Closed nejch closed 1 year ago
It seems like some versions of sestatus do not output Policy from config file, at least on Amazon Linux 2023 I can't get this from sestatus after appying ansible-collection-hardening's os_hardening role and rebooting.
Policy from config file
sestatus
Also looks like others have this condition https://www.stigviewer.com/stig/red_hat_enterprise_linux_7/2017-12-14/finding/V-71991:
If the "Policy from config file" is not set to "targeted", or the "Loaded policy name" is not set to "targeted", this is a finding.
/cc @schurzi @dlouzan
It seems like some versions of sestatus do not output
Policy from config file, at least on Amazon Linux 2023 I can't get this fromsestatusafter appying ansible-collection-hardening's os_hardening role and rebooting.Also looks like others have this condition https://www.stigviewer.com/stig/red_hat_enterprise_linux_7/2017-12-14/finding/V-71991:
/cc @schurzi @dlouzan