Allow exceptions for RHEL-08-010380 enforcement

ansible-lockdown / RHEL8-STIG

Ansible role for Red Hat 8 STIG Baseline

https://ansible-lockdown.readthedocs.io

MIT License

95 stars 57 forks source link

Allow exceptions for RHEL-08-010380 enforcement #278

Open prestonSeaman2 opened 3 months ago

prestonSeaman2 commented 3 months ago

Feature Request or Enhancement

Feature [x]
Enhancement []

Summary of Request When the RHEL-08-010380 task runs it removes the NOPASSWD from certain sudoers file. This causes an issue in some cases when it comes to privilege escalation. For example when 010381 is run because it is asking for a password to authenticate privilege escalation attempt.

Describe Alternatives You've Considered Give option to allow exceptions to the RHEL-08-010380 task.

uk-bolly commented 2 months ago

hi @prestonSeaman2

Great idea, i am looking to implement now for the next release.

Thanks

uk-bolly