dev-sec/chef-os-hardening
This chef cookbook provides numerous security-related configurations, providing all-round base protection.
RubyApache-2.0
Issues
- 0
Dependency Dashboard
#305 opened by renovate - 3
- 3
Support for RHEL 8 / Rocky Linux 8
#279 opened by krayjay - 1
chef exec rake lint fails, foodcritic deprecated
#265 opened by flybd5 - 1
Linux Baseline tests are failing for os-13
#272 opened by mfortin - 0
Amazon Linux 2 Auditd fails to restart
#270 opened by mfortin - 1
pwquality.conf defaults or suggested config
#267 opened by bcg62 - 2
Configuration conflict when using both chef-ssh-hardening and chef-os-hardening
#264 opened by eric-chennells - 0
Chef warning when /bin/su is a symlink
#262 opened by sean-nixon - 10
Bug: unable to use override to disable module
#208 opened by ekelson-bcove - 0
- 1
idempotency issues: "check package signature in repo files" and "remove_suid_from_blacklists"
#257 opened by Rudikza - 10
Management of auditd is missing
#182 opened by artem-sidorenko - 2
Grub hardening and password protection
#224 opened by artem-sidorenko - 0
os-hardening::profile recipe creating pinerolo_profile.sh file with .old extension on each chef-client run
#255 opened by Raghureddy4545 - 4
- 3
- 3
Deprecated feature sysctl_param used
#230 opened by 0x022b - 0
Wrong OpenSuse /etc/shadow membership
#250 opened by artem-sidorenko - 0
Failing centos 7 dokken tests in the CI
#248 opened by artem-sidorenko - 2
Issue with /etc/pam.d/system-auth-ac on RedHat7
#225 opened by sbhakta99 - 15
Unclear if exec-sheild is defaulted in RHEL 7
#222 opened by aavetis - 3
Make a new release?
#233 opened by mattlqx - 1
exec-shield incompatible with Oracle Linux UEK
#234 opened by eyespies - 1
Audit Daemon Fails on Amazon Linux 2
#236 opened by JamesFrost - 6
- 1
Missing cookbook Chai
#232 opened by cstrong84 - 0
PAM config prevents launching of GDM on Fedora 27
#206 opened by avanier - 3
- 0
earlier version
#205 opened by monisha6791 - 0
Make auditd recipe optional
#200 opened by alexanderadam - 6
Usage of azure as cloud provider for CI
#183 opened by artem-sidorenko - 1
Dependency on pinned, old version of sysctl
#192 opened by bablakely - 0
compat_resource deprecated
#186 opened by bablakely - 2
Question about the default for client_alive_interval
#185 opened by iennae - 3
Convert integration tests to use docker
#180 opened by shoekstra - 3
- 6
Version Tagged as 2.1.1 is not 2.1.1
#170 opened by eyespies - 0
Removal of core dump hardening configuration if core dumps are allowed
#165 opened by artem-sidorenko - 9
- 1
os-10 from linux-baseline is missing
#167 opened by atomic111 - 10
- 3
auditd package is not installed
#145 opened by chris-rock - 0
Testing of chef 13 in the CI
#155 opened by artem-sidorenko - 8
release 2.0 in supermarket
#148 opened by chris-rock - 0
- 2
pam_passwdqc package install idempotence
#134 opened by rjhornsby - 1
Openhub is not up to date
#129 opened by ThraaxSession - 3
login.defs.erb contains a non-ASCII character which causes a knife cookbook upload failure
#122 opened by gregorkistler - 1
fixing the 4 rspec failure
#121 opened by atomic111