├── .ansible-lint ├── .gitignore ├── .yamllint ├── LICENSE ├── README.md ├── defaults └── main.yml ├── files ├── control-alt-delete.override ├── etc_sysconfig_ip6tables ├── etc_sysconfig_iptables ├── gdm-login-banner.sh ├── sys_command_files_with_bad_owner.sh ├── sys_command_files_with_bad_perms.sh ├── sys_libs_with_bad_owner.sh └── sys_libs_with_bad_perms.sh ├── handlers └── main.yml ├── library └── grub_crypt.py ├── meta └── main.yml ├── tasks ├── audit-cat1.yml ├── audit-cat2.yml ├── audit-cat3.yml ├── cat1.yml ├── cat2.yml ├── cat3.yml ├── main.yml ├── not_automated.yml ├── post.yml └── prelim.yml ├── templates └── ntp.conf.j2 ├── tests ├── README.md ├── ansible.cfg ├── apply_role.yml ├── deregister.yml ├── extra_vars_vagrant.yml ├── inventory ├── requirements.yml ├── role_idempotent_check.yml ├── test.yml ├── vagrant-inventory └── vagrant_provision.yml └── vars └── main.yml /.ansible-lint: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/.ansible-lint -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/.gitignore -------------------------------------------------------------------------------- /.yamllint: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/.yamllint -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/README.md -------------------------------------------------------------------------------- /defaults/main.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/defaults/main.yml -------------------------------------------------------------------------------- /files/control-alt-delete.override: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/files/control-alt-delete.override -------------------------------------------------------------------------------- /files/etc_sysconfig_ip6tables: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/files/etc_sysconfig_ip6tables -------------------------------------------------------------------------------- /files/etc_sysconfig_iptables: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/files/etc_sysconfig_iptables -------------------------------------------------------------------------------- /files/gdm-login-banner.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/files/gdm-login-banner.sh -------------------------------------------------------------------------------- /files/sys_command_files_with_bad_owner.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/files/sys_command_files_with_bad_owner.sh -------------------------------------------------------------------------------- /files/sys_command_files_with_bad_perms.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/files/sys_command_files_with_bad_perms.sh -------------------------------------------------------------------------------- /files/sys_libs_with_bad_owner.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/files/sys_libs_with_bad_owner.sh -------------------------------------------------------------------------------- /files/sys_libs_with_bad_perms.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/files/sys_libs_with_bad_perms.sh -------------------------------------------------------------------------------- /handlers/main.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/handlers/main.yml -------------------------------------------------------------------------------- /library/grub_crypt.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/library/grub_crypt.py -------------------------------------------------------------------------------- /meta/main.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/meta/main.yml -------------------------------------------------------------------------------- /tasks/audit-cat1.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tasks/audit-cat1.yml -------------------------------------------------------------------------------- /tasks/audit-cat2.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tasks/audit-cat2.yml -------------------------------------------------------------------------------- /tasks/audit-cat3.yml: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /tasks/cat1.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tasks/cat1.yml -------------------------------------------------------------------------------- /tasks/cat2.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tasks/cat2.yml -------------------------------------------------------------------------------- /tasks/cat3.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tasks/cat3.yml -------------------------------------------------------------------------------- /tasks/main.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tasks/main.yml -------------------------------------------------------------------------------- /tasks/not_automated.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tasks/not_automated.yml -------------------------------------------------------------------------------- /tasks/post.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tasks/post.yml -------------------------------------------------------------------------------- /tasks/prelim.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tasks/prelim.yml -------------------------------------------------------------------------------- /templates/ntp.conf.j2: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/templates/ntp.conf.j2 -------------------------------------------------------------------------------- /tests/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tests/README.md -------------------------------------------------------------------------------- /tests/ansible.cfg: -------------------------------------------------------------------------------- 1 | [defaults] 2 | retry_files_enabled = False 3 | -------------------------------------------------------------------------------- /tests/apply_role.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tests/apply_role.yml -------------------------------------------------------------------------------- /tests/deregister.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tests/deregister.yml -------------------------------------------------------------------------------- /tests/extra_vars_vagrant.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tests/extra_vars_vagrant.yml -------------------------------------------------------------------------------- /tests/inventory: -------------------------------------------------------------------------------- 1 | localhost 2 | -------------------------------------------------------------------------------- /tests/requirements.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tests/requirements.yml -------------------------------------------------------------------------------- /tests/role_idempotent_check.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tests/role_idempotent_check.yml -------------------------------------------------------------------------------- /tests/test.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tests/test.yml -------------------------------------------------------------------------------- /tests/vagrant-inventory: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tests/vagrant-inventory -------------------------------------------------------------------------------- /tests/vagrant_provision.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ansible-lockdown/RHEL6-STIG/HEAD/tests/vagrant_provision.yml -------------------------------------------------------------------------------- /vars/main.yml: -------------------------------------------------------------------------------- 1 | --------------------------------------------------------------------------------