Describe the Issue
In my opinion, after analyzing why CIS reports a failure for rule 1.4.2 Ensure permissions on bootloader config are configured, the current value set in defaults/main.yml file for variable ubtu22cis_grub_file is wrong.
I think it may ended up with this value, as this is a mix between:
DEFAULT FILE: /etc/default/grub
THE AUTO-GENERATED GRUB FILE: /boot/grub/grub.cfg
Expected Behaviorubtu22cis_grub_file: /etc/grub/grub.cfg -> CIS reports rule 1.4.2 as passed
Actual Behaviorubtu22cis_grub_file: /etc/default/grub.cfg -> CIS reports rule 1.4.2 as failed
Control(s) Affected
1.4.2
Environment (please complete the following information):
Describe the Issue In my opinion, after analyzing why CIS reports a failure for rule
1.4.2 Ensure permissions on bootloader config are configured
, the current value set indefaults/main.yml
file for variableubtu22cis_grub_file
is wrong.I think it may ended up with this value, as this is a mix between:
/etc/default/grub
/boot/grub/grub.cfg
Expected Behavior
ubtu22cis_grub_file: /etc/grub/grub.cfg
-> CIS reports rule 1.4.2 as passedActual Behavior
ubtu22cis_grub_file: /etc/default/grub.cfg
-> CIS reports rule 1.4.2 as failedControl(s) Affected 1.4.2
Environment (please complete the following information):
Possible Solution I'll add a PR.