Hardening cookbook for CIS Level 1 for RHEL 7 based operating systems
This cookbook provides a recipes to make a RHEL 7 more CIS L1 compliant. It should be used in conjunction with Chef Compliance‘s CIS L1 profile.
Note: This cookbook does not make your system pass all CIS L1 tests; just a portion in order to demonstrate how you can harden your RHEL 7 instances.
Use Chef resources (versus the ‘execute’ resource) whenever possible. The line cookbook is included for making line by line substitutions in config files. See the enable_sudo_no_tty.rb
for
a usage example.
This cookbook is maintained by Chef’s Community Cookbook Engineering team. Our goal is to improve cookbook quality and to aid the community in contributing to cookbooks. To learn more about our team, process, and design goals see our team documentation. To learn more about contributing to cookbooks like this see our contributing documentation, or if you have general questions about this cookbook come chat with us in #cookbok-engineering on the Chef Community Slack
Copyright: 2018, Chef Software, Inc.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.