From 8a7a85640655c9770689f450e09b1999381f4aef Mon Sep 17 00:00:00 2001 From: Bob Gendler Date: Wed, 20 Apr 2022 13:34:00 -0400 Subject: [PATCH] #128 changed check to use sudo sudo -V --- rules/os/os_sudo_timeout_configure.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/rules/os/os_sudo_timeout_configure.yaml b/rules/os/os_sudo_timeout_configure.yaml index 8ec1e888..e6287ebe 100644 --- a/rules/os/os_sudo_timeout_configure.yaml +++ b/rules/os/os_sudo_timeout_configure.yaml @@ -3,7 +3,7 @@ title: "Configure Sudo Timeout Period to Zero" discussion: | The file /etc/sudoers _MUST_ include a timestamp_timout of zero. check: | - /usr/bin/find /etc/sudoers* -type f -exec /usr/bin/grep -E "^Defaults\s+timestamp_timeout=0" '{}' \; | /usr/bin/wc -l | /usr/bin/xargs + /usr/bin/sudo /usr/bin/sudo -V | /usr/bin/grep -c "Authentication timestamp timeout: 0.0 minutes" result: integer: 1 fix: |