-
Notifications
You must be signed in to change notification settings - Fork 684
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Ansible remediations are using not permitted shell commands #10852
Comments
Do you have the list of commands that are being executed and in which files they are present? |
Added the list of commands executed to the Actual Results section. |
I sent the #10887 PR to fix the following two lines:
The third line:
is used by these two rules:
But I didn't find any simple way to replace the respective Ansible task. It is possible, but would require a refactoring of the Playbook and more detailed tests to ensure most of the cases are covered. My proposal is to include this line in the exceptions at the moment. Would you agree @cortesana and @mildas ? |
@marcusburghardt Yes, I agree. Thank you for fix! |
Description of problem:
Ansible remediations are using shell commands that are not allowed.
SCAP Security Guide Version:
master branch as of 2023-07-14
Operating System Version:
RHEL 9.2, RHEL 8.8, RHEL 7.9
Steps to Reproduce:
playbook.yml
) contains only allowed shell commands by running:Actual Results:
Expected Results:
Additional Information/Debugging Steps:
The text was updated successfully, but these errors were encountered: