mirror of
https://github.com/ovh/debian-cis.git
synced 2024-11-26 07:21:22 +01:00
Add test stub for all audit checks, to tests root/sudo consistency
This commit is contained in:
parent
b8bd75d2ad
commit
84047928b1
10
tests/hardening/1.1_install_updates.sh
Normal file
10
tests/hardening/1.1_install_updates.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/10.1.1_set_password_exp_days.sh
Normal file
10
tests/hardening/10.1.1_set_password_exp_days.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/10.1.2_set_password_min_days_change.sh
Normal file
10
tests/hardening/10.1.2_set_password_min_days_change.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/10.1.3_set_password_exp_warning_days.sh
Normal file
10
tests/hardening/10.1.3_set_password_exp_warning_days.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/10.2_disable_system_accounts.sh
Normal file
10
tests/hardening/10.2_disable_system_accounts.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/10.3_default_root_group.sh
Normal file
10
tests/hardening/10.3_default_root_group.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/10.4_default_umask.sh
Normal file
10
tests/hardening/10.4_default_umask.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/10.5_lock_inactive_user_account.sh
Normal file
10
tests/hardening/10.5_lock_inactive_user_account.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/11.1_warning_banners.sh
Normal file
10
tests/hardening/11.1_warning_banners.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/11.2_remove_os_info_warning_banners.sh
Normal file
10
tests/hardening/11.2_remove_os_info_warning_banners.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/11.3_graphical_warning_banners.sh
Normal file
10
tests/hardening/11.3_graphical_warning_banners.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/12.1_etc_passwd_permissions.sh
Normal file
10
tests/hardening/12.1_etc_passwd_permissions.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/12.2_etc_shadow_permissions.sh
Normal file
10
tests/hardening/12.2_etc_shadow_permissions.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/12.3_etc_group_permissions.sh
Normal file
10
tests/hardening/12.3_etc_group_permissions.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/12.4_etc_passwd_ownership.sh
Normal file
10
tests/hardening/12.4_etc_passwd_ownership.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/12.5_etc_shadow_ownership.sh
Normal file
10
tests/hardening/12.5_etc_shadow_ownership.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/12.6_etc_group_ownership.sh
Normal file
10
tests/hardening/12.6_etc_group_ownership.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.11_find_passwd_group_inconsistencies.sh
Normal file
10
tests/hardening/13.11_find_passwd_group_inconsistencies.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.12_users_valid_homedir.sh
Normal file
10
tests/hardening/13.12_users_valid_homedir.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.13_check_user_homedir_ownership.sh
Normal file
10
tests/hardening/13.13_check_user_homedir_ownership.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.15_check_duplicate_gid.sh
Normal file
10
tests/hardening/13.15_check_duplicate_gid.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.16_check_duplicate_username.sh
Normal file
10
tests/hardening/13.16_check_duplicate_username.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.17_check_duplicate_groupname.sh
Normal file
10
tests/hardening/13.17_check_duplicate_groupname.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.18_find_user_netrc_files.sh
Normal file
10
tests/hardening/13.18_find_user_netrc_files.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.19_find_user_forward_files.sh
Normal file
10
tests/hardening/13.19_find_user_forward_files.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.1_remove_empty_password_field.sh
Normal file
10
tests/hardening/13.1_remove_empty_password_field.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.20_shadow_group_empty.sh
Normal file
10
tests/hardening/13.20_shadow_group_empty.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.2_remove_legacy_passwd_entries.sh
Normal file
10
tests/hardening/13.2_remove_legacy_passwd_entries.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.3_remove_legacy_shadow_entries.sh
Normal file
10
tests/hardening/13.3_remove_legacy_shadow_entries.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.4_remove_legacy_group_entries.sh
Normal file
10
tests/hardening/13.4_remove_legacy_group_entries.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.6_sanitize_root_path.sh
Normal file
10
tests/hardening/13.6_sanitize_root_path.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.7_check_user_dir_perm.sh
Normal file
10
tests/hardening/13.7_check_user_dir_perm.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.8_check_user_dot_file_perm.sh
Normal file
10
tests/hardening/13.8_check_user_dot_file_perm.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/13.9_set_perm_on_user_netrc.sh
Normal file
10
tests/hardening/13.9_set_perm_on_user_netrc.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.10_home_nodev.sh
Normal file
10
tests/hardening/2.10_home_nodev.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.11_removable_device_nodev.sh
Normal file
10
tests/hardening/2.11_removable_device_nodev.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.12_removable_device_noexec.sh
Normal file
10
tests/hardening/2.12_removable_device_noexec.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.13_removable_device_nosuid.sh
Normal file
10
tests/hardening/2.13_removable_device_nosuid.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.14_run_shm_nodev.sh
Normal file
10
tests/hardening/2.14_run_shm_nodev.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.15_run_shm_nosuid.sh
Normal file
10
tests/hardening/2.15_run_shm_nosuid.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.16_run_shm_noexec.sh
Normal file
10
tests/hardening/2.16_run_shm_noexec.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.18_disable_cramfs.sh
Normal file
10
tests/hardening/2.18_disable_cramfs.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.19_disable_freevxfs.sh
Normal file
10
tests/hardening/2.19_disable_freevxfs.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.1_tmp_partition.sh
Normal file
10
tests/hardening/2.1_tmp_partition.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.20_disable_jffs2.sh
Normal file
10
tests/hardening/2.20_disable_jffs2.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.21_disable_hfs.sh
Normal file
10
tests/hardening/2.21_disable_hfs.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.22_disable_hfsplus.sh
Normal file
10
tests/hardening/2.22_disable_hfsplus.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.23_disable_squashfs.sh
Normal file
10
tests/hardening/2.23_disable_squashfs.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.24_disable_udf.sh
Normal file
10
tests/hardening/2.24_disable_udf.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.25_disable_automounting.sh
Normal file
10
tests/hardening/2.25_disable_automounting.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.2_tmp_nodev.sh
Normal file
10
tests/hardening/2.2_tmp_nodev.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.3_tmp_nosuid.sh
Normal file
10
tests/hardening/2.3_tmp_nosuid.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.4_tmp_noexec.sh
Normal file
10
tests/hardening/2.4_tmp_noexec.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.5_var_partition.sh
Normal file
10
tests/hardening/2.5_var_partition.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.6.1_var_tmp_partition.sh
Normal file
10
tests/hardening/2.6.1_var_tmp_partition.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.6.2_var_tmp_nodev.sh
Normal file
10
tests/hardening/2.6.2_var_tmp_nodev.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.6.3_var_tmp_nosuid.sh
Normal file
10
tests/hardening/2.6.3_var_tmp_nosuid.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.6.4_var_tmp_noexec.sh
Normal file
10
tests/hardening/2.6.4_var_tmp_noexec.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.7_var_log_partition.sh
Normal file
10
tests/hardening/2.7_var_log_partition.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.8_var_log_audit_partition.sh
Normal file
10
tests/hardening/2.8_var_log_audit_partition.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/2.9_home_partition.sh
Normal file
10
tests/hardening/2.9_home_partition.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/3.1_bootloader_ownership.sh
Normal file
10
tests/hardening/3.1_bootloader_ownership.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/3.2_bootloader_permissions.sh
Normal file
10
tests/hardening/3.2_bootloader_permissions.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/3.3_bootloader_password.sh
Normal file
10
tests/hardening/3.3_bootloader_password.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/3.4_root_password.sh
Normal file
10
tests/hardening/3.4_root_password.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/4.1_restrict_core_dumps.sh
Normal file
10
tests/hardening/4.1_restrict_core_dumps.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/4.2_enable_nx_support.sh
Normal file
10
tests/hardening/4.2_enable_nx_support.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/4.3_enable_randomized_vm_placement.sh
Normal file
10
tests/hardening/4.3_enable_randomized_vm_placement.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/4.4_disable_prelink.sh
Normal file
10
tests/hardening/4.4_disable_prelink.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/4.5_enable_apparmor.sh
Normal file
10
tests/hardening/4.5_enable_apparmor.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.1.1_disable_nis.sh
Normal file
10
tests/hardening/5.1.1_disable_nis.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.1.2_disable_rsh.sh
Normal file
10
tests/hardening/5.1.2_disable_rsh.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.1.3_disable_rsh_client.sh
Normal file
10
tests/hardening/5.1.3_disable_rsh_client.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.1.4_disable_talk.sh
Normal file
10
tests/hardening/5.1.4_disable_talk.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.1.5_disable_talk_client.sh
Normal file
10
tests/hardening/5.1.5_disable_talk_client.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.1.6_disable_telnet_server.sh
Normal file
10
tests/hardening/5.1.6_disable_telnet_server.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.1.7_disable_tftp_server.sh
Normal file
10
tests/hardening/5.1.7_disable_tftp_server.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.1.8_disable_inetd.sh
Normal file
10
tests/hardening/5.1.8_disable_inetd.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.2_disable_chargen.sh
Normal file
10
tests/hardening/5.2_disable_chargen.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.3_disable_daytime.sh
Normal file
10
tests/hardening/5.3_disable_daytime.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.4_disable_echo.sh
Normal file
10
tests/hardening/5.4_disable_echo.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.5_disable_discard.sh
Normal file
10
tests/hardening/5.5_disable_discard.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/5.6_disable_time.sh
Normal file
10
tests/hardening/5.6_disable_time.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.10_disable_http_server.sh
Normal file
10
tests/hardening/6.10_disable_http_server.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.11_disable_imap_pop.sh
Normal file
10
tests/hardening/6.11_disable_imap_pop.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.12_disable_samba.sh
Normal file
10
tests/hardening/6.12_disable_samba.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.13_disable_http_proxy.sh
Normal file
10
tests/hardening/6.13_disable_http_proxy.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.14_disable_snmp_server.sh
Normal file
10
tests/hardening/6.14_disable_snmp_server.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.15_mta_localhost.sh
Normal file
10
tests/hardening/6.15_mta_localhost.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.16_disable_rsync.sh
Normal file
10
tests/hardening/6.16_disable_rsync.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.1_disable_xwindow_system.sh
Normal file
10
tests/hardening/6.1_disable_xwindow_system.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.2_disable_avahi_server.sh
Normal file
10
tests/hardening/6.2_disable_avahi_server.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.3_disable_print_server.sh
Normal file
10
tests/hardening/6.3_disable_print_server.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.4_disable_dhcp.sh
Normal file
10
tests/hardening/6.4_disable_dhcp.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.5_configure_ntp.sh
Normal file
10
tests/hardening/6.5_configure_ntp.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.6_disable_ldap.sh
Normal file
10
tests/hardening/6.6_disable_ldap.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.7_disable_nfs_rpc.sh
Normal file
10
tests/hardening/6.7_disable_nfs_rpc.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.8_disable_dns_server.sh
Normal file
10
tests/hardening/6.8_disable_dns_server.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/6.9_disable_ftp.sh
Normal file
10
tests/hardening/6.9_disable_ftp.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
10
tests/hardening/7.1.1_disable_ip_forwarding.sh
Normal file
10
tests/hardening/7.1.1_disable_ip_forwarding.sh
Normal file
@ -0,0 +1,10 @@
|
|||||||
|
# run-shellcheck
|
||||||
|
test_audit() {
|
||||||
|
describe Running on blank host
|
||||||
|
register_test retvalshouldbe 0
|
||||||
|
dismiss_count_for_test
|
||||||
|
# shellcheck disable=2154
|
||||||
|
run blank /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
|
||||||
|
|
||||||
|
# TODO fill comprehensive tests
|
||||||
|
}
|
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue
Block a user