Major Hayden 9058a3f084 Improved search for unlocked system accounts ...

This patch adds a better check for system accounts that aren't
unlocked. The new logic meets the requirement of V-38496 from the
STIG better than the previous version. Only unlocked accounts with
UID < 500 will trigger the failure/violation.

Closes-Bug: 1550442

Change-Id: I18ccbd8e1cd7c311521d0ffdfcf6f46dbc4e395d

2016-03-24 10:09:49 -05:00

..

apt.yml

Check mode compatibility for security role

2015-12-02 20:50:33 +00:00

auditd.yml

Only update apt cache if necessary

2016-02-15 14:49:43 +01:00

auth.yml

Improved search for unlocked system accounts

2016-03-24 10:09:49 -05:00

boot.yml

Security: Check for grub.cfg first

2016-02-29 14:15:29 -06:00

console.yml

Enable role testing and make structure ansible-galaxy compatible

2015-10-09 11:47:23 +00:00

file_perms.yml

V-3864{2,5,7,9}, V-38651: Umask adjustments

2015-10-27 09:09:23 -05:00

kernel.yml

V-38546: Disable IPv6 system-wide

2015-10-15 07:50:33 -05:00

mail.yml

Fix Postfix mynetworks if IPv6 is disabled

2016-02-03 09:39:36 -06:00

main.yml

Check mode compatibility for security role

2015-12-02 20:50:33 +00:00

misc.yml

Fixing testing bug

2015-12-07 15:18:29 -06:00

nfsd.yml

Replace debug with fail

2015-10-14 14:29:07 -05:00

services.yml

Check mode compatibility for security role

2015-12-02 20:50:33 +00:00

sshd.yml

Enable role testing and make structure ansible-galaxy compatible

2015-10-09 11:47:23 +00:00