Stéphane Lesimple
|
dfaf4c2093
|
add hardening templating and several enhancements
|
2017-06-13 18:30:29 +02:00 |
|
Jérôme Le Gal
|
4c2107cbea
|
[10.1.3] set the good value for $OPTIONS
|
2017-05-03 23:08:48 +02:00 |
|
thibault.dewailly
|
0f11b08ffb
|
[Debian 8] Fixed comments for debian 8 compliance
|
2017-03-14 15:42:08 +01:00 |
|
thibault.dewailly
|
717a794e45
|
[10.2] Fixed result parsing in case of spaces in passwd list
|
2017-03-10 17:26:55 +01:00 |
|
Matthieu Destrez
|
1e47226bd4
|
fixed option name in 9.3.9_disable_sshd_permitemptypasswords.sh, was PermitRootLogin instead of PermitEmptyPassword
|
2016-06-29 15:12:21 +02:00 |
|
thibault.dewailly
|
59e3008b4c
|
fix 99.1 Apply TMOUT Variable
|
2016-05-02 10:45:32 +02:00 |
|
kevin.tanguy
|
8bbac84f7b
|
debian dependencies fix, rephrasing, revision bump 1.0-8.
|
2016-04-26 14:02:17 +02:00 |
|
thibault.dewailly
|
c1a45d1df1
|
Fixed 6.15 netstat analysis
|
2016-04-22 17:23:21 +02:00 |
|
Thibault Dewailly
|
50a502dd32
|
Merge pull request #4 from jedisct1/valuemsg
Rephrase confusing messages
|
2016-04-22 08:40:14 +02:00 |
|
thibault.dewailly
|
7e951c020a
|
Fixed default file error handling and quickstart
|
2016-04-22 08:34:28 +02:00 |
|
thibault.dewailly
|
516b4dc7f9
|
Fixed point 9.1.8 cron rights as a chmod 600 disabled the cron.allow features (file must be world readable)
|
2016-04-21 18:56:10 +02:00 |
|
Frank Denis
|
ccd40f4369
|
Rephrase confusing messages
|
2016-04-21 18:32:36 +02:00 |
|
thibault.dewailly
|
799b3b5145
|
Fixed 8.2.4 check file exists before testing rights
|
2016-04-20 18:06:08 +02:00 |
|
thibault.dewailly
|
c5b4aa220d
|
Added exit code to CIS_ROOT_DIR test def, optimized sed and sort
|
2016-04-20 18:06:08 +02:00 |
|
thibault.dewailly
|
a7f418d8a2
|
Corrected script names, added License, Completed README and corrected bug with too long logger messages
|
2016-04-19 13:51:28 +02:00 |
|
thibault.dewailly
|
e9487bfb04
|
Corrected default file path
|
2016-04-18 17:39:14 +02:00 |
|
thibault.dewailly
|
091eec57ee
|
All configuration defaults to disabled README updated
|
2016-04-18 13:25:09 +02:00 |
|
thibault.dewailly
|
57121f116c
|
99.1_timeout_tty.sh 99.2_disable_usb_devices.sh
|
2016-04-18 11:16:05 +02:00 |
|
thibault.dewailly
|
756fce8c2e
|
Fixed disabled features, headers and preparing main script
|
2016-04-17 23:19:41 +02:00 |
|
thibault.dewailly
|
ef14c475fe
|
Added argument parsing and test checks
|
2016-04-17 23:10:47 +02:00 |
|
thibault.dewailly
|
e1337d76df
|
13.16_check_duplicate_username.sh 13.17_check_duplicate_groupname.sh 13.18_find_user_netrc_files.sh 13.19_find_user_forward_files.sh 13.20_shadow_group_empty.sh
|
2016-04-17 22:30:20 +02:00 |
|
thibault.dewailly
|
aad764bb1b
|
13.14_check_duplicate_uid.sh 13.15_check_duplicate_gid.sh^C
|
2016-04-17 19:53:47 +02:00 |
|
thibault.dewailly
|
a38aa6f039
|
13.12_users_valid_homedir.sh 13.11_find_passwd_group_inconsistencies.sh 13.13_check_user_homedir_ownership.sh
|
2016-04-17 18:58:25 +02:00 |
|
thibault.dewailly
|
fbba59cc67
|
13.10_find_user_rhosts_files.sh
|
2016-04-16 18:55:44 +02:00 |
|
thibault.dewailly
|
83cd95756d
|
13.8_check_user_dot_file_perm.sh 13.9_set_perm_on_user_netrc.sh
|
2016-04-16 18:32:09 +02:00 |
|
thibault.dewailly
|
f82a438246
|
13.7_check_user_dir_perm.sh
|
2016-04-16 18:11:53 +02:00 |
|
thibault.dewailly
|
b24a415dce
|
13.1_remove_empty_password_field.sh 13.2_remove_legacy_passwd_entries.sh 13.3_remove_legacy_shadow_entries.sh 13.4_remove_legacy_group_entries.sh 13.5_find_0_uid_non_root_account.sh 13.6_sanitize_root_path.sh
|
2016-04-16 17:25:48 +02:00 |
|
thibault.dewailly
|
dbc24bb8d7
|
13.1_remove_empry_password_field.sh
|
2016-04-16 15:10:14 +02:00 |
|
thibault.dewailly
|
fffd9842d6
|
12.11_find_sgid_files.sh
|
2016-04-16 12:57:24 +02:00 |
|
thibault.dewailly
|
d241ae57f9
|
12.10_find_suid_files.sh 12.1_etc_passwd_permissions.sh 12.2_etc_shadow_permissions.sh 12.3_etc_group_permissions.sh 12.4_etc_passwd_ownership.sh 12.5_etc_shadow_ownership.sh 12.6_etc_group_ownership.sh 12.7_find_world_writable_file.sh 12.8_find_unowned_files.sh 12.9_find_ungrouped_files.sh
|
2016-04-16 00:26:19 +02:00 |
|
thibault.dewailly
|
da30fa0b48
|
10.5_lock_inactive_user_account.sh 11.1_warning_banners.sh 11.2_remove_os_info_warning_banners.sh 11.3_graphical_warning_banners.sh
|
2016-04-15 23:38:48 +02:00 |
|
thibault.dewailly
|
dd9fac10d9
|
10.1.1_set_password_exp_days.sh 10.1.2_set_password_min_days_change.sh 10.1.3_set_password_exp_warning_days.sh 10.2_disable_system_accounts.sh 10.3_default_root_group.sh 10.4_default_umask.sh 9.4_secure_tty.sh 9.5_restrict_su.sh
|
2016-04-15 19:29:26 +02:00 |
|
thibault.dewailly
|
9451842e84
|
9.2.1_enable_cracklib.sh 9.2.2_enable_lockout_failed_password.sh 9.2.3_limit_password_reuse.sh 9.3.10_disable_sshd_setenv.sh 9.3.11_sshd_ciphers.sh 9.3.12_sshd_idle_timeout.sh 9.3.13_sshd_limit_access.sh 9.3.14_ssh_banner.sh 9.3.2_sshd_loglevel.sh 9.3.1_sshd_protocol.sh 9.3.3_sshd_conf_perm_ownership.sh 9.3.4_disable_x11_forwarding.sh 9.3.5_sshd_maxauthtries.sh 9.3.6_enable_sshd_ignorerhosts.sh 9.3.7_disable_sshd_hostbasedauthentication.sh 9.3.8_disable_root_login.sh 9.3.9_disable_sshd_permitemptypasswords.sh
|
2016-04-15 14:24:45 +02:00 |
|
thibault.dewailly
|
682d94bf9c
|
9.1.3_cron_hourly_perm_ownership.sh 9.1.4_cron_daily_perm_ownership.sh 9.1.5_cron_weekly_perm_ownership.sh 9.1.6_cron_monthly_perm_ownership.sh 9.1.7_cron_d_perm_ownership.sh 9.1.8_cron_users.sh
|
2016-04-15 10:18:23 +02:00 |
|
thibault.dewailly
|
9007ffdad1
|
9.1.1_enable_cron.sh 9.1.2_crontab_perm_ownership.sh
|
2016-04-14 23:26:37 +02:00 |
|
thibault.dewailly
|
6c9b2bbdd3
|
8.4_configure_logrotate.sh
|
2016-04-14 23:11:09 +02:00 |
|
thibault.dewailly
|
c8b01f7a23
|
8.4_conifgure_logrotate.sh
|
2016-04-14 23:08:52 +02:00 |
|
thibault.dewailly
|
f4927c2ebb
|
8.3.2_tripwire_cron.sh
|
2016-04-14 23:05:58 +02:00 |
|
thibault.dewailly
|
586d6823fa
|
8.2.5_syslog-ng_remote_host.sh 8.2.6_remote_syslog-ng_acl.sh 8.3.1_install_tripwire.sh
|
2016-04-14 22:47:34 +02:00 |
|
thibault.dewailly
|
45dcda4402
|
8.2.1_install_syslog-ng.sh 8.2.2_enable_syslog-ng.sh 8.2.3_configure_syslog-ng.sh 8.2.4_set_logfile_perm.sh
|
2016-04-14 17:55:14 +02:00 |
|
thibault.dewailly
|
1a4dbf8dc0
|
8.1.11_record_failed_access_file.sh 8.1.12_record_privileged_commands.sh 8.1.13_record_successful_mount.sh 8.1.14_record_file_deletions.sh 8.1.15_record_sudoers_edit.sh 8.1.16_record_sudo_usage.sh 8.1.17_record_kernel_modules.sh 8.1.18_freeze_auditd_conf.sh
|
2016-04-14 16:44:14 +02:00 |
|
thibault.dewailly
|
befd3acdde
|
8.1.10_record_dac_edit.sh 8.1.6_record_network_edit.sh 8.1.7_record_mac_edit.sh 8.1.8_record_login_logout.sh 8.1.9_record_session_init.sh
|
2016-04-14 14:43:26 +02:00 |
|
thibault.dewailly
|
75e072f304
|
8.1.4_record_date_time_edit.sh 8.1.5_record_user_group_edit.sh
|
2016-04-14 14:07:00 +02:00 |
|
thibault.dewailly
|
47d017908d
|
8.1.1.3_keep_all_audit_logs.sh 8.1.3_audit_bootloader.sh
|
2016-04-14 13:11:56 +02:00 |
|
thibault.dewailly
|
ea6361ddb5
|
8.0_enable_auditd_kernel.sh 8.1.1.2_halt_when_audit_log_full.sh 8.1.2_enable_auditd.sh
|
2016-04-14 10:40:31 +02:00 |
|
thibault.dewailly
|
c5f2b41421
|
7.4.1_install_tcp_wrapper.sh 7.4.2_hosts_allow.sh 7.4.3_hosts_allow_permissions.sh 7.4.4_hosts_deny.sh 7.4.5_hosts_deny_permissions.sh 7.5.1_disable_dccp.sh 7.5.2_disable_sctp.sh 7.5.3_disable_rds.sh 7.5.4_disable_tipc.sh 7.6_disable_wireless.sh 7.7_enable_firewall.sh 8.0_install_auditd.sh 8.1.1.1_audit_log_storage.sh
|
2016-04-13 22:51:18 +02:00 |
|
thibault.dewailly
|
0cf8bd3dd8
|
7.3.3_disable_ipv6.sh
|
2016-04-13 21:19:26 +02:00 |
|
thibault.dewailly
|
0820c89dc5
|
7.3.2_disable_ipv6_redirect.sh
|
2016-04-13 17:47:25 +02:00 |
|
thibault.dewailly
|
115de36b34
|
7.3.1_disable_ipv6_router_advertisement.sh
|
2016-04-13 17:41:10 +02:00 |
|
thibault.dewailly
|
c119e8d0f2
|
7.2.5_ignore_broadcast_requests.sh 7.2.6_enable_bad_error_message_protection.sh 7.2.7_enable_source_route_validation.sh 7.2.8_enable_tcp_syn_cookies.sh
|
2016-04-13 16:07:16 +02:00 |
|