openstack/ansible-hardening
Code Issues Proposed changes
ansible-hardening/templates
History
Major Hayden fa657903bc Apply pam_faillock restrictions [+Docs] 
This patch applies pam_faillock restrictions to Red Hat and CentOS servers.
It's an optional change since it could cause issues with existing production
deployments.

Ubuntu doesn't have pam_faillock, but it may be possible to use fail2ban to
achieve some of the same goals later.

Documentation is included.

Implements: blueprint security-rhel7-stig
Change-Id: Ib2d22deff2d97786b84a550313f6ca08cf10cef8
2016-12-05 08:47:59 +00:00
..
chrony.conf.j2
Merge "Add new parameter 'security_ntp_bind_local_interfaces_only'"
2016-05-27 12:52:11 +00:00
dconf-gdm-banner-message.j2
Enable graphical login banner
2016-11-18 13:48:43 -06:00
dconf-screensaver-lock.j2
Set graphical session locks
2016-11-14 08:15:49 -06:00
dconf-session-user-config-lockout.j2
Set graphical session locks
2016-11-14 08:15:49 -06:00
jail.local.j2
Use ansible_managed variable in templates
2016-05-19 13:57:16 +02:00
osas-auditd-rhel7.j2
Set auditd failure flag [+Docs]
2016-11-29 16:20:32 -06:00
osas-auditd.j2
Add network conf auditing on CentOS
2016-09-12 14:51:58 -05:00
pam_faillock.j2
Apply pam_faillock restrictions [+Docs]
2016-12-05 08:47:59 +00:00
pwquality.conf.j2
Set minimum password length [+Docs]
2016-12-02 19:57:14 +00:00
sshd_config_block.j2
Configure sshd based on the RHEL 7 STIG
2016-11-09 17:44:08 +00:00
ZZ_aide_exclusions.j2
Use ansible_managed variable in templates
2016-05-19 13:57:16 +02:00