IMP(99.5.4): add conf to check only listed users

2025-06-22 02:33:42 +02:00 · 2019-03-05 10:49:45 +01:00
parent b4b7524156
commit be1ad3e581
2 changed files with 21 additions and 4 deletions
--- a/tests/hardening/99.5.4_ssh_keys_from.sh
+++ b/tests/hardening/99.5.4_ssh_keys_from.sh
@ -45,8 +45,17 @@ test_audit()  {
    register_test retvalshouldbe 0
    run allwdfromip /opt/debian-cis/bin/hardening/"${script}".sh --audit-all

+    useradd -s /bin/bash -m jeantest2
+    # shellcheck disable=2016
+    echo 'USERS_TO_CHECK="jeantest2 secaudit"' >>  /opt/debian-cis/etc/conf.d/"${script}".cfg
+    describe Check only specified user
+    register_test retvalshouldbe 0
+    run checkuser /opt/debian-cis/bin/hardening/"${script}".sh --audit-all
+
+
    # Cleanup
    userdel jeantestuser
+    userdel jeantest2
    rm -f /tmp/key1 /tmp/key1.pub
 }