Skip to content

Commit

Permalink
fix(#0): S5 mode for ssh-pub file & S4 IPv6 ufw conf
Browse files Browse the repository at this point in the history
  • Loading branch information
@MVladislav
MVladislav committed Nov 3, 2024
1 parent 19eb72e commit 11e6117
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 2 deletions.
2 changes: 1 addition & 1 deletion defaults/main.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -827,7 +827,7 @@ cis_ubuntu2404_section3_mode_default: "0644"
cis_ubuntu2404_section5_owner_ssh: root
cis_ubuntu2404_section5_group_ssh: root
cis_ubuntu2404_section5_mode_ssh: "0600"
cis_ubuntu2404_section5_mode_ssh_pub: "1410"
cis_ubuntu2404_section5_mode_ssh_pub: "0644"
cis_ubuntu2404_section5_owner_sudo: root
cis_ubuntu2404_section5_group_sudo: root
cis_ubuntu2404_section5_mode_sudo: "0400"
Expand Down
2 changes: 1 addition & 1 deletion tasks/section4.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -125,7 +125,7 @@
from: "::1"
log: false
when:
- not cis_ubuntu2404_rule_3_1_1 and cis_ubuntu2404_required_ipv6
- not cis_ubuntu2404_rule_3_1_1 or (cis_ubuntu2404_rule_3_1_1 and cis_ubuntu2404_required_ipv6)

- name: "SECTION4 | 4.2.5 | Ensure ufw outbound connections are configured"
community.general.ufw:
Expand Down

0 comments on commit 11e6117

Please sign in to comment.