Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update sysctl template to check(and not fix) /usr/lib/sysctl.d directory #10637

Merged
merged 4 commits into from
Jul 14, 2023
Merged

Update sysctl template to check(and not fix) /usr/lib/sysctl.d directory #10637

merged 4 commits into from
Jul 14, 2023

Commits on May 25, 2023

  1. Update sysctl template OVAL 

    There are configurations set by packages in /usr/lib, so it is possible
to find there the expected configuration, but it is not recommended to
modify those files in case of a non compliant configuration. So
modified OVAL to check those files in a way that not touching them
would fix any non compliant scenario.

This means that the rule can pass if the expected conf is included in a
file in /usr/lib. But also if there is a non compliant value there, and
it is overwritten by a configuration in a different file.

Signed-off-by: Edgar Aguilar <edgar.aguilar@oracle.com>
    @Xeicker
    Xeicker committed May 25, 2023
    Configuration menu
    Copy the full SHA
    49ea644 View commit details
    Browse the repository at this point in the history

  2. Add two tests to sysctl template 

    Signed-off-by: Edgar Aguilar <edgar.aguilar@oracle.com>
    @Xeicker
    Xeicker committed May 25, 2023
    Configuration menu
    Copy the full SHA
    584583e View commit details
    Browse the repository at this point in the history

Commits on Jun 12, 2023

  1. Add fail test to sysctl template 

    Adding test wrong_usr_lib_wrong_etc.fail.sh, to complement
wrong_usr_lib_correct_etc.pass.sh

Signed-off-by: Edgar Aguilar <edgar.aguilar@oracle.com>
    @Xeicker
    Xeicker committed Jun 12, 2023
    Configuration menu
    Copy the full SHA
    13f96f5 View commit details
    Browse the repository at this point in the history

Commits on Jun 13, 2023

  1. Polish OVAL in sysctl template 

    - Fix comments in OVAL tests
- Remove OVAL test whith jinja when the criterion is also removed

Signed-off-by: Edgar Aguilar <edgar.aguilar@oracle.com>
    @Xeicker
    Xeicker committed Jun 13, 2023
    Configuration menu
    Copy the full SHA
    b39c007 View commit details
    Browse the repository at this point in the history