Releases: ovh/debian-cis
Releases · ovh/debian-cis
Release v3.1-0
- Add missing HARDENING_LEVEL var for some checks
- Add dealing with debian 11
- Add warning for unsupported distributions and debian version
- Remove bc dependency
- Add 1.8.1-4 comprehensive tests
- Add 3.1-3.x comprehensive tests
- Add missing 3.4.x checks and tests (exotic protocol)
- Add environment detection (container)
- Improve kernel module detection
- Improve partition detection
- Add cli option to override loglevel
- Improve 5.1.8 to allow more restrictive permissions
- Upgrade mac and key to be debian10 CIS compliant
- Fix path in 1.6.4
Release v3.0-1
- Add workflows for github action
- Update man page and README.md
Release v3.0
- Migration to debian10 numbering
- Add utils to compare file permissions to a list of authorized permissions
- Update skel, update documentation
- Add 1.1.1.7 check and test (disable FAT)
- Add 1.1.23 check and test (disable usb storage)
- Add 1.7.x checks and tests (apparmor)
- Add 2.2.1.2 check and test (systemd-timesyncd)
- Add 4.1.1.1,4 check (auditd)
- Add 4.2.1.6 check (syslog-ng)
- Add 4.2.2.x checks and tests (journald)
- Add 4.4 checks and tests (logrotate permission)
- Add 5.2.20-23 checks and tests (sshd)
- Add 6.1.3-9 checks (/etc/passwd-, /etc/shadow-, ...)