RHEL9-CIS 1.0.0 - Update May2024

Remediate:

• Issues closed and PRs merged - What's changed
• Pre-commit updates
• Many improvements to different controls

Audit:

• Audit_only ability now added to run standalone audit
  • audit_only: true
• Related Audit repo updated to improve tests audit binary(goss updated to latest version)

Many thanks to all the contributors and discord community members for feedback

What's Changed

• Sept23 to devel by @uk-bolly in #93
• updated discord link in readme by @uk-bolly in #95
• fix rule_1.8.1.1 by @uk-bolly in #96
• Goss version by @uk-bolly in #97
• Sept lint by @uk-bolly in #98
• updated 5.6.5 by @uk-bolly in #99
• updated collections by @uk-bolly in #100
• updated workflow for galaxy and versions by @uk-bolly in #108
• [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #110
• Audit only enhancement and goss update by @uk-bolly in #120
• [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #119
• Update cis_5.6.1.x.yml by @senihucar in #122
• [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #127
• Fixed chrony configuration options by @dulin in #121
• Removing redundant conditional statements by @ipruteanu-sie in #129
• Timeout value defined in defaults/main.yml file not used by @ipruteanu-sie in #133
• Masking service when server package is needed by @ipruteanu-sie in #136
• Using correct conditional for ftpd by @ipruteanu-sie in #138
• 3.4.2.5 conditional fix by @ipruteanu-sie in #140
• find hidden files in /var/log for 4.3.2 by @Corey0219 in #103
• Using rhel9cis_authselect['options'], otherwise not used at all by @ipruteanu-sie in #145
• Siemens/feat/4.2.1.3conditional and section header by @ipruteanu-sie in #143
• Remove trailing comma to align with other roles by @jLemmings in #152
• Adding missing lines to usr: sysctl.d/50-default.conf by @brisky in #105
• Adding new entry in /etc/pam.d/system-auth by @brisky in #112
• Siemens/feat/audit vars refactoring by @ipruteanu-sie in #148
• Corrections to tags and a variable by @sickbock in #151
• Remove trailing comma to align with other roles by @jLemmings in #154
• [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #159
• fixing some mismatched tags and tasks in 5.6.1.x by @numericillustration in #150
• Using a patch to refactor doc-extension by @ipruteanu-sie in #164
• Siemens/feat/bgrubby usage for params by @ipruteanu-sie in #166
• [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #167
• Update cis_6.1.x.yml by @Illibur in #169
• oscap scan found 2 issues in sshd configuration override files by @bbaassssiiee in #174
• Replacing vars according to Audit needs by @ipruteanu-sie in #131
• Bugfix 5 3 4 against issue #176 by @RoboPickle in #177
• fix: idempotency molecule issue fixed for logfiles #173 by @rjacobs1990 in #175
• Feb24 updates by @uk-bolly in #179
• [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #178
• Gpg import for rhel servers by @uk-bolly in #185
• March 24 to devel by @uk-bolly in #186
• Address issues in 4.1.1.2 and 4.1.1.3 including idempotent status by @RoboPickle in #188
• [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #192
• April_24 updates by @uk-bolly in #201
• [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #200
• [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #202
• updated audit binary assert statement by @uk-bolly in #204
• Release to main by @uk-bolly in #205

New Contributors

• @pre-commit-ci made their first contribution in #110
• @senihucar made their first contribution in #122
• @dulin made their first contribution in #121
• @ipruteanu-sie made their first contribution in #129
• @Corey0219 made their first contribution in #103
• @jLemmings made their first contribution in #152
• @brisky made their first contribution in #105
• @sickbock made their first contribution in #151
• @numericillustration made their first contribution in #150
• @Illibur made their first contribution in #169
• @bbaassssiiee made their first contribution in #174
• @RoboPickle made their first contribution in #177
• @rjacobs1990 made their first contribution in #175

Full Changelog: v1.1.0...1.2.0