add passwd vars

vars/Debian.yml

@@ -12,3 +12,8 @@ os_shadow_perms:
   owner: root
   group: shadow
   mode: '0640'
+
+os_passwd_perms:
+  owner: root
+  group: root
+  mode: '0644'

vars/Oracle Linux.yml

@@ -10,3 +10,8 @@ os_shadow_perms:
   owner: root
   group: root
   mode: '0600'
+
+os_passwd_perms:
+  owner: root
+  group: root
+  mode: '0644'

vars/RedHat.yml

@@ -11,8 +11,7 @@ os_shadow_perms:
   group: root
   mode: '0600'
 
-sysctl_rhel_config:
-  # ExecShield protection against buffer overflows
-  kernel.exec-shield: 1
-  # Syncookies is used to prevent SYN-flooding attacks.
-  net.ipv4.tcp_syncookies: 1
+os_passwd_perms:
+  owner: root
+  group: root
+  mode: '0644'