search

ansible-lockdown / UBUNTU22-CIS

Ansible role for Ubuntu22 CIS Baseline
https://ansible-lockdown.readthedocs.io/en/latest/
MIT License
181 stars 80 forks source link

1.8.4 rule: extra gdm3 question #126

Closed ipruteanu-sie closed 10 months ago

ipruteanu-sie commented 1 year ago

Question While analyzing issue #124, I was wondering if, for rule 1.8.4: path: /etc/dconf/profile/session shouldn't be replaced by /etc/dconf/profile/{{ ubtu22cis_dconf_db_name }} ?

Is there a special purpose for this hardcoded value: session ? A lot of docs(e.g. this@Tenable) mention /etc/dconf/profile/local, local being the default value for {{ ubtu22cis_dconf_db_name }}, that's why I wanted to double-check with you if I misunderstood this rule.

Environment (please complete the following information): N/A

uk-bolly commented 12 months ago

hi @ipruteanu-sie

Great catch on this the rule has been taken too literally. I have amended accordingly. Please refer to issues_and_collections branch.

many thanks

uk-bolly