Tree - rpms/scap-security-guide

Forked from rpms/scap-security-guide 3 years ago

Blob History Raw

		1e6968	`From 8098e6e16c1b7a403c27744508c9892d482061fa Mon Sep 17 00:00:00 2001`
		1e6968	`From: Watson Sato <wsato@redhat.com>`
		1e6968	`Date: Thu, 14 Sep 2017 19:07:46 +0200`
		1e6968	`Subject: [PATCH] Drop firewalld default zone and sshd port fixes`
		1e6968
		1e6968	`Providing a fix for 'firewalld_sshd_port_enabled' can be very complicated`
		1e6968	`and will very likely not fit to everyone's use case. And because of that`
		1e6968	`we drop remediation for 'set_firewalld_sshd_port', which is causing the`
		1e6968	`remediated machine to refuse all connections.`
		1e6968	`---`
		1e6968	`shared/templates/static/bash/set_firewalld_default_zone.sh \| 10 ----`
		1e6968	`1 file changed, 10 deletions(-)`
		1e6968	`delete mode 100644 shared/templates/static/bash/set_firewalld_default_zone.sh`
		1e6968
		1e6968	`diff --git a/shared/templates/static/bash/set_firewalld_default_zone.sh b/shared/templates/static/bash/set_firewalld_default_zone.sh`
		1e6968	`deleted file mode 100644`
		1e6968	`index ada8b68a7..000000000`
		1e6968	`--- a/shared/templates/static/bash/set_firewalld_default_zone.sh`
		1e6968	`+++ /dev/null`
		1e6968	`@@ -1,6 +0,0 @@`
		1e6968	`-# platform = Red Hat Enterprise Linux 7`
		1e6968	`-grep -q ^DefaultZone= /etc/firewalld/firewalld.conf && \`
		1e6968	`- sed -i "s/DefaultZone=.*/DefaultZone=drop/g" /etc/firewalld/firewalld.conf`
		1e6968	`-if ! [ $? -eq 0 ]; then`
		1e6968	`- echo "DefaultZone=drop" >> /etc/firewalld/firewalld.conf`
		1e6968	`-fi`