From 2ca8c1ca065186e18725fb533ebfdb117a74def5 Mon Sep 17 00:00:00 2001
From: Mark Bolwell <mark.bollyuk@gmail.com>
Date: Mon, 11 Nov 2024 14:58:09 +0000
Subject: [PATCH 1/3] updated v2 for 5.2.3 as per issue #39

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
---
 section_5/cis_5.2/cis_5.2.3.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/section_5/cis_5.2/cis_5.2.3.yml b/section_5/cis_5.2/cis_5.2.3.yml
index 08b49fa..b643bf9 100644
--- a/section_5/cis_5.2/cis_5.2.3.yml
+++ b/section_5/cis_5.2/cis_5.2.3.yml
@@ -5,11 +5,11 @@
 command:
   log_sudoers_d:
     title: 5.2.3 | Ensure sudo log file exists | sudoers.d
-    exec: "grep -Ec '^Defaults logfile=/var/log/*.log' /etc/sudoers /etc/sudoers.d/.*/"
+    exec: 'grep -Ec "^Defaults.*logfile=(\"|)/var/log/.*\.log(\"|)" /etc/sudoers /etc/sudoers.d/*'
     exit-status:
       lt: 3
     stdout:
-    - '/[1:99]/'
+    - '/.*:[1:99]/'
     meta:
       server: 1
       workstation: 1

From b0dc83d25e9e3b7ddec5e8e9c92b732ddf2c88a1 Mon Sep 17 00:00:00 2001
From: Mark Bolwell <mark.bollyuk@gmail.com>
Date: Fri, 6 Dec 2024 14:09:41 +0000
Subject: [PATCH 2/3] updated script

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
---
 run_audit.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/run_audit.sh b/run_audit.sh
index 8014aa4..a09e850 100755
--- a/run_audit.sh
+++ b/run_audit.sh
@@ -25,7 +25,7 @@
 # Goss benchmark variables (these should not need changing unless new release)
 BENCHMARK=CIS # Benchmark Name aligns to the audit
 BENCHMARK_VER=2.0.0
-BENCHMARK_OS=RHEL9
+BENCHMARK_OS=UBUNTU
 
 # Goss host Variables
 AUDIT_BIN="${AUDIT_BIN:-/usr/local/bin/goss}"  # location of the goss executable

From d0c85501cf3bec9380fb60677280bb6d2d06f04d Mon Sep 17 00:00:00 2001
From: Mark Bolwell <mark.bollyuk@gmail.com>
Date: Fri, 6 Dec 2024 14:12:26 +0000
Subject: [PATCH 3/3] udpated script

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
---
 run_audit.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/run_audit.sh b/run_audit.sh
index a09e850..3d50a70 100755
--- a/run_audit.sh
+++ b/run_audit.sh
@@ -25,7 +25,7 @@
 # Goss benchmark variables (these should not need changing unless new release)
 BENCHMARK=CIS # Benchmark Name aligns to the audit
 BENCHMARK_VER=2.0.0
-BENCHMARK_OS=UBUNTU
+BENCHMARK_OS=UBUNTU22
 
 # Goss host Variables
 AUDIT_BIN="${AUDIT_BIN:-/usr/local/bin/goss}"  # location of the goss executable