issues
search
dev-sec
/
ansible-collection-hardening
This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
http://dev-sec.io/
Apache License 2.0
3.93k
stars
721
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Disabled ssh.socket causes failure of ubuntu upgrade to 24.04
#793
northys
opened
21 hours ago
0
chore(deps): update ansible/ansible-lint digest to 25f783c
#792
renovate[bot]
opened
2 days ago
0
chore(deps): update dependency ansible-core to v2.17.4
#791
renovate[bot]
opened
4 days ago
0
molecule scenario ssh_hardening if failing due to missing docker image
#790
seven-beep
opened
1 week ago
1
Provide granular noop for shh configuration
#789
seven-beep
opened
1 week ago
2
chore(deps): update actions/setup-python digest to f677139
#788
renovate[bot]
closed
1 week ago
0
getent_shadow empty
#787
rvodden
opened
3 weeks ago
3
chore(deps): update dependency ansible-core to v2.17.3
#786
renovate[bot]
closed
1 month ago
0
Problem with os_always_ignore_users --> template error while templating string: no test named 'in'
#785
tsmalmbe
opened
1 month ago
1
Update Debian compatibility
#784
schurzi
closed
1 month ago
0
Update to current Fedora releases
#783
schurzi
closed
1 month ago
2
Remove deprecated rebuild of initrd
#782
schurzi
closed
1 month ago
1
chore(deps): update patrickjahns/version-drafter-action digest to 2076fa4
#781
renovate[bot]
closed
1 month ago
0
Allow skipping /proc mount options management
#780
Tristan971
opened
1 month ago
0
chore(deps): update ansible/ansible-lint digest to 95382d3
#779
renovate[bot]
closed
1 month ago
0
chore(deps): update actions/setup-python digest to 39cd149
#778
renovate[bot]
closed
1 month ago
0
remove tests for FreeBSD12 since it's out of support
#777
schurzi
closed
2 months ago
0
chore(deps): pin dependencies
#776
renovate[bot]
closed
2 months ago
0
Use best-practice preset for renovate
#775
schurzi
closed
2 months ago
0
Ensure that ssh is installed (cf #771)
#774
Byh0ki
closed
2 months ago
11
Pin GitHub Actions using Frizbee
#773
rdimitrov
closed
2 months ago
2
option to disable regeneration of ssh private key
#772
gowenpotato
closed
2 months ago
3
ssh: explicitly enable or disable the service at boot
#771
Byh0ki
closed
2 months ago
0
Deprecate Centos Stream 8
#770
rndmh3ro
closed
3 months ago
0
disable systemd socket activation
#769
rndmh3ro
closed
2 months ago
0
ssh hardening role fails when `ssh_permit_root_login` var is set on ubuntu 24.04
#768
gpoblon
closed
3 months ago
2
centos7 is eol, remove it
#767
rndmh3ro
closed
3 months ago
3
fix spelling
#766
rndmh3ro
closed
3 months ago
0
do not force type of ssh_gateway_ports
#765
rndmh3ro
closed
3 months ago
0
Ubuntu 24.04 support
#764
camaeel
closed
1 month ago
1
Support systemd socket activation for sshd
#763
schurzi
closed
2 months ago
2
Change ssh config verify to workaround missing priv-separation dir
#762
rndmh3ro
closed
2 months ago
3
feat: add fedora 40 to test matrix
#761
nejch
closed
1 month ago
4
ci: define permissions for enforce-labels workflow
#760
fgreinacher
closed
4 months ago
1
[Proposal] Restrict etc/cron* to root user only, add Password policies
#759
AhmedShaheen-MEC
closed
2 months ago
1
Release 9.0.2
#758
whysthatso
closed
4 months ago
1
os_hardening fails when setting vm.mmap_rnd_bits
#757
hrmck
closed
4 months ago
3
chore(deps): update dependency ansible-core to v2.17.2
#756
renovate[bot]
closed
1 month ago
4
`ssh_gateway_ports` is documented to accept 'clientspecified' string, but only accepts bools
#755
particleflux
closed
3 months ago
1
Update dependency ansible-core to v2.16.5
#754
renovate[bot]
closed
5 months ago
0
Add pam.d flags to maintain compatiblity with FreeIPA deployments.
#753
BlamKiwi
opened
5 months ago
1
Error: Missing privilege separation directory: /run/sshd
#752
fungiboletus
closed
1 month ago
13
Update dependency ansible-core to v2.16.4
#751
renovate[bot]
closed
6 months ago
0
Make Publickey authentication configurable
#750
debbabi
closed
5 months ago
1
Add ssh_pubkey_authentication variable to ssh hardening
#749
debbabi
closed
5 months ago
0
Task "Configure hardened options for mounts" overrides fstab entries with UUID or LABEL as source with device path
#748
networkhell
opened
6 months ago
2
Ansible Linting
#747
willifehler
closed
6 months ago
2
syslog-group not existing in Ubuntu 22.04 minimal
#746
rndmh3ro
opened
7 months ago
1
Update ansible/ansible-lint action to v24
#745
renovate[bot]
closed
7 months ago
0
Always update Vagrant Boxes before using
#744
schurzi
closed
7 months ago
0
Next