diff --git a/controls/sysctl_spec.rb b/controls/sysctl_spec.rb index 5cbcbfb..3cc9f34 100644 --- a/controls/sysctl_spec.rb +++ b/controls/sysctl_spec.rb @@ -19,8 +19,8 @@ # author: Dominik Richter # author: Patrick Muench -sysctl_forwarding = input('sysctl_forwarding', value: false, description: 'Is network forwarding needed?') -kernel_modules_disabled = input('kernel_modules_disabled', value: 0, description: 'Should loading of kernel modules be disabled?') +sysctl_forwarding = input('sysctl_forwarding', value: false) +kernel_modules_disabled = input('kernel_modules_disabled', value: 0) container_execution = begin virtualization.role == 'guest' && virtualization.system =~ /^(lxc|docker)$/ rescue NoMethodError diff --git a/inspec.yml b/inspec.yml index ae17508..5c5809a 100644 --- a/inspec.yml +++ b/inspec.yml @@ -27,3 +27,7 @@ inputs: description: List of mountpoints where \'nosuid\' mount option should be set - name: mount_dev_blocklist description: List of mountpoints where \'nodev\' mount option should be set + - name: sysctl_forwarding + description: Is network forwarding needed? + - name: kernel_modules_disabled + description: Should loading of kernel modules be disabled?