mirror of
https://github.com/dev-sec/ansible-collection-hardening
synced 2024-11-14 02:47:06 +00:00
bf372f8493
Signed-off-by: Sebastian Gumprich <sebastian.gumprich@t-systems.com>
8 lines
333 B
YAML
8 lines
333 B
YAML
---
|
|
- name: verify 'gpgcheck' was not enabled for 'foo' repository (in whitelist)
|
|
command: grep -e 'gpgcheck\s*=\s*0' /etc/yum.repos.d/foo.repo
|
|
changed_when: false
|
|
|
|
- name: verify 'gpgcheck' was enabled for 'bar' repository (not in whitelist)
|
|
command: grep -e 'gpgcheck\s*=\s*1' /etc/yum.repos.d/bar.repo
|
|
changed_when: false
|