Open brandtkeller opened 5 months ago
This issue is intended to be an investigation with docs/ADR as the output.
In consideration of a shell
domain - review the capability for Lula offer the generic shell
domain with an optional allow list
or configuration for commands that are permitted without execute
escalation. Shifting initial responsibility for managing what is permitted and permissions to the end-user.
Is your feature request related to a problem? Please describe.
Ability for Lula to support the validation of STIG or other benchmarks as parallel efforts to authorization or accreditation processes.
Describe the solution you'd like
Describe alternatives you've considered
Additional context
May require direct shell access (Not uncommon for various STIG tooling)