Merge pull request #42 from ansible-lockdown/issue_39_v2

updated v2 for 5.2.3 as per issue #39
ansible-lockdown · Dec 10, 2024 · 8ef6531 · 8ef6531
2 parents 4c4cffb + d0c8550
commit 8ef6531
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 3 deletions.
diff --git a/run_audit.sh b/run_audit.sh
@@ -25,7 +25,7 @@
 # Goss benchmark variables (these should not need changing unless new release)
 BENCHMARK=CIS # Benchmark Name aligns to the audit
 BENCHMARK_VER=2.0.0
-BENCHMARK_OS=RHEL9
+BENCHMARK_OS=UBUNTU22
 
 # Goss host Variables
 AUDIT_BIN="${AUDIT_BIN:-/usr/local/bin/goss}"  # location of the goss executable

diff --git a/section_5/cis_5.2/cis_5.2.3.yml b/section_5/cis_5.2/cis_5.2.3.yml
@@ -5,11 +5,11 @@
 command:
   log_sudoers_d:
     title: 5.2.3 | Ensure sudo log file exists | sudoers.d
-    exec: "grep -Ec '^Defaults logfile=/var/log/*.log' /etc/sudoers /etc/sudoers.d/.*/"
+    exec: 'grep -Ec "^Defaults.*logfile=(\"|)/var/log/.*\.log(\"|)" /etc/sudoers /etc/sudoers.d/*'
     exit-status:
       lt: 3
     stdout:
-    - '/[1-99]/'
+    - '/.*:[1:99]/'
     meta:
       server: 1
       workstation: 1