Produced by Araxis Merge on 5/14/2018 1:18:38 PM Eastern Daylight Time. See www.araxis.com for information about Merge. This report uses XHTML and CSS2, and is best viewed with a modern standards-compliant browser. For optimum results when printing this report, use landscape orientation and enable printing of background images and colours in your browser.
| # | Location | File | Last Modified |
|---|---|---|---|
| 1 | MCCF_EDI_TAS_Infrastructure.zip\MCCF_EDI_TAS_Infrastructure\mag_sys_build\playbooks | restrict_su.yml | Tue Mar 27 23:51:10 2018 UTC |
| 2 | MCCF_EDI_TAS_Infrastructure.zip\MCCF_EDI_TAS_Infrastructure\mag_sys_build\playbooks | restrict_su.yml | Tue May 8 03:19:06 2018 UTC |
| Description | Between Files 1 and 2 |
|
|---|---|---|
| Text Blocks | Lines | |
| Unchanged | 2 | 56 |
| Changed | 1 | 2 |
| Inserted | 0 | 0 |
| Removed | 0 | 0 |
| Whitespace | |
|---|---|
| Character case | Differences in character case are significant |
| Line endings | Differences in line endings (CR and LF characters) are ignored |
| CR/LF characters | Not shown in the comparison detail |
No regular expressions were active.
| 1 | # Ansible Playbook | |
| 2 | # Erik van Oudheusde n PII - 28 Sep 2 017 | |
| 3 | # | |
| 4 | # 6.14.13 Restrictin g use of t he SU comm ands | |
| 5 | ||
| 6 | --- | |
| 7 | - name: Re stricting use of the SU comman ds | |
| 8 | hosts: r hel7 | |
| 9 | become: yes | |
| 10 | tasks: | |
| 11 | - name: Restrict s u in PAM | |
| 12 | linein file: | |
| 13 | path : /etc/pam .d/su | |
| 14 | back refs: yes | |
| 15 | rege xp: '^#aut h required pa m_wheel.so use_uid' | |
| 16 | line : 'auth required pa m_wheel.so use_uid' | |
| 17 | ||
| 18 | - name: Make sure wheel is s et to All All. | |
| 19 | linein file: | |
| 20 | path : /etc/sud oers | |
| 21 | inse rtafter: A llows peop le in grou p wheel to run all c ommands | |
| 22 | line : '%wheel ALL=(ALL) ALL ' | |
| 23 | stat e: present | |
| 24 | - name: Make sure wheel is N OT allowed to use no -passwd | |
| 25 | linein file: | |
| 26 | path : /etc/sud oers | |
| 27 | back refs: yes | |
| 28 | rege xp: "^.*wh eel.*NOPAS SWD:.*ALL$ " | |
| 29 | line : '#%wheel AL L=(ALL) NOPASS WD: ALL' |
Araxis Merge (but not the data content of this report) is Copyright © 1993-2016 Araxis Ltd (www.araxis.com). All rights reserved.