From 43399a3cae82cc52519aa2519c20970c96bfb6db Mon Sep 17 00:00:00 2001 From: George Nalen <57152366+georgenalen@users.noreply.github.com> Date: Wed, 2 Mar 2022 05:16:32 -0800 Subject: [PATCH] Issue 164 165 fixes (#168) * Add issue #164 fix Signed-off-by: George Nalen * issue #165 fix Signed-off-by: George Nalen * updated git install os compare Signed-off-by: George Nalen * removed rhel7 git install Signed-off-by: George Nalen * Adjusted pull_request_target to pull_request Signed-off-by: George Nalen * put rhel7 git install ref back with corrected version ref, added pull_request_target ref in to use branch from pr, and added 1.4.2 to skip for testing Signed-off-by: George Nalen * updated readme for discord and pipeline testing area Signed-off-by: George Nalen * Updated tasks/main.yml tags and other spacing Signed-off-by: George Nalen * added final missing run_audit Signed-off-by: George Nalen --- tasks/section_5/cis_5.5.x.yml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/tasks/section_5/cis_5.5.x.yml b/tasks/section_5/cis_5.5.x.yml index 48b26f2a..d7bb9536 100644 --- a/tasks/section_5/cis_5.5.x.yml +++ b/tasks/section_5/cis_5.5.x.yml @@ -5,11 +5,11 @@ - name: "5.5.1 | PATCH | Ensure password creation requirements are configured | Set pwquality config settings" lineinfile: path: /etc/security/pwquality.conf - regexp: ^{{ item.name }} - line: “{{ item.name }} = {{ item.value }}” + regexp: "{{ item.regexp }}" + line: "{{ item.line }}" with_items: - - { name: minlen, value: “{{ rhel8cis_pam_password.minlen }}” } - - { name: minclass, value: “{{ rhel8cis_pam_password.minclass }}” } + - { regexp: '^minlen', line: 'minlen = {{ rhel8cis_pam_password.minlen }}' } + - { regexp: '^minclass', line: 'minclass = {{ rhel8cis_pam_password.minclass }}' } - name: "5.5.1 | PATCH | Ensure password creation requirements are configured | Set system-auth and password-auth retry settings" lineinfile: