elie/debian-cis
1
0
Fork 0
mirror of https://github.com/ovh/debian-cis.git synced 2025-08-04 14:21:15 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
c22ce20f9d8f69186cfb2899f7cda0c95e02b86e
debian-cis/cisharden.sudoers
damien cavagnini c22ce20f9d feat: add debian12 scripts 
- auditd_logs_full_halt.sh			-> 6.3.2.3
- systemd_journal_upload_remote_auth.sh		-> 6.2.1.2.2
- sudo_auth_timeout.sh 				-> 5.2.6
- libpam_modules_is_installed.sh 		-> 5.3.1.2
- ufw_not_installed_with_nftables.sh 		-> 4.2.2
- ufw_not_installed_with_iptables.sh 		-> 4.3.1.3
2025-08-01 15:50:31 +02:00

31 lines
1.2 KiB
Plaintext
Raw Blame History

Cmnd_Alias SCL_CMD = /bin/grep ,\
/bin/zgrep,\
/bin/cat,\
/usr/bin/stat,\
/usr/bin/getent,\
/usr/bin/[,\
/usr/bin/test,\
/bin/ls,\
/usr/bin/find,\
! /usr/bin/find *-exec*, \
! /usr/bin/find *-delete*,\
/usr/bin/apt-get update -y,\
/usr/bin/apt-get upgrade -s,\
/usr/bin/cut,\
/sbin/iptables -nL,\
/sbin/iptables -nL *,\
/sbin/sysctl net.*,\
/sbin/sysctl fs.*,\
/sbin/sysctl kernel.*,\
/sbin/sysctl -a,\
/bin/dmesg "",\
/bin/netstat,\
/usr/sbin/lsmod,\
/sbin/lsmod,\
/sbin/modprobe,\
/usr/sbin/modprobe -n -v*,\
/usr/sbin/apparmor_status,\
/usr/bin/awk *
cisharden ALL = (root) NOPASSWD: SCL_CMD
Reference in New Issue View Git Blame Copy Permalink