openstack
/
openstack-ansible-security
Code Issues Proposed changes
openstack-ansible-security/tasks
History
Major Hayden 062b19e5c5 Improved search for unlocked system accounts 
This patch adds a better check for system accounts that aren't
unlocked. The new logic meets the requirement of V-38496 from the
STIG better than the previous version. Only unlocked accounts with
UID < 500 will trigger the failure/violation.

Closes-Bug: 1550442

Change-Id: I18ccbd8e1cd7c311521d0ffdfcf6f46dbc4e395d
(cherry picked from commit 9058a3f084)
 		2016-04-04 16:04:13 +00:00
..
apt.yml Check mode compatibility for security role 2015-12-02 20:50:33 +00:00
auditd.yml Only update apt cache if necessary 2016-02-15 14:49:43 +01:00
auth.yml Improved search for unlocked system accounts 2016-04-04 16:04:13 +00:00
boot.yml Security: Check for grub.cfg first 2016-02-29 14:15:29 -06:00
console.yml Enable role testing and make structure ansible-galaxy compatible 2015-10-09 11:47:23 +00:00
file_perms.yml V-3864{2,5,7,9}, V-38651: Umask adjustments 2015-10-27 09:09:23 -05:00
kernel.yml V-38546: Disable IPv6 system-wide 2015-10-15 07:50:33 -05:00
mail.yml Fix Postfix mynetworks if IPv6 is disabled 2016-02-03 09:39:36 -06:00
main.yml Check mode compatibility for security role 2015-12-02 20:50:33 +00:00
misc.yml Fixing testing bug 2015-12-07 15:18:29 -06:00
nfsd.yml Replace debug with fail 2015-10-14 14:29:07 -05:00
services.yml Check mode compatibility for security role 2015-12-02 20:50:33 +00:00
sshd.yml Enable role testing and make structure ansible-galaxy compatible 2015-10-09 11:47:23 +00:00