-
0.5.3 -- [[email protected]] - Switch sysctl write flags
-
0.5.2 -- [[email protected]] - Ignore errors on unknown sysctl keys
-
0.5.1 -- [[email protected]] - Included third-party sysctl cookbook as a hard-coupled dependency by calling it in proc_hard recipe
-
0.5.0 -- [[email protected]] - Switched sysctl.conf template writing out and brought in the third-party sysctl cookbook to handle writing .d config file -- [[email protected]] - Updated serverspec testing
-
0.4.3 -- [[email protected]] - Updated to switch out which file in /etc/pam.d/system-auth* gets symlinked
-
0.4.2 -- [[email protected]] - Fix most foodcritic errors and warnings -- [[email protected]] - CIS 1.6.2 (Configure ExecShield) was removed in 2.0.0 of all CIS STIG. No longer testing for it -- [[email protected]] - Added updates to SSHD config to allow boolean for password authentication -- [[email protected]] - Updated system auth recipe to be less destructive to /etc/pam.d/system-auth since that may be updated by authconfig -- [[email protected]] - Fixed a few tests
-
0.4.1 -- [[email protected]] - Updated sshd config to include approved ciphers (RHEL6 STIG 6.2.11) -- [[email protected]] - Added the ability to change
ChallengeResponseAuthenticationin sshd config -- [[email protected]] - Added the ability to changeUsePAMin sshd config -
0.4.0 -- [[email protected]] - Users may now add auditd rules directly as a series of attributes
-
0.3.11 -- [[email protected]] - More Auditd fixes
-
0.3.10 -- [[email protected]] - Fix auditd default parameters which break the build -- [[email protected]] - Add documentation for new attributes
-
0.3.9 -- [[email protected]] - Fully parameterized auditd configuration file -- [[email protected]] - No longer calling the auditd cookbook directly from auditd.rb -- [[email protected]] - Auditd cookbook is no longer a direct dependency of the STIG cookbook. Should be part of an overall runlist
-
0.3.8 -- [[email protected]] - Updated STIG and Audit rules to CIS RHEL Stig 1.4.0 -- [[email protected]] - Added CentOS 6 ruleset 3.2 - "Remove the X Window System" -- [[email protected]] - Fixed and added many Serverspec tests -- [[email protected]] - Corrected a typo in
check_duplicate_gid.shto correct STIG control number -- [[email protected]] - Removed CIS wording from audit scripts -- [[email protected]] - Enforced permissions on /boot/grub/grub.conf as per STIG 1.5.2 -- [[email protected]] - Removed grub.conf template -- [[email protected]] - Updated mounting of /dev/shm to be idempotent