mirror of
https://github.com/ovh/debian-cis.git
synced 2024-11-24 22:41:24 +01:00
2e53dfb573
* feat: Officialize Debian 12 support Functional tests now pass CIS Benchmark PDF for Debian 12 is not out yet, but the hardening points checked are still relevant in Debian 12. OVHcloud is now using it in critical production, hence making it officially supported --------- Co-authored-by: ThibaultDewailly <ThibaultDewailly@users.noreply.github.com>
63 lines
1.3 KiB
Bash
63 lines
1.3 KiB
Bash
# shellcheck shell=bash
|
|
# Defines constants for CIS Debian Hardening
|
|
|
|
# run-shellcheck
|
|
# Script and shell commands homogeneity
|
|
export LANG=C
|
|
|
|
#### Useful Color constants settings for loglevels
|
|
|
|
# Reset Color (for syslog)
|
|
# shellcheck disable=2034
|
|
NC='\033[0m'
|
|
# shellcheck disable=2034
|
|
WHITE='\033[0m'
|
|
# Colors
|
|
# shellcheck disable=2034
|
|
RED='\033[0;31m'
|
|
# shellcheck disable=2034
|
|
GREEN='\033[0;32m'
|
|
# shellcheck disable=2034
|
|
YELLOW='\033[0;33m'
|
|
# shellcheck disable=2034
|
|
GRAY='\033[0;40m' # Gray
|
|
|
|
# Bold
|
|
# shellcheck disable=2034
|
|
BRED='\033[1;31m' # Red
|
|
# shellcheck disable=2034
|
|
BGREEN='\033[1;32m' # Green
|
|
# shellcheck disable=2034
|
|
BYELLOW='\033[1;33m' # Yellow
|
|
# shellcheck disable=2034
|
|
BWHITE='\033[1;37m' # White
|
|
|
|
# Debian version variables
|
|
|
|
CONTAINER_TYPE=""
|
|
IS_CONTAINER=0
|
|
|
|
if [ "$(is_running_in_container "docker")" != "" ]; then
|
|
CONTAINER_TYPE="docker"
|
|
IS_CONTAINER=1
|
|
fi
|
|
if [ "$(is_running_in_container "lxc")" != "" ]; then
|
|
CONTAINER_TYPE="lxc"
|
|
IS_CONTAINER=1
|
|
fi
|
|
if [ "$(is_running_in_container "kubepods")" != "" ]; then
|
|
# shellcheck disable=SC2034
|
|
CONTAINER_TYPE="kubepods"
|
|
# shellcheck disable=SC2034
|
|
IS_CONTAINER=1
|
|
fi
|
|
|
|
get_distribution
|
|
|
|
get_debian_major_version
|
|
|
|
# shellcheck disable=SC2034
|
|
SMALLEST_SUPPORTED_DEBIAN_VERSION=10
|
|
# shellcheck disable=SC2034
|
|
HIGHEST_SUPPORTED_DEBIAN_VERSION=12
|