Mirrors/linux-baseline
2
0
Fork 0
mirror of https://github.com/dev-sec/linux-baseline synced 2024-11-26 13:00:21 +00:00
Code Issues Projects Releases Packages Wiki Activity
302 commits 17 branches 31 tags 478 KiB
Commit graph

302 commits

This branch
This branch
All branches
Author SHA1 Message Date
dev-sec CI
80e931fabb update inspec.yml and changelog 2021-01-26 10:46:01 +00:00
schurzi
91f288678c
Merge pull request #144 from dev-sec/github_action 
add github action for tests, replace travis
 2021-01-26 11:43:23 +01:00
Sebastian Gumprich
ce7cf2a184 add scheduled run 
Signed-off-by: Sebastian Gumprich <sebastian.gumprich@t-systems.com>
 2021-01-26 09:13:05 +01:00
Sebastian Gumprich
c697beb94a rm travis 
Signed-off-by: Sebastian Gumprich <sebastian.gumprich@t-systems.com>
 2021-01-25 21:18:59 +01:00
Sebastian Gumprich
936fcf2bec rename cop 
Signed-off-by: Sebastian Gumprich <sebastian.gumprich@t-systems.com>
 2021-01-25 21:16:15 +01:00
Sebastian Gumprich
103e71d2f0 add github action for testing 
Signed-off-by: Sebastian Gumprich <sebastian.gumprich@t-systems.com>
 2021-01-25 21:14:09 +01:00
dev-sec CI
ae6af7c007 update inspec.yml and changelog 2021-01-25 09:09:00 +00:00
Danny
bc7d6483ab
Fix tiny typo (#143) 
rigths -> rights

Signed-off-by: Danny <1330413+danwit@users.noreply.github.com>
 2021-01-25 10:06:25 +01:00
dev-sec CI
11638378f2 update inspec.yml and changelog 2020-12-28 08:42:08 +00:00
Michée lengronne
8fa58f7319
Merge pull request #142 from mcgege/arp-ignore 
Allow arp_ignore = 2
 2020-12-28 09:39:44 +01:00
Michael Geiger
8f028d0386 Setting net.ipv4.conf.all.arp_ignore = 2 is used as a secure default in 
many places now and should be a valid option

Signed-off-by: Michael Geiger <info@mgeiger.de>
 2020-12-26 11:37:06 +01:00
dev-sec CI
150f365db3 update inspec.yml and changelog 2020-12-16 21:07:00 +00:00
Michée lengronne
a0de5c6553
Merge pull request #141 from schurzi/docker_cpuvuln 
only check cpu vulnerabilities if not in container
 2020-12-16 22:04:11 +01:00
Martin Schurz
beb89ca8f1 only check cpu vulnerabilities if not in container 
Signed-off-by: Martin Schurz <Martin.Schurz@t-systems.com>
 2020-12-16 21:22:48 +01:00
dev-sec CI
6468210bf7 update inspec.yml and changelog 2020-11-05 09:58:08 +00:00
Sebastian Gumprich
f2fad5442b
Merge pull request #138 from imjoseangel/ISSUE114 
feat(osbaseline): support validation for cpu vulnerabilities
 2020-11-05 10:55:41 +01:00
imjoseangel
f0873c7613
Add both vuln and Vuln 
Signed-off-by: imjoseangel <josea.munoz@gmail.com>
 2020-11-05 09:33:37 +01:00
imjoseangel
b03f36e508
Easiest solution for vuln string 
Signed-off-by: imjoseangel <josea.munoz@gmail.com>
 2020-11-05 09:11:52 +01:00
imjoseangel
a936317204
feat(osbaseline): support validation for cpu vulnerabilities 
Detects if vulnerabilities directory exists. If so checks all the files inside if any.

Signed-off-by: imjoseangel <josea.munoz@gmail.com>
 2020-11-05 09:11:27 +01:00
dev-sec CI
8ee448e3e2 update inspec.yml and changelog 2020-08-25 13:40:55 +00:00
Sebastian Gumprich
bb464225bb
Merge pull request #136 from dev-sec/arch_support 
add archlinux-support for audit-check
 2020-08-25 15:38:20 +02:00
Sebastian Gumprich
6908002ab1 add archlinux-support for audit-check 
Signed-off-by: Sebastian Gumprich <github@gumpri.ch>
 2020-08-22 14:05:24 +02:00
dev-sec CI
aa5adfa859 update inspec.yml and changelog 2020-07-23 12:41:27 +00:00
Michée lengronne
86e23d4d56
Merge pull request #134 from dev-sec/version_alignment 
The release draft references the correct SHA
 2020-07-23 14:39:00 +02:00
Michée Lengronne
014d55093e The release draft references the correct SHA 
Signed-off-by: Michée Lengronne <michee.lengronne@coppint.com>
 2020-07-23 14:34:53 +02:00
dev-sec CI
85bc5a3709 update inspec.yml and changelog 2020-06-30 13:11:39 +00:00
Sebastian Gumprich
074a871d31
Merge pull request #132 from imjoseangel/feature/checkpasswdhashes 
Adds /etc/passwd format check
 2020-06-30 14:35:30 +02:00
imjoseangel
e20da94418 Removing exclamation as it is only for shadowi 
Signed-off-by: imjoseangel <josea.munoz@gmail.com>
 2020-06-30 14:14:55 +02:00
imjoseangel
748cfb26c8 Adds exclamation and asterisk as requested 
Signed-off-by: imjoseangel <josea.munoz@gmail.com>
 2020-06-29 23:13:21 +02:00
imjoseangel
3645c40723 Adds /etc/passwd format check 
Signed-off-by: imjoseangel <josea.munoz@gmail.com>
 2020-06-28 20:57:32 +02:00
dev-sec CI
1365044123 update inspec.yml and changelog 2020-05-19 14:30:13 +00:00
Michée lengronne
97a14b83a5
Merge pull request #131 from dev-sec/changelog_before 
CHANGELOG for RELEASE done before the push to avoid breaking
 2020-05-19 16:28:09 +02:00
Michée Lengronne
c19d1cf690 CHANGELOG for RELEASE done before the push to avoid breaking 
Signed-off-by: Michée Lengronne <michee.lengronne@coppint.com>
 2020-05-19 16:25:40 +02:00
dev-sec CI
ce128cb374 update inspec.yml and changelog 2020-05-19 14:03:49 +00:00
Michée lengronne
0df599e628
Merge pull request #130 from dev-sec/release_trigger 
release trigger
 2020-05-19 15:48:22 +02:00
Michée Lengronne
a3156b23e0 release trigger 
Signed-off-by: Michée Lengronne <michee.lengronne@coppint.com>
 2020-05-19 15:46:21 +02:00
dev-sec CI
3aaca7be98 update changelog 2020-05-19 10:20:02 +00:00
dev-sec CI
631a6f60a9 update inspec.yml and changelog 2020-05-19 10:17:21 +00:00
Michée lengronne
f5a477b56e
Merge pull request #129 from dev-sec/align_versions 
align versions
 2020-05-19 12:15:28 +02:00
Michée Lengronne
54150cb8d0 align versions 
Signed-off-by: Michée Lengronne <michee.lengronne@coppint.com>
 2020-05-19 12:12:47 +02:00
dev-sec CI
39912896da update changelog 2020-05-19 10:11:21 +00:00
dev-sec CI
e61a71dc21 update inspec.yml and changelog 2020-05-19 10:07:07 +00:00
Michée lengronne
09a94ba454
Merge pull request #128 from dev-sec/github_actions 
github actions
 2020-05-19 12:05:05 +02:00
Michée Lengronne
6021739fc5 github actions 
Signed-off-by: Michée Lengronne <michee.lengronne@coppint.com>
 2020-05-19 11:25:18 +02:00
Christoph Hartmann
cddd790870 2.4.0 2020-03-26 14:19:46 +01:00
Patrick Münch
1233a136f3
Merge pull request #125 from b-dean/allow-ipv6-forwarding 
skip the sysctl-19 control when sysctl_forwarding is true
 2019-12-12 08:17:21 +01:00
Ben Dean
295683c617
skip the sysctl-19 control when sysctl_forwarding is true 
fixes #124

Signed-off-by: Ben Dean <ben.dean@ontariosystems.com>
 2019-12-02 18:41:31 -05:00
Christoph Hartmann
eb81362d4e
Merge pull request #123 from dev-sec/missing-pkg-control 
add documentation for missing package-04 control
 2019-09-19 10:18:36 +02:00
Christoph Hartmann
2ea93b2d09 add documentation for missing package-04 control 
Signed-off-by: Christoph Hartmann <chris@lollyrock.com>
 2019-09-19 09:58:51 +02:00
Christoph Hartmann
fe0ac1c450
Merge pull request #119 from jjasghar/jjasghar/deprication 
Fixing some deprecation notices
 2019-09-19 09:54:08 +02:00