usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-03-16 05:52:06 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity
1,390 Commits 29 Branches 61 Tags
0eea7ff1e4e656ba7888ba202a295c19b68bb3fb
Commit Graph

175 Commits

Author SHA1 Message Date
mahlmanj
0eea7ff1e4 Spelling fixes, added note in system_settings_siri_settings_disable 2024-09-05 12:24:46 -04:00
Dan Brodjieski
a514f24654 sync some with sonoma 2024-09-04 15:04:58 -04:00
Dan Brodjieski
cb85787e5d fix[script]: support both .yaml and .yml 
Issue #412
 2024-09-04 14:34:15 -04:00
Bob Gendler
615317fe6c refactor[scripts/templates] Updated 171r2 to 171r3 
Changed the 171r2s to 171r3s everywhere
 2024-09-01 21:36:10 -04:00
Dan Brodjieski
40f01341fa fix: corrected severity logic 2024-08-27 10:05:31 -04:00
Dan Brodjieski
6a4af2dfef feat[doc]: add support for severity 
severity key in yaml can be string or a dictionary containing
key/values for different baselines
if a severity exists for a rule, it will be included in the reference
table within the HTML/PDF as well as a column in the XLS
 2024-08-22 15:52:33 -04:00
Dan Brodjieski
a2f6652817 feat[ddm]: added configs for asset declarations 2024-08-19 12:58:38 -04:00
Dan Brodjieski
f667f7f96e fix[ddm]: nested ODVs now work with DDM 
feat[ddm]: generate activations with DDM
 2024-08-19 11:03:36 -04:00
Dan Brodjieski
82ff8b0aaf fix[script]: correctly build and zip DDM assets 2024-07-30 15:00:38 -04:00
Dan Brodjieski
ace04fc6f5 fix[script]: will skip missing ddm types 2024-07-26 14:59:07 -04:00
Bob Gendler
96ade12e2f feat[ddm] Added DDM to sequoia 
Updated scripts and rule files
 2024-07-24 14:00:10 -04:00
Dan Brodjieski
17ae94c597 fix: additional syntax changes 2024-04-10 10:47:38 -04:00
Dan Brodjieski
8e102c034f fix[script]: updated syntax for replace values 
When replacing text to include a backslash, newer versions of
python caused syntax errors.  Updating with raw strings
resolves the issue.

Issue #361
 2024-04-10 10:26:37 -04:00
Bob Gendler
8e8b78d075 sync branches 2024-04-02 10:57:25 -04:00
Dan Brodjieski
97a3830ed7 Merge fix for Issue #377 2024-03-25 10:27:49 -04:00
Dan Brodjieski
8ab3ce3c01 Dev sonoma issue281 (#370) 
* fix[script]: added NOTE for rules marked manual

If 'manual' is in tags, it will add the note to the discussion

Issue #281

* chore[rule]: rewording of NOTE

---------

Co-authored-by: Dan Brodjieski <daniel.brodjieski@nasa.gov>
 2024-02-28 11:58:19 -05:00
Tony Williams
892422f210 added --audit_name 2023-12-14 14:46:47 +11:00
Dan Brodjieski
debd0a12d9 fix: typo in script 2023-11-28 12:32:54 -05:00
Dan Brodjieski
4486c11db0 Sync base64 change 2023-11-28 12:12:25 -05:00
Dan Brodjieski
56d653b0ae fix for issue #319 2023-11-28 12:02:13 -05:00
Bob Gendler
27ce546fdb refactor[scripts] updated generate_guidance 
-r option will now also write references to the audit plist file
 2023-11-28 10:49:18 -05:00
Dan Brodjieski
1795a7e0c5 fix[script]: issue #315 2023-10-27 12:37:12 -04:00
Dan Brodjieski
e3a24f4a23 fix[script]: issue #301 2023-10-26 15:38:27 -04:00
Bob Gendler
8250d020aa refactor[scripts] updated to handle new pwpolicy 
Updated to handle dict better in mobileconfig files
 2023-09-15 23:00:54 -04:00
Dan Brodjieski
0a7c7270e7 feat[script]: change for issue 267 2023-09-14 15:49:55 -04:00
Dan Brodjieski
5acbdbd21e chore: clean up extraneous trailing whitespace 2023-09-14 14:21:06 -04:00
Bob Gendler
6534990e8e line 1586 updated 2023-09-14 11:49:08 -04:00
Bob Gendler
3337ba8ae7 feature[scripts] Adding iOS Support in scripts 
* Updated generate_guidance
* Updated generate_baseline
* Updated generate_mapping
* Updated generate_scap

All to match iOS
 2023-09-14 11:45:23 -04:00
Bob Gendler
49b715e587 refactor[scripts] updated generate_guidance 
Updated generate_guidance to match PR #279
 2023-08-14 14:51:28 -04:00
Bob Gendler
1eb52857d4 refactor[scripts] updated scripts with sshd -G 
- compliance script updated to check sshd -T or sshd -G
- updated generate_scap where it checks for sshd -T
 2023-08-02 10:12:58 -04:00
Bob Gendler
fc9d45b03c Merge branch 'dev_ventura_cmmc' into ventura 2023-06-22 12:23:41 -04:00
Bob Gendler
9363ec0798 Merge branch 'dev_ventura_issue250' into ventura 2023-06-20 11:54:10 -04:00
Bob Gendler
fdcc5b5bb9 output redirection fix 2023-05-26 12:20:18 -04:00
Bob Gendler
5e1485e109 added missing double quote 2023-05-26 12:14:17 -04:00
Bob Gendler
ac1be946c0 Fixed &2> with 2&> 2023-05-25 13:31:53 -04:00
Bob Gendler
8ec13ebf92 feat[scripts]ssh-keygen added to compliance script 
Issue #245
Check if sshd -T succeeds, if not, create required keys. Delete keys
after compliance check is complete
 2023-05-04 13:39:10 -04:00
Bob Gendler
fa6711513e Merge branch 'ventura' into dev_ventura_cmmc 2023-04-26 09:55:16 -04:00
Allen Golbig
aafc5fadf4 fix[script] custom pdf logo fix 
added line for custom pdf log
 2023-04-18 12:29:53 -04:00
Dan Brodjieski
7446797079 fix[script]: Added process to base64 logo 
Asciidoctor-pdf 2.3.6 broke creation of our PDF, by
using a base64 of the image inline with the adoc, it
addresses this issue.

Issue  #250
 2023-04-18 12:26:40 -04:00
Bob Gendler
3dc00ce855 Merge branch 'dev_ventura_issue236' into ventura 2023-04-18 11:17:35 -04:00
Erik Winter
83f1c21b68 use absolute path when referencing scutil and awk in compliance script (#239) 2023-04-05 10:22:57 -04:00
Bob Gendler
2f90a2402a [feat] Remove uchg flag from audit_control 
This is to resolve issue #236

Added /usr/bin/chflags nouchg to audit_control
 2023-04-05 10:19:57 -04:00
Allen Golbig
b58e9edbcf fix[script] added timestamp to remediations 
Added timestamp to compliance script when remediating
 2023-01-03 10:20:34 -05:00
mahlmanj
318cc09cd3 Updating temaples and scripts 2022-12-19 12:23:46 -05:00
Allen Golbig
ccb2cc398b feat[script] added check/fix/check logic 
Added check/fix/check logic to compliance script
 2022-12-13 12:59:53 -05:00
Bob Gendler
f9e2ae76f8 Merge branch 'dev_ventura_references' into ventura 2022-11-29 09:58:23 -05:00
Dan Brodjieski
a9982fcd27 fix[script]: added support for CIS refs 
You can now pass cis, cis_lvl1, cis_lvl2, cisv8
to generate_guidance.py to allow for those
references to be included in the logs.
Also, replaced all instances of /bin/echo
 2022-11-23 08:51:36 -05:00
Bob Gendler
2d89b7af80 [feat] Debug Mode Added 
Debug added to the generated compliance script. Hold down option to
invoke debug while running the script from the command line.

Issue #202
 2022-11-17 11:50:35 -05:00
Bob Gendler
ab611d16c6 fix[scripts] fix odv in profile creation 
Fixes an issue with parent_value and odv and config profile creation

Issue #174
 2022-10-03 13:35:10 -04:00
Jorge Escobar
ddc8e8d8e2 Fix issue that caused --compliant and/or --non_compliant to run when not in cli args. (#173) 2022-09-19 14:14:06 -04:00