Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Control 7.2.9 Ensure local interactive user home directories are configured uses acl module with default set to true #29

Open
DianaMariaDDM opened this issue Feb 19, 2025 · 0 comments
Open

Control 7.2.9 Ensure local interactive user home directories are configured uses acl module with default set to true #29

DianaMariaDDM opened this issue Feb 19, 2025 · 0 comments
Labels
bug Something isn't working

Comments

@DianaMariaDDM
Copy link

Describe the Issue
The tasks for implementing control 7.2.9 use the ansible.posix.acl module with the default parameter set to true.

Expected Behavior
The permissions should be applied to the existing files.

Actual Behavior
With default being set to true, the permissions are only applied for future files. Existing files do not get updated which leads to a Fail result in the CIS Assessment.

Control(s) Affected

  • Control 7.2.9

Environment (please complete the following information):

  • branch being used: [e.g. devel]

Additional Notes
One question, why do you still use the ansible.posix.acl module to implement this control and not use directly the ansible.builtin.file module?

Possible Solution
The solution will be provided in a PR.
@DianaMariaDDM DianaMariaDDM added the bug Something isn't working label Feb 19, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@DianaMariaDDM