Fix AIDE Database option deprecation by Azim-Azizov · Pull Request #14557 · ComplianceAsCode/content
bash remediation for rule 'xccdf_org.ssgproject.content_rule_ensure_logrotate_activated' differs. --- xccdf_org.ssgproject.content_rule_ensure_logrotate_activated +++ xccdf_org.ssgproject.content_rule_ensure_logrotate_activated @@ -1,8 +1,7 @@ # Remediation is applicable only in certain platforms if rpm --quiet -q kernel-core && { rpm --quiet -q logrotate; }; then -LOGROTATE_CONF_FILE='/etc/logrotate.conf' - +LOGROTATE_CONF_FILE="/etc/logrotate.conf" if ! rpm -q --quiet "crontabs" ; then yum install -y "crontabs" bash remediation for rule 'xccdf_org.ssgproject.content_rule_sshd_set_keepalive' differs. --- xccdf_org.ssgproject.content_rule_sshd_set_keepalive +++ xccdf_org.ssgproject.content_rule_sshd_set_keepalive @@ -2,6 +2,7 @@ if rpm --quiet -q kernel-core; then var_sshd_set_keepalive='' + if [ -e "/etc/ssh/sshd_config" ] ; then bash remediation for rule 'xccdf_org.ssgproject.content_rule_sshd_set_idle_timeout' differs. --- xccdf_org.ssgproject.content_rule_sshd_set_idle_timeout +++ xccdf_org.ssgproject.content_rule_sshd_set_idle_timeout @@ -2,6 +2,7 @@ if rpm --quiet -q kernel-core; then sshd_idle_timeout_value='' + if [ -e "/etc/ssh/sshd_config" ] ; then bash remediation for rule 'xccdf_org.ssgproject.content_rule_sshd_disable_compression' differs. --- xccdf_org.ssgproject.content_rule_sshd_disable_compression +++ xccdf_org.ssgproject.content_rule_sshd_disable_compression @@ -2,6 +2,7 @@ if rpm --quiet -q kernel-core; then var_sshd_disable_compression='' + if [ -e "/etc/ssh/sshd_config" ] ; then bash remediation for rule 'xccdf_org.ssgproject.content_rule_sshd_set_login_grace_time' differs. --- xccdf_org.ssgproject.content_rule_sshd_set_login_grace_time +++ xccdf_org.ssgproject.content_rule_sshd_set_login_grace_time @@ -2,6 +2,7 @@ if rpm --quiet -q kernel-core; then var_sshd_set_login_grace_time='' + if [ -e "/etc/ssh/sshd_config" ] ; then bash remediation for rule 'xccdf_org.ssgproject.content_rule_sshd_set_max_auth_tries' differs. --- xccdf_org.ssgproject.content_rule_sshd_set_max_auth_tries +++ xccdf_org.ssgproject.content_rule_sshd_set_max_auth_tries @@ -2,6 +2,7 @@ if rpm --quiet -q kernel-core; then sshd_max_auth_tries_value='' + if [ -e "/etc/ssh/sshd_config" ] ; then bash remediation for rule 'xccdf_org.ssgproject.content_rule_sshd_set_max_sessions' differs. --- xccdf_org.ssgproject.content_rule_sshd_set_max_sessions +++ xccdf_org.ssgproject.content_rule_sshd_set_max_sessions @@ -2,6 +2,7 @@ if rpm --quiet -q kernel-core; then var_sshd_max_sessions='' + if [ -e "/etc/ssh/sshd_config" ] ; then bash remediation for rule 'xccdf_org.ssgproject.content_rule_sshd_set_maxstartups' differs. --- xccdf_org.ssgproject.content_rule_sshd_set_maxstartups +++ xccdf_org.ssgproject.content_rule_sshd_set_maxstartups @@ -2,6 +2,7 @@ if rpm --quiet -q kernel-core; then var_sshd_set_maxstartups='' + if [ -e "/etc/ssh/sshd_config" ] ; then bash remediation for rule 'xccdf_org.ssgproject.content_rule_sshd_use_priv_separation' differs. --- xccdf_org.ssgproject.content_rule_sshd_use_priv_separation +++ xccdf_org.ssgproject.content_rule_sshd_use_priv_separation @@ -2,6 +2,7 @@ if rpm --quiet -q kernel-core && { ( rpm --quiet -q openssh-server && { real="$(epoch=$(rpm -q --queryformat '%{EPOCH}' openssh-server); version=$(rpm -q --queryformat '%{VERSION}' openssh-server); [ "$epoch" = "(none)" ] && echo "0:$version" || echo "$epoch:$version")"; expected="0:7.5"; [[ "$real" != "$expected" ]] && printf "%s\n%s" "$real" "$expected" | sort -VC; } ); }; then var_sshd_priv_separation='' + if [ -e "/etc/ssh/sshd_config" ] ; then bash remediation for rule 'xccdf_org.ssgproject.content_rule_sshd_use_strong_kex' differs. --- xccdf_org.ssgproject.content_rule_sshd_use_strong_kex +++ xccdf_org.ssgproject.content_rule_sshd_use_strong_kex @@ -2,6 +2,8 @@ if rpm --quiet -q kernel-core; then sshd_strong_kex='' + + if [ -e "/etc/ssh/sshd_config" ] ; then