From f5ec60cb3c773cd4e3c13a83bd4ed9631076f633 Mon Sep 17 00:00:00 2001 From: Diana-Maria Dumitru Date: Thu, 15 Feb 2024 11:49:42 +0200 Subject: [PATCH] Fixing inconsistencies for issue https://code.siemens.com/infosec-pss-gov/security-crafter-baseline-automations/ansible-lockdown/amazon2023-cis/-/issues/22 Signed-off-by: Diana-Maria Dumitru --- tasks/section_1/cis_1.1.7.x.yml | 2 -- tasks/section_1/cis_1.3.x.yml | 2 +- tasks/section_4/cis_4.1.x.yml | 4 ++-- 3 files changed, 3 insertions(+), 5 deletions(-) diff --git a/tasks/section_1/cis_1.1.7.x.yml b/tasks/section_1/cis_1.1.7.x.yml index 53a7424..811c83a 100644 --- a/tasks/section_1/cis_1.1.7.x.yml +++ b/tasks/section_1/cis_1.1.7.x.yml @@ -38,7 +38,6 @@ notify: Change_requires_reboot when: - item.mount == "/home" - - amzn2023cis_rule_1_1_7_1 - amzn2023cis_rule_1_1_7_2 or amzn2023cis_rule_1_1_7_3 tags: @@ -47,6 +46,5 @@ - mounts - rule_1.1.7.2 - rule_1.1.7.3 - - rule_1.1.7.4 - nist_sp800-53r5_AC-3 - nist_sp800-53r5_MP-2 diff --git a/tasks/section_1/cis_1.3.x.yml b/tasks/section_1/cis_1.3.x.yml index f951332..5377ff2 100644 --- a/tasks/section_1/cis_1.3.x.yml +++ b/tasks/section_1/cis_1.3.x.yml @@ -66,7 +66,7 @@ /sbin/autrace p+i+n+u+g+s+b+acl+xattrs+sha512 validate: aide -D --config %s when: - - amzn2023cis_rule_1_3_2 + - amzn2023cis_rule_1_3_3 tags: - level1-server - aide diff --git a/tasks/section_4/cis_4.1.x.yml b/tasks/section_4/cis_4.1.x.yml index 758c94c..5592247 100644 --- a/tasks/section_4/cis_4.1.x.yml +++ b/tasks/section_4/cis_4.1.x.yml @@ -46,7 +46,7 @@ - level1-server - patch - cron - - rule_5.1.3 + - rule_4.1.3 - nist_sp800-53r5_AC-3 - nist_sp800-53r5_MP-2 @@ -170,6 +170,6 @@ - level1-server - patch - cron - - rule_5.1.9 + - rule_4.1.9 - nist_sp800-53r5_AC-3 - nist_sp800-53r5_MP-2