Navigation

Changeset 200

Timestamp:

06/24/08 15:53:16 (2 months ago)

Author:

slawrence

Message:

Update kickstart to pass GEN2760 SRR test.
Update stig scripts to match recent kickstart changes.

Files:

r199	r200
702	702	# unauthorized file access attempts
703	703	EOF
704		echo -n "-a exit,always -F success=0 -S open -S mknod -S pipe -S mkdir -S creat -S truncate -S ftruncate" >> /etc/audit/audit.rules
	704	echo "-a exit,always -S open -F success=0" >> /etc/audit/audit.rules
	705	echo -n "-a exit,always -F success=0 -S mknod -S pipe -S mkdir -S creat -S truncate -S ftruncate" >> /etc/audit/audit.rules
705	706	if [ "$(uname -i)" != "x86_64" ]
706	707	then

r146	r200
28	28	encryption or biometric access controls provide security for the benefit of
29	29	the USG. These protections are not provided for your benefit or privacy and
30		may be modified or elimiated at the USG's discretion.
	30	may be modified or eliminated at the USG's discretion.
31	31
32	32	EOF

r113	r200
9	9	echo 'Patching GEN000500: Set inactive shell timeout'
10	10	echo '==================================================='
11		echo "TMOUT=900" >> /etc/profile
	11	echo "readonly TMOUT=900" >> /etc/profile

r197	r200
6	6	echo ' Patching GEN002560: Set default umask.'
7	7	echo '==================================================='
8		~~echo "umask 077" >>~~ /etc/bashrc
9		~~echo "umask 077" >>~~ /etc/csh.cshrc
	8	sed -i "/umask/ c\umask 077" /etc/bashrc
	9	sed -i "/umask/ c\umask 077" /etc/csh.cshrc

r197	r200
9	9	# unauthorized file access attempts
10	10	EOF
11		echo -n "-a exit,always -F success=0 -S open -S mknod -S pipe -S mkdir -S creat -S truncate -S ftruncate" >> /etc/audit/audit.rules
	11	echo "-a exit,always -S open -F success=0" >> /etc/audit/audit.rules
	12	echo -n "-a exit,always -F success=0 -S mknod -S pipe -S mkdir -S creat -S truncate -S ftruncate" >> /etc/audit/audit.rules
12	13	if [ "$(uname -i)" != "x86_64" ]
13	14	then

* Note large changesets can take awhile to generate.