New Rule: tftpd_uses_secure_mode_systemd

[Mab879]

Description:

Adds new rule tftpd_uses_secure_mode_systemd

Rationale:

• Coverage for RHEL 9 STIG

Review Hints:

This PR is having issues with the Regex on ExecStart. I can't see to figure out what is going on, this

See RHEL-09-252055

[openshift-ci]

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

[github-actions]

Start a new ephemeral environment with changes proposed in this pull request:

rhel8 (from CTF) Environment (using Fedora as testing environment)

Fedora Testing Environment

Oracle Linux 8 Environment

[github-actions]

This datastream diff is auto generated by the check Compare DS/Generate Diff

Click here to see the full diff

ansible remediation for rule 'xccdf_org.ssgproject.content_rule_tftpd_uses_secure_mode' differs.
--- xccdf_org.ssgproject.content_rule_tftpd_uses_secure_mode
+++ xccdf_org.ssgproject.content_rule_tftpd_uses_secure_mode
@@ -20,7 +20,7 @@
     - always
 
 - name: Find out if the file exists and contains the line configuring server arguments
-  find:
+  ansible.builtin.find:
     path: /etc/xinetd.d
     patterns: tftp
     contains: ^[\s]+server_args.*$
@@ -40,7 +40,7 @@
   - tftpd_uses_secure_mode
 
 - name: Ensure that TFTP server is configured to start with secure directory
-  lineinfile:
+  ansible.builtin.lineinfile:
     path: /etc/xinetd.d/tftp
     regexp: ^[\s]*(server_args[\s]+=[\s]+.*?)(-s[\s]+[/\.\w]+)*(.*)$
     line: \1 -s {{ var_tftpd_secure_directory }} \3
@@ -63,7 +63,7 @@
   - tftpd_uses_secure_mode
 
 - name: Insert correct config line to start TFTP server with secure directory
-  lineinfile:
+  ansible.builtin.lineinfile:
     path: /etc/xinetd.d/tftp
     line: server_args = -s {{ var_tftpd_secure_directory }}
     state: present

[Mab879]

Closing this PR at this time as no work is planned on this time.