_firewall.sh b/bin/hardening/3.5.1.1_enable_firewall.sh similarity index 97% rename from bin/hardening/3.5_enable_firewall.sh rename to bin/hardening/3.5.1.1_enable_firewall.sh index 9e7ec1c..fcbf066 100755 --- a/bin/hardening/3.5_enable_firewall.sh +++ b/bin/hardening/3.5.1.1_enable_firewall.sh @@ -6,7 +6,7 @@ # # -# 3.5 Ensure Firewall is active (Scored) +# 3.5.1.1 Ensure Firewall is active (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.5.1.1_net_fw_default_policy_drop.sh b/bin/hardening/3.5.4.1.1_net_fw_default_policy_drop.sh similarity index 97% rename from bin/hardening/3.5.1.1_net_fw_default_policy_drop.sh rename to bin/hardening/3.5.4.1.1_net_fw_default_policy_drop.sh index 692ea10..1373682 100755 --- a/bin/hardening/3.5.1.1_net_fw_default_policy_drop.sh +++ b/bin/hardening/3.5.4.1.1_net_fw_default_policy_drop.sh @@ -6,7 +6,7 @@ # # -# 3.5.1.1 Ensure default deny firewall policy (Scored) +# 3.5.4.1.1 Ensure default deny firewall policy (Scored) # set -e # One error, it's over diff --git a/bin/hardening/2.2.18_disable_telnet_server.sh b/bin/hardening/99.2.2_disable_telnet_server.sh similarity index 100% rename from bin/hardening/2.2.18_disable_telnet_server.sh rename to bin/hardening/99.2.2_disable_telnet_server.sh diff --git a/bin/hardening/3.3.1_install_tcp_wrapper.sh b/bin/hardening/99.3.3.1_install_tcp_wrapper.sh similarity index 96% rename from bin/hardening/3.3.1_install_tcp_wrapper.sh rename to bin/hardening/99.3.3.1_install_tcp_wrapper.sh index b923327..4d50569 100755 --- a/bin/hardening/3.3.1_install_tcp_wrapper.sh +++ b/bin/hardening/99.3.3.1_install_tcp_wrapper.sh @@ -6,7 +6,7 @@ # # -# 3.3.1 Ensure TCP Wrappers is installed (Scored) +# 99.3.3.1 Ensure TCP Wrappers is installed (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.3.2_hosts_allow.sh b/bin/hardening/99.3.3.2_hosts_allow.sh similarity index 96% rename from bin/hardening/3.3.2_hosts_allow.sh rename to bin/hardening/99.3.3.2_hosts_allow.sh index 60291d9..9a56c8f 100755 --- a/bin/hardening/3.3.2_hosts_allow.sh +++ b/bin/hardening/99.3.3.2_hosts_allow.sh @@ -6,7 +6,7 @@ # # -# 3.3.2 Ensure /etc/hosts.allow is configured (Not Scored) +# 99.3.3.2 Ensure /etc/hosts.allow is configured (Not Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.3.3_hosts_deny.sh b/bin/hardening/99.3.3.3_hosts_deny.sh similarity index 97% rename from bin/hardening/3.3.3_hosts_deny.sh rename to bin/hardening/99.3.3.3_hosts_deny.sh index 4e7cca9..157661b 100755 --- a/bin/hardening/3.3.3_hosts_deny.sh +++ b/bin/hardening/99.3.3.3_hosts_deny.sh @@ -6,7 +6,7 @@ # # -# 3.3.3 Ensure /etc/hosts.deny is configured (Not Scored) +# 99.3.3.3 Ensure /etc/hosts.deny is configured (Not Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.3.4_hosts_allow_permissions.sh b/bin/hardening/99.3.3.4_hosts_allow_permissions.sh similarity index 96% rename from bin/hardening/3.3.4_hosts_allow_permissions.sh rename to bin/hardening/99.3.3.4_hosts_allow_permissions.sh index 47fb315..4600150 100755 --- a/bin/hardening/3.3.4_hosts_allow_permissions.sh +++ b/bin/hardening/99.3.3.4_hosts_allow_permissions.sh @@ -6,7 +6,7 @@ # # -# 3.3.4 Ensure permissions on /etc/hosts.allow are configured (Scored) +# 99.3.3.4 Ensure permissions on /etc/hosts.allow are configured (Scored) # set -e # One error, it's over diff --git a/bin/hardening/3.3.5_hosts_deny_permissions.sh b/bin/hardening/99.3.3.5_hosts_deny_permissions.sh similarity index 97% rename from bin/hardening/3.3.5_hosts_deny_permissions.sh rename to bin/hardening/99.3.3.5_hosts_deny_permissions.sh index 51b4cda..5c2be1e 100755 --- a/bin/hardening/3.3.5_hosts_deny_permissions.sh +++ b/bin/hardening/99.3.3.5_hosts_deny_permissions.sh @@ -6,7 +6,7 @@ # # -# 3.3.5 Verify Permissions on /etc/hosts.deny (Scored) +# 99.3.3.5 Verify Permissions on /etc/hosts.deny (Scored) # set -e # One error, it's over diff --git a/tests/hardening/2.2.1.2_configure_ntp.sh b/tests/hardening/2.2.1.4_configure_ntp.sh similarity index 100% rename from tests/hardening/2.2.1.2_configure_ntp.sh rename to tests/hardening/2.2.1.4_configure_ntp.sh diff --git a/tests/hardening/2.2.18_disable_telnet_server.sh b/tests/hardening/3.1.1_disable_ipv6.sh similarity index 100% rename from tests/hardening/2.2.18_disable_telnet_server.sh rename to tests/hardening/3.1.1_disable_ipv6.sh diff --git a/tests/hardening/3.1.2_disable_send_packet_redirects.sh b/tests/hardening/3.1.2_disable_wireless.sh similarity index 100% rename from tests/hardening/3.1.2_disable_send_packet_redirects.sh rename to tests/hardening/3.1.2_disable_wireless.sh diff --git a/tests/hardening/3.2.1_disable_source_routed_packets.sh b/tests/hardening/3.2.1_disable_send_packet_redirects.sh similarity index 100% rename from tests/hardening/3.2.1_disable_source_routed_packets.sh rename to tests/hardening/3.2.1_disable_send_packet_redirects.sh diff --git a/tests/hardening/3.1.1_disable_ip_forwarding.sh b/tests/hardening/3.2.2_disable_ip_forwarding.sh similarity index 100% rename from tests/hardening/3.1.1_disable_ip_forwarding.sh rename to tests/hardening/3.2.2_disable_ip_forwarding.sh diff --git a/tests/hardening/3.2.2_disable_icmp_redirect.sh b/tests/hardening/3.3.1_disable_source_routed_packets.sh similarity index 100% rename from tests/hardening/3.2.2_disable_icmp_redirect.sh rename to tests/hardening/3.3.1_disable_source_routed_packets.sh diff --git a/tests/hardening/3.2.3_disable_secure_icmp_redirect.sh b/tests/hardening/3.3.2_disable_icmp_redirect.sh similarity index 100% rename from tests/hardening/3.2.3_disable_secure_icmp_redirect.sh rename to tests/hardening/3.3.2_disable_icmp_redirect.sh diff --git a/tests/hardening/3.2.4_log_martian_packets.sh b/tests/hardening/3.3.3_disable_secure_icmp_redirect.sh similarity index 100% rename from tests/hardening/3.2.4_log_martian_packets.sh rename to tests/hardening/3.3.3_disable_secure_icmp_redirect.sh diff --git a/tests/hardening/3.2.5_ignore_broadcast_requests.sh b/tests/hardening/3.3.4_log_martian_packets.sh similarity index 100% rename from tests/hardening/3.2.5_ignore_broadcast_requests.sh rename to tests/hardening/3.3.4_log_martian_packets.sh diff --git a/tests/hardening/3.2.6_enable_bad_error_message_protection.sh b/tests/hardening/3.3.5_ignore_broadcast_requests.sh similarity index 100% rename from tests/hardening/3.2.6_enable_bad_error_message_protection.sh rename to tests/hardening/3.3.5_ignore_broadcast_requests.sh diff --git a/tests/hardening/3.2.7_enable_source_route_validation.sh b/tests/hardening/3.3.6_enable_bad_error_message_protection.sh similarity index 100% rename from tests/hardening/3.2.7_enable_source_route_validation.sh rename to tests/hardening/3.3.6_enable_bad_error_message_protection.sh diff --git a/tests/hardening/3.2.8_enable_tcp_syn_cookies.sh b/tests/hardening/3.3.7_enable_source_route_validation.sh similarity index 100% rename from tests/hardening/3.2.8_enable_tcp_syn_cookies.sh rename to tests/hardening/3.3.7_enable_source_route_validation.sh diff --git a/tests/hardening/3.2.9_disable_ipv6_router_advertisement.sh b/tests/hardening/3.3.8_enable_tcp_syn_cookies.sh similarity index 100% rename from tests/hardening/3.2.9_disable_ipv6_router_advertisement.sh rename to tests/hardening/3.3.8_enable_tcp_syn_cookies.sh diff --git a/tests/hardening/3.3.1_install_tcp_wrapper.sh b/tests/hardening/3.3.9_disable_ipv6_router_advertisement.sh similarity index 100% rename from tests/hardening/3.3.1_install_tcp_wrapper.sh rename to tests/hardening/3.3.9_disable_ipv6_router_advertisement.sh diff --git a/tests/hardening/3.3.2_hosts_allow.sh b/tests/hardening/3.5.1.1_enable_firewall.sh similarity index 100% rename from tests/hardening/3.3.2_hosts_allow.sh rename to tests/hardening/3.5.1.1_enable_firewall.sh diff --git a/tests/hardening/3.3.3_hosts_deny.sh b/tests/hardening/3.5.4.1.1_net_fw_default_policy_drop.sh similarity index 100% rename from tests/hardening/3.3.3_hosts_deny.sh rename to tests/hardening/3.5.4.1.1_net_fw_default_policy_drop.sh diff --git a/tests/hardening/3.3.4_hosts_allow_permissions.sh b/tests/hardening/99.2.2_disable_telnet_server.sh similarity index 100% rename from tests/hardening/3.3.4_hosts_allow_permissions.sh rename to tests/hardening/99.2.2_disable_telnet_server.sh diff --git a/tests/hardening/3.3.5_hosts_deny_permissions.sh b/tests/hardening/99.3.3.1_install_tcp_wrapper.sh similarity index 100% rename from tests/hardening/3.3.5_hosts_deny_permissions.sh rename to tests/hardening/99.3.3.1_install_tcp_wrapper.sh diff --git a/tests/hardening/3.5.1.1_net_fw_default_policy_drop.sh b/tests/hardening/99.3.3.2_hosts_allow.sh similarity index 100% rename from tests/hardening/3.5.1.1_net_fw_default_policy_drop.sh rename to tests/hardening/99.3.3.2_hosts_allow.sh diff --git a/tests/hardening/3.5_enable_firewall.sh b/tests/hardening/99.3.3.3_hosts_deny.sh similarity index 100% rename from tests/hardening/3.5_enable_firewall.sh rename to tests/hardening/99.3.3.3_hosts_deny.sh diff --git a/tests/hardening/3.6_disable_wireless.sh b/tests/hardening/99.3.3.4_hosts_allow_permissions.sh similarity index 100% rename from tests/hardening/3.6_disable_wireless.sh rename to tests/hardening/99.3.3.4_hosts_allow_permissions.sh diff --git a/tests/hardening/3.7_disable_ipv6.sh b/tests/hardening/99.3.3.5_hosts_deny_permissions.sh similarity index 100% rename from tests/hardening/3.7_disable_ipv6.sh rename to tests/hardening/99.3.3.5_hosts_deny_permissions.sh