diff --git a/handlers/main.yml b/handlers/main.yml index ae1291a..f8c71c6 100644 --- a/handlers/main.yml +++ b/handlers/main.yml @@ -8,6 +8,9 @@ masked: false state: reloaded +- name: remount tmp + command: mount -o remount /tmp + - name: remount dev_shm command: mount -o remount /dev/shm diff --git a/tasks/section_1/cis_1.1.x.yml b/tasks/section_1/cis_1.1.x.yml index 978e413..f269d46 100644 --- a/tasks/section_1/cis_1.1.x.yml +++ b/tasks/section_1/cis_1.1.x.yml @@ -34,7 +34,7 @@ fstype: "{{ item.fstype }}" state: present opts: defaults,{% if amazon2cis_rule_1_1_3 %}noexec,{% endif %}{% if amazon2cis_rule_1_1_4 %}nodev,{% endif %}{% if amazon2cis_rule_1_1_5 %}nosuid{% endif %} - notify: Remount_tmp + notify: remount tmp loop: "{{ ansible_facts.mounts }}" loop_control: label: "{{ item.device }}"