elie/debian-cis
1
0
Fork 0
mirror of https://github.com/ovh/debian-cis.git synced 2024-11-23 05:55:38 +01:00
Code Issues Packages Projects Releases Wiki Activity
191 Commits 4 Branches 39 Tags 2.2 MiB
52ad81a981
Commit Graph

20 Commits

Author SHA1 Message Date
Charles Herlin
7e3ee2eb93 FIX: usage if no RUN_MODE, fix only that used to run too many checks 
If no RUN_MODE passed as arguments, display usage and exits

Fix --only option to run only specific check
Found bug that used to run 2.2 and 2.24 when launching --only 2.24
 2019-02-13 17:17:06 +01:00
Charles Herlin
7690b57ea9 FIX: add becho to send batch output to syslog too 
becho stands for batch echo
formats the log line for syslog

Also logs audit summary into syslog (in batch mode only)
 2019-02-07 11:41:12 +01:00
Charles Herlin
25eb91c411 Update debian 7/8/9 in help files and remove in generic scripts 2019-02-06 15:19:14 +01:00
Charles Herlin
106412149d Adding batch mode to output just one line of text (no colors) in order to be parsed by computer tools 
Adding DESCRIPTION field in tests and [INFO] DESCRIPTION in main
Update README with --batch mode info
Add --batch mode in hardening.sh

Change summary to make it oneliner when batch mode
AUDIT_SUMMARY PASSED_CHECKS:95 RUN_CHECKS:191 TOTAL_CHECKS_AVAIL:191 CONFORMITY_PERCENTAGE:49.74
 2019-01-21 17:20:18 +01:00
Charles Herlin
843ce3efc3 Improve --only option to perform only specified test and no other lookalike test number 
Before modification "--only 8.2.1" performed tests 8.2.1 and 2.1
 2018-03-28 14:36:17 +02:00
Charles Herlin
b41df080cf Add sudo management in main and utils 
* perform readonly checks as a regular user
    * sudo -n is used for checks requiring root privileges
    * increase accountability by providing log of individual access to sensitive files
 2018-03-13 10:38:25 +01:00
Charles Herlin
725aaa39e5 Remove unnecessary CIS_ROOT_DIR empty assignation 2017-10-25 17:44:56 +02:00
Charles Herlin
c70d6120f8 Changing CIS_ROOT_DIR management in env in bin/hardening.sh 2017-10-25 14:48:54 +02:00
Stéphane Lesimple
dfaf4c2093 add hardening templating and several enhancements 2017-06-13 18:30:29 +02:00
thibault.dewailly
0f11b08ffb [Debian 8] Fixed comments for debian 8 compliance 2017-03-14 15:42:08 +01:00
thibault.dewailly
c5b4aa220d Added exit code to CIS_ROOT_DIR test def, optimized sed and sort 2016-04-20 18:06:08 +02:00
Stéphane Lesimple
55f9cae65c add --audit-all-enable-passed, add info in README and help 2016-04-20 18:06:08 +02:00
Stéphane Lesimple
76811c8a7f add --audit-all option 2016-04-20 18:06:08 +02:00
thibault.dewailly
e9487bfb04 Corrected default file path 2016-04-18 17:39:14 +02:00
thibault.dewailly
5e4e017653 log format correction, loglevel defaults to info 2016-04-18 14:03:20 +02:00
thibault.dewailly
091eec57ee All configuration defaults to disabled README updated 2016-04-18 13:25:09 +02:00
thibault.dewailly
57121f116c 99.1_timeout_tty.sh 99.2_disable_usb_devices.sh 2016-04-18 11:16:05 +02:00
thibault.dewailly
756fce8c2e Fixed disabled features, headers and preparing main script 2016-04-17 23:19:41 +02:00
thibault.dewailly
fbba59cc67 13.10_find_user_rhosts_files.sh 2016-04-16 18:55:44 +02:00
thibault.dewailly
f82a438246 13.7_check_user_dir_perm.sh 2016-04-16 18:11:53 +02:00