Commit Graph

Select branches

Hide Pull Requests

dependabot/github_actions/luizm/action-sh-checker-0.9.0

dev/thibault.dewailly/deb12

dev/thibault.dewailly/set_hardening_level

dev/thibault.dewailly/syslogng_remotecheck

master

#1

#10

#100

#101

#102

#103

#104

#108

#11

#111

#112

#115

#118

#119

#12

#120

#121

#122

#123

#125

#127

#128

#129

#130

#131

#132

#133

#134

#135

#137

#139

#140

#141

#142

#143

#144

#145

#146

#147

#148

#149

#150

#151

#152

#153

#154

#156

#157

#159

#16

#160

#161

#164

#166

#168

#169

#170

#171

#172

#173

#174

#176

#177

#178

#179

#18

#180

#181

#184

#185

#186

#187

#188

#19

#190

#193

#194

#197

#198

#199

#2

#20

#202

#203

#204

#205

#206

#207

#208

#21

#210

#213

#214

#215

#216

#22

#221

#222

#223

#225

#226

#228

#229

#23

#232

#234

#236

#237

#238

#24

#242

#243

#243

#250

#250

#28

#29

#30

#31

#32

#35

#36

#37

#39

#4

#40

#41

#44

#45

#47

#49

#5

#54

#56

#57

#58

#59

#6

#6

#60

#66

#67

#69

#7

#72

#73

#75

#79

#80

#81

#82

#86

#88

#9

#90

#91

#94

#95

#96

#98

#99

latest

v1.1-1

v1.2-1

v1.3

v1.3-2

v1.3-3

v1.3-4

v2.0-4

v2.0-5

v2.0-6

v2.1-1

v2.1-2

v2.1-3

v2.1-4

v2.1-5

v2.1-6

v3.0

v3.0-1

v3.1-0

v3.1-1

v3.1-2

v3.1-3

v3.1-4

v3.1-5

v3.1-6

v3.2-0

v3.2-1

v3.2-2

v3.3-1

v3.4-1

v3.5-1

v3.6-1

v3.7-1

v3.8-1

v4.0-1

v4.1-1

v4.1-2

v4.1-3

v4.1-4

Mono Color

• 00e0a875c2 fix: add tinyproxy in HTTP proxies dev/thibault.dewailly/deb12 thibault.dewailly 2024-12-24 09:57:14 +00:00
• 38bf8c4bc0 feat: add tftp check thibault.dewailly 2024-12-24 09:54:51 +00:00
• 68f2c640b1 feat: enhance NIS check thibault.dewailly 2024-12-24 09:34:10 +00:00
• 7fa2d5f516 feat: add dnsmasq on DNS packages denylist thibault.dewailly 2024-12-24 09:17:02 +00:00
• 679df5b9cf feat: add restrict_ptrace_scope thibault.dewailly 2024-12-24 09:13:16 +00:00
• 1733d1f460
  build(deps): bump luizm/action-sh-checker from 0.8.0 to 0.9.0 dependabot/github_actions/luizm/action-sh-checker-0.9.0 dependabot[bot] 2024-09-16 22:28:53 +00:00
• 9a225c6157
  build(deps): bump dev-drprasad/delete-tag-and-release from 1.0.1 to 1.1 (#238) master latest dependabot[bot] 2024-09-10 17:47:36 +02:00
• 6079b16611
  fix: invalid behavior on sid/alternative in 5.3.4/99.5.4.5.1 (#237) Hugo COURTIAL 2024-04-09 17:12:31 +02:00
• f7cdf438d4
  build(deps): bump metcalfc/changelog-generator from 4.2.0 to 4.3.1 (#234) dependabot[bot] 2024-03-05 09:33:10 +01:00
• 43fc23ee40
  fix: catch cidr network in ssh keys (#236) Isma399 2024-02-22 17:55:03 +01:00
• 3bd4078e70
  fix: allow set-hardening-level option usage (#232) GoldenKiwi 2024-02-01 17:09:35 +01:00
• a08b71adae
  fix: allow set-hardening-level option usage dev/thibault.dewailly/set_hardening_level thibault.dewailly 2024-02-01 14:54:09 +00:00
• a45aa40ce4
  bump to 4.1.4 v4.1-4 thibault.dewailly 2024-01-18 09:14:30 +00:00
• 730ab47437
  allow multiple users in 5.2.18 (#228) lgaida 2024-01-10 17:07:02 +01:00
• 5313799193
  Allow multiple exception users to be defined for 99.5.2.4_ssh_keys_from (#221) lgaida 2023-12-27 13:42:10 +01:00
• 73616af4eb
  Syslog-ng fixes and enhancements (#226) GoldenKiwi 2023-12-27 10:27:06 +01:00
• 796a561fe5 enh: add test for 4.2.1.6 dev/thibault.dewailly/syslogng_remotecheck thibault.dewailly 2023-12-27 08:58:12 +00:00
• 58f4ca0392
  syslog-ng : fix remote host test and enhance Regex thibault.dewailly 2023-12-27 08:40:35 +00:00
• c391723fe5
  fix: Allow --only option to be called multiple times (#225) GoldenKiwi 2023-12-26 17:08:53 +01:00
• 71019a5512
  fix: update Readme to clarify project usage (#223) GoldenKiwi 2023-12-26 09:57:15 +01:00
• fb4df82fc4
  fix: typo in README. Update example of --audit usage (#222) GoldenKiwi 2023-12-26 09:19:55 +01:00
• c75244e3b2 bump to 4.1.3 v4.1-3 thibault.dewailly 2023-11-28 10:34:12 +00:00
• de295b3a77
  Adapt all scripts to yescrypt (#216) Stéphane Lesimple 2023-11-21 17:43:31 +01:00
• 693487c3a5
  build(deps): bump metcalfc/changelog-generator from 4.1.0 to 4.2.0 (#214) dependabot[bot] 2023-11-14 15:44:50 +01:00
• 670c8c62f5
  fix: clean obsolete check 99.5.4.5.1, now handled by 5.3.4 (#215) GoldenKiwi 2023-11-14 12:03:58 +01:00
• 0eb2e2ffde
  enh: remove ssh system sandbox check (#213) GoldenKiwi 2023-11-13 08:53:12 +01:00
• d6c334182e
  build(deps): bump luizm/action-sh-checker from 0.7.0 to 0.8.0 (#210) dependabot[bot] 2023-11-10 15:05:25 +01:00
• 2188577fc9
  feat: advertise Debian 12 compatibility in readme thibault.dewailly 2023-10-02 13:34:04 +00:00
• 0f59f73297
  bump to 4.1.2 v4.1-2 thibault.dewailly 2023-10-02 13:17:00 +00:00
• f888ce0d39
  fix: root_dir is still /opt/cis-hardening for the moment (#208) GoldenKiwi 2023-10-02 14:50:52 +02:00
• f6aa306127
  bump to 4.1.1 v4.1-1 thibault.dewailly 2023-09-29 14:38:26 +00:00
• ceea343ad9
  fix: debian12 functional test pass is now mandatory (#207) GoldenKiwi 2023-09-29 16:34:25 +02:00
• 2e53dfb573
  feat: Officialize Debian 12 support (#206) GoldenKiwi 2023-09-29 16:20:34 +02:00
• 08aff5d3fc
  Update the README to reflect on changes made in PR#204 (#205) P-EB 2023-09-29 09:21:40 +02:00
• 32886d3a3d
  Replace CIS_ROOT_DIR by a more flexible system (#204) P-EB 2023-09-25 14:24:01 +02:00
• 5370ec2ef6
  feat: add nftables to firewall software allow list (#203) GoldenKiwi 2023-09-07 14:36:08 +02:00
• 9d3fb18e6b
  build(deps): bump actions/checkout from 3 to 4 (#202) dependabot[bot] 2023-09-05 17:07:12 +02:00
• 6e79fcd00a
  fix: correct debian version check on 5.2.15 configuration generation (#199) GoldenKiwi 2023-09-01 08:34:28 +02:00
• 27edec6d5f
  fix: chore, debug logs print correctly now (#197) GoldenKiwi 2023-08-31 14:40:27 +02:00
• f2cc14c383
  fix: chore debian manual update (#198) GoldenKiwi 2023-08-31 14:34:59 +02:00
• 46377fc255
  build(deps): bump dev-drprasad/delete-tag-and-release (#184) dependabot[bot] 2023-08-30 10:32:29 +02:00
• a468b29036
  fix: added systemd-timesyncd to use_time_sync script (#189) (#190) Joseph 2023-08-30 16:28:03 +08:00
• db9ff8a7fd
  Update warn messages on 2.2.15_mta_localhost.sh (#193) JugeHuge 2023-08-30 11:23:27 +03:00
• 6135c3d0e5
  fix: enhance test 99.1.3 speed for large /etc/sudoers.d folders (#188) Stéphane Lesimple 2023-07-18 17:28:35 +02:00
• a6ad528087
  feat: Add experimental debian12 functionnal tests (#187) Tarik Megzari 2023-07-10 10:52:17 +02:00
• bc98bedf73 bump to 4.0-1 v4.0-1 thibault.dewailly 2023-07-10 07:21:13 +00:00
• 873ef8827d
  fix: 99.1.3_acc_sudoers_no_all: fix a race condition (#186) Stéphane Lesimple 2023-07-03 17:05:45 +02:00
• bd27cd0dae
  fix: change auditd file rule remediation (#179) GoldenKiwi 2023-05-05 12:32:22 +02:00
• f28ffc244c
  fix: correct debian package compression override (#181) GoldenKiwi 2023-05-02 18:06:59 +02:00
• 19ce790a27
  fix: ensure mountpoints are properly detected (#177) GoldenKiwi 2023-05-02 18:01:53 +02:00
• 47cf86237b
  fix: correct search in 5.4.5_default_timeout in apply mode (#178) GoldenKiwi 2023-05-02 17:57:35 +02:00
• ccd9c1a7aa
  fix: force xz compression during .deb build (#180) GoldenKiwi 2023-05-02 15:24:32 +02:00
• 04457e7df2
  feat: official Debian 11 compatibility (#176) GoldenKiwi 2023-05-02 14:16:19 +02:00
• 05521d5961
  Bump luizm/action-sh-checker from 0.5.0 to 0.7.0 (#171) dependabot[bot] 2023-04-26 10:20:11 +02:00
• 06525f06f9 bump to 3.8-1 v3.8-1 thibault.dewailly 2023-03-23 10:03:37 +00:00
• d5c1c63971
  Bump luizm/action-sh-checker from 0.4.0 to 0.5.0 (#161) dependabot[bot] 2023-03-23 10:56:12 +01:00
• 7d93ddeb86
  Bump metcalfc/changelog-generator from 3.0.0 to 4.1.0 (#169) dependabot[bot] 2023-03-23 10:50:46 +01:00
• a35ecab377
  Bump dev-drprasad/delete-tag-and-release from 0.2.0 to 0.2.1 (#170) dependabot[bot] 2023-03-23 10:47:09 +01:00
• dc952b90df
  fix: timeout of 99.1.3 (#168) Stéphane Lesimple 2022-12-22 09:47:35 +01:00
• 82a217032d
  fix(6.2.9): Start from UID 1000 for home ownership check (#164) Tarik Megzari 2022-09-30 10:28:48 +02:00
• e478a89bad
  bump to 3.7-1 (#160) v3.7-1 ymartin-ovh 2022-07-04 15:37:08 +02:00
• 371c23cd52
  feat: add FIND_IGNORE_NOSUCHFILE_ERR flag (#159) ymartin-ovh 2022-07-04 14:29:25 +02:00
• ea8334d516
  bump to 3.6-1 (#157) v3.6-1 Tarik Megzari 2022-06-27 12:13:01 +02:00
• 987bb9c975
  Bump luizm/action-sh-checker from 0.3.0 to 0.4.0 (#154) dependabot[bot] 2022-06-26 16:58:46 +02:00
• 3031bb55d1
  Bump actions-ecosystem/action-get-latest-tag from 1.5.0 to 1.6.0 (#153) dependabot[bot] 2022-06-24 17:55:26 +02:00
• 66ccc6316a
  feat: Filter the filesystem to check when the list is built. (#156) ymartin-ovh 2022-06-24 17:45:47 +02:00
• 7a3145d7f1
  bump to 3.5-1 (#152) v3.5-1 Tarik Megzari 2022-03-23 18:40:25 +01:00
• 5c072668d5
  fix: add 10s wait timeout on iptables command (#151) GoldenKiwi 2022-03-23 16:56:38 +01:00
• d1bd1eb2e7
  bump to 3.4-1 (#150) v3.4-1 GoldenKiwi 2022-03-18 16:49:25 +01:00
• ad5c71c3ce
  fix: allow passwd-, group- and shadow- debian default permissions (#149) GoldenKiwi 2022-03-18 16:41:49 +01:00
• 33964c0a3d
  Bump EndBug/add-and-commit from 8.0.2 to 9 (#148) dependabot[bot] 2022-03-14 15:36:48 +01:00
• 8320d0eecc
  CI: Fix release action (#147) v3.3-1 Tarik Megzari 2022-03-03 12:02:12 +01:00
• a0d33ab158
  Update changelog for release 3.3-1 (#146) Tarik Megzari 2022-03-03 10:26:42 +01:00
• a6a22084e1
  missing shadowtools backup files is ok (#132) Jan Schmidle 2022-03-02 18:05:37 +01:00
• b962155a3c
  fix: Avoid find failures on too many files (#144) Tarik Megzari 2022-03-02 17:49:28 +01:00
• 20bf51f65b
  Bump actions/checkout from 2 to 3 (#145) dependabot[bot] 2022-03-02 00:14:50 +01:00
• adfe28470a
  Bump metcalfc/changelog-generator from 1.0.0 to 3.0.0 (#133) dependabot[bot] 2022-03-01 23:48:57 +01:00
• c94ee10afe
  Bump EndBug/add-and-commit from 7 to 8.0.2 (#142) dependabot[bot] 2022-03-01 20:39:39 +01:00
• 453a72b8c8
  Bump actions-ecosystem/action-get-latest-tag from 1.4.1 to 1.5.0 (#143) dependabot[bot] 2022-03-01 20:28:33 +01:00
• bb03764918
  fix: Catch unexpected failures (#140) Tarik Megzari 2022-01-31 15:38:38 +01:00
• 17d272420a
  feat: Dissociate iptables pkg name from command (#137) Tarik Megzari 2021-12-27 15:40:55 +01:00
• f1c1517bd2
  Update changelog for release 3.2-2 (#135) v3.2-2 Tarik Megzari 2021-12-13 16:06:57 +01:00
• 1341622335
  Fix empty fstab test (#134) tdenof 2021-12-08 08:42:22 +01:00
• c8fcfed248 Update changelog for release 3.2-1 v3.2-1 thibault.dewailly 2021-12-01 11:04:56 +00:00
• 97914976c8
  Skip NTP and Chrony config check if they are not installed (#120) v3.2-0 Sebastien BLAISOT 2021-12-01 10:49:08 +01:00
• 66c8ccf495
  Fix 3.4.2 audit rule (#123) Sebastien BLAISOT 2021-12-01 10:23:11 +01:00
• b53bf1795c
  Fix grub detection (#119) Sebastien BLAISOT 2021-12-01 08:58:32 +01:00
• 1a874b2b35
  Allow grub.cfg permission to be 600 (#121) Sebastien BLAISOT 2021-11-30 18:47:19 +01:00
• 7266ec7cb4
  Honor --set-log-level parameter (#127) Sebastien BLAISOT 2021-11-30 18:42:33 +01:00
• 8f855ac159
  fix: kernel module detection (#129) Jan Schmidle 2021-10-20 14:51:29 +02:00
• ad192c9457
  Add silent mode and json summary (#128) Sebastien BLAISOT 2021-10-20 13:22:59 +02:00
• 3d2d97a727
  FIX(1.7.1.4): don't abort script in case of unconfined processes (#130) Sebastien BLAISOT 2021-10-20 13:14:36 +02:00
• 6e2fb1570c
  FIX(2.2.1.4): Validate debian default ntp config (#118) Sebastien BLAISOT 2021-10-15 16:19:51 +02:00
• faf5b155e5
  Bump metcalfc/changelog-generator from v0.4.4 to v1.0.0 (#81) dependabot[bot] 2021-08-10 13:57:13 +02:00
• 43887d4165
  Bump luizm/action-sh-checker from 0.1.13 to 0.3.0 (#111) dependabot[bot] 2021-08-10 13:47:31 +02:00
• 499ebf2f9b
  Bump dev-drprasad/delete-tag-and-release from v0.1.3 to v0.2.0 (#72) dependabot[bot] 2021-08-10 10:39:53 +02:00
• afed5a9dce
  99.5.4.5.2: fix bug where sha512 option rounds provoke KO (#112) Thibault Ayanides 2021-08-10 10:30:35 +02:00
• 01c3d1b98c
  Bump luizm/action-sh-checker from v0.1.12 to v0.1.13 (#73) dependabot[bot] 2021-08-10 09:43:59 +02:00
• 25e899168f
  Bump actions-ecosystem/action-get-latest-tag from 1 to 1.4.1 (#101) dependabot[bot] 2021-08-10 09:36:28 +02:00
• 9a2e3a0e0d
  Fix 5.4.5 pattern search (#108) Thibault Ayanides 2021-08-09 10:49:56 +02:00