├── .gitattributes ├── .github ├── ISSUE_TEMPLATE │ ├── bug_report.md │ └── feature_request.md └── workflows │ └── ansible-linter.yml ├── .gitignore ├── CODE_OF_CONDUCT.md ├── CentOS7-CIS_Benchmark_level1.yml ├── CentOS7-CIS_Benchmark_level1_and_level2.yml ├── CentOS7-CIS_Benchmark_level2.yml ├── LICENSE ├── README.md ├── defaults └── main.yml ├── files └── etc │ └── systemd │ └── system │ └── tmp.mount ├── handlers └── main.yml ├── library └── grub_crypt.py ├── scripts ├── 6.2.10.sh ├── 6.2.11.sh ├── 6.2.12.sh ├── 6.2.13.sh ├── 6.2.14.sh ├── 6.2.15.sh ├── 6.2.16.sh ├── 6.2.17.sh ├── 6.2.18.sh ├── 6.2.19.sh ├── 6.2.6.sh ├── 6.2.7.sh ├── 6.2.8.sh ├── 6.2.9.sh ├── five_four_two.sh ├── rule_five_four_two.sh ├── rule_six_two_fifteen.sh ├── six_two_eight_rule.sh ├── six_two_eighteen_rule.sh ├── six_two_eleven_rule.sh ├── six_two_fifteen_rule.sh ├── six_two_fourteen_rule.sh ├── six_two_nine_rule.sh ├── six_two_nineteen_rule.sh ├── six_two_seven_rule.sh ├── six_two_seventeen_rule.sh ├── six_two_six_rule.sh ├── six_two_sixteen_rule.sh ├── six_two_ten_rule.sh ├── six_two_thirdteen_rule.sh └── six_two_twelve_rule.sh ├── tasks ├── main.yml ├── post.yml ├── prelim.yml ├── section1.yml ├── section2.yml ├── section3.yml ├── section4.yml ├── section5.yml └── section6.yml ├── templates ├── chrony.conf.j2 ├── etc │ ├── cron.allow.j2 │ ├── issue.j2 │ ├── issue.net.j2 │ ├── motd.j2 │ └── sysconfig │ │ └── chronyd.j2 ├── hosts.allow.j2 └── ntp.conf.j2 └── vars └── main.yml /.gitattributes: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/.gitattributes -------------------------------------------------------------------------------- /.github/ISSUE_TEMPLATE/bug_report.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/.github/ISSUE_TEMPLATE/bug_report.md -------------------------------------------------------------------------------- /.github/ISSUE_TEMPLATE/feature_request.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/.github/ISSUE_TEMPLATE/feature_request.md -------------------------------------------------------------------------------- /.github/workflows/ansible-linter.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/.github/workflows/ansible-linter.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/.gitignore -------------------------------------------------------------------------------- /CODE_OF_CONDUCT.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/CODE_OF_CONDUCT.md -------------------------------------------------------------------------------- /CentOS7-CIS_Benchmark_level1.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/CentOS7-CIS_Benchmark_level1.yml -------------------------------------------------------------------------------- /CentOS7-CIS_Benchmark_level1_and_level2.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/CentOS7-CIS_Benchmark_level1_and_level2.yml -------------------------------------------------------------------------------- /CentOS7-CIS_Benchmark_level2.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/CentOS7-CIS_Benchmark_level2.yml -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/README.md -------------------------------------------------------------------------------- /defaults/main.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/defaults/main.yml -------------------------------------------------------------------------------- /files/etc/systemd/system/tmp.mount: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/files/etc/systemd/system/tmp.mount -------------------------------------------------------------------------------- /handlers/main.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/handlers/main.yml -------------------------------------------------------------------------------- /library/grub_crypt.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/library/grub_crypt.py -------------------------------------------------------------------------------- /scripts/6.2.10.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.10.sh -------------------------------------------------------------------------------- /scripts/6.2.11.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.11.sh -------------------------------------------------------------------------------- /scripts/6.2.12.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.12.sh -------------------------------------------------------------------------------- /scripts/6.2.13.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.13.sh -------------------------------------------------------------------------------- /scripts/6.2.14.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.14.sh -------------------------------------------------------------------------------- /scripts/6.2.15.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.15.sh -------------------------------------------------------------------------------- /scripts/6.2.16.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.16.sh -------------------------------------------------------------------------------- /scripts/6.2.17.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.17.sh -------------------------------------------------------------------------------- /scripts/6.2.18.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.18.sh -------------------------------------------------------------------------------- /scripts/6.2.19.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.19.sh -------------------------------------------------------------------------------- /scripts/6.2.6.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.6.sh -------------------------------------------------------------------------------- /scripts/6.2.7.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.7.sh -------------------------------------------------------------------------------- /scripts/6.2.8.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.8.sh -------------------------------------------------------------------------------- /scripts/6.2.9.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/6.2.9.sh -------------------------------------------------------------------------------- /scripts/five_four_two.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/five_four_two.sh -------------------------------------------------------------------------------- /scripts/rule_five_four_two.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/rule_five_four_two.sh -------------------------------------------------------------------------------- /scripts/rule_six_two_fifteen.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/rule_six_two_fifteen.sh -------------------------------------------------------------------------------- /scripts/six_two_eight_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_eight_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_eighteen_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_eighteen_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_eleven_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_eleven_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_fifteen_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_fifteen_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_fourteen_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_fourteen_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_nine_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_nine_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_nineteen_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_nineteen_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_seven_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_seven_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_seventeen_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_seventeen_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_six_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_six_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_sixteen_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_sixteen_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_ten_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_ten_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_thirdteen_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_thirdteen_rule.sh -------------------------------------------------------------------------------- /scripts/six_two_twelve_rule.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/scripts/six_two_twelve_rule.sh -------------------------------------------------------------------------------- /tasks/main.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/tasks/main.yml -------------------------------------------------------------------------------- /tasks/post.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/tasks/post.yml -------------------------------------------------------------------------------- /tasks/prelim.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/tasks/prelim.yml -------------------------------------------------------------------------------- /tasks/section1.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/tasks/section1.yml -------------------------------------------------------------------------------- /tasks/section2.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/tasks/section2.yml -------------------------------------------------------------------------------- /tasks/section3.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/tasks/section3.yml -------------------------------------------------------------------------------- /tasks/section4.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/tasks/section4.yml -------------------------------------------------------------------------------- /tasks/section5.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/tasks/section5.yml -------------------------------------------------------------------------------- /tasks/section6.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/tasks/section6.yml -------------------------------------------------------------------------------- /templates/chrony.conf.j2: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/templates/chrony.conf.j2 -------------------------------------------------------------------------------- /templates/etc/cron.allow.j2: -------------------------------------------------------------------------------- 1 | root 2 | -------------------------------------------------------------------------------- /templates/etc/issue.j2: -------------------------------------------------------------------------------- 1 | {{ centos7cis_warning_banner }} 2 | -------------------------------------------------------------------------------- /templates/etc/issue.net.j2: -------------------------------------------------------------------------------- 1 | {{ centos7cis_warning_banner }} 2 | -------------------------------------------------------------------------------- /templates/etc/motd.j2: -------------------------------------------------------------------------------- 1 | {{ centos7cis_warning_banner }} 2 | -------------------------------------------------------------------------------- /templates/etc/sysconfig/chronyd.j2: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/templates/etc/sysconfig/chronyd.j2 -------------------------------------------------------------------------------- /templates/hosts.allow.j2: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/templates/hosts.allow.j2 -------------------------------------------------------------------------------- /templates/ntp.conf.j2: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/rdiers/CentOS7-CIS/HEAD/templates/ntp.conf.j2 -------------------------------------------------------------------------------- /vars/main.yml: -------------------------------------------------------------------------------- 1 | --- 2 | # vars file for RHEL7-CIS 3 | --------------------------------------------------------------------------------