bfcf6c7423
This role contains around 150 controls from the 270+ controls that exist in the RHEL 6 STIG. New controls are still being added. Implements: blueprint security-hardening Change-Id: I0578f86bf42d55242bc72b97b40a5935a3cb18d6
10 lines
474 B
ReStructuredText
10 lines
474 B
ReStructuredText
Ubuntu checks packages against GPG signatures by default. It can be turned
|
|
off for all package installations by a setting in /etc/apt/apt.conf.d/ and we
|
|
search for that in the Ansible task. A warning is printed if the
|
|
``AllowUnauthenticated`` configuration option is present in the apt
|
|
configuration directories.
|
|
|
|
Please note that users can pass an argument on the apt command line
|
|
to bypass the checks as well, but that's outside the scope of this check
|
|
and remediation.
|