usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-03-04 01:12:00 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity

added grep -qE to fix to prevent fix from double fixing

Browse Source
This commit is contained in:
Bob Gendler
2021-06-24 12:54:10 -04:00
parent 7241e43bd7
commit 2d220935dd
8 changed files with 8 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
rules/audit/audit_flags_aa_configure.yaml
View File

@@ -13,7 +13,7 @@ result:
fix: |
[source,bash]
----
/usr/bin/sed -i.bak '/^flags/ s/$/,aa/' /etc/security/audit_control; /usr/sbin/audit -s
/usr/bin/grep -qE "^flags.*[^-]aa" /etc/security/audit_control || /usr/bin/sed -i.bak '/^flags/ s/$/,aa/' /etc/security/audit_control; /usr/sbin/audit -s
----
references:
cce:

2
rules/audit/audit_flags_ad_configure.yaml
View File

@@ -17,7 +17,7 @@ result:
fix: |
[source,bash]
----
/usr/bin/sed -i.bak '/^flags/ s/$/,ad/' /etc/security/audit_control; /usr/sbin/audit -s
/usr/bin/grep -qE "^flags.*[^-]ad" /etc/security/audit_control || /usr/bin/sed -i.bak '/^flags/ s/$/,ad/' /etc/security/audit_control; /usr/sbin/audit -s
----
references:
cce:

2
rules/audit/audit_flags_ex_configure.yaml
View File

@@ -14,7 +14,7 @@ result:
fix: |
[source,bash]
----
/usr/bin/sed -i.bak '/^flags/ s/$/,-ex/' /etc/security/audit_control; /usr/sbin/audit -s
/usr/bin/grep -qE "^flags.*-ex" /etc/security/audit_control || /usr/bin/sed -i.bak '/^flags/ s/$/,-ex/' /etc/security/audit_control; /usr/sbin/audit -s
----
references:
cce:

2
rules/audit/audit_flags_fd_configure.yaml
View File

@@ -15,7 +15,7 @@ result:
fix: |
[source,bash]
----
/usr/bin/sed -i.bak '/^flags/ s/$/,-fd/' /etc/security/audit_control;/usr/sbin/audit -s
/usr/bin/grep -qE "^flags.*-fd" /etc/security/audit_control || /usr/bin/sed -i.bak '/^flags/ s/$/,-fd/' /etc/security/audit_control;/usr/sbin/audit -s
----
references:
cce:

2
rules/audit/audit_flags_fm_configure.yaml
View File

@@ -15,7 +15,7 @@ result:
fix: |
[source,bash]
----
/usr/bin/sed -i.bak '/^flags/ s/$/,-fm/' /etc/security/audit_control;/usr/sbin/audit -s
/usr/bin/grep -qE "^flags.*-fm" /etc/security/audit_control || /usr/bin/sed -i.bak '/^flags/ s/$/,-fm/' /etc/security/audit_control;/usr/sbin/audit -s
----
references:
cce:

2
rules/audit/audit_flags_fr_configure.yaml
View File

@@ -15,7 +15,7 @@ result:
fix: |
[source,bash]
----
/usr/bin/sed -i.bak '/^flags/ s/$/,-fr/' /etc/security/audit_control;/usr/sbin/audit -s
/usr/bin/grep -qE "^flags.*-fr" /etc/security/audit_control || /usr/bin/sed -i.bak '/^flags/ s/$/,-fr/' /etc/security/audit_control;/usr/sbin/audit -s
----
references:
cce:

2
rules/audit/audit_flags_fw_configure.yaml
View File

@@ -15,7 +15,7 @@ result:
fix: |
[source,bash]
----
/usr/bin/sed -i.bak '/^flags/ s/$/,-fw/' /etc/security/audit_control;/usr/sbin/audit -s
/usr/bin/grep -qE "^flags.*-fw" /etc/security/audit_control || /usr/bin/sed -i.bak '/^flags/ s/$/,-fw/' /etc/security/audit_control;/usr/sbin/audit -s
----
references:
cce:

2
rules/audit/audit_flags_lo_configure.yaml
View File

@@ -13,7 +13,7 @@ result:
fix: |
[source,bash]
----
/usr/bin/sed -i.bak '/^flags/ s/$/,lo/' /etc/security/audit_control; /usr/sbin/audit -s
/usr/bin/grep -qE "^flags.*[^-]lo" /etc/security/audit_control || /usr/bin/sed -i.bak '/^flags/ s/$/,lo/' /etc/security/audit_control; /usr/sbin/audit -s
----
references:
cce: