Skip to content

Commit

Permalink
Merge pull request #135 from dev-sec/prelinkt
Browse files Browse the repository at this point in the history
remove prelink package, control package-09
  • Loading branch information
rndmh3ro authored Aug 6, 2017
2 parents 09bcc0b + a1a1371 commit 0aa330a
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 1 deletion.
1 change: 1 addition & 0 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -69,6 +69,7 @@ We remove the following packages:
* ypserv ([NSA](http://www.nsa.gov/ia/_files/os/redhat/rhel5-guide-i731.pdf), Chapter 3.2.4)
* telnet-server ([NSA](http://www.nsa.gov/ia/_files/os/redhat/rhel5-guide-i731.pdf), Chapter 3.2.2)
* rsh-server ([NSA](http://www.nsa.gov/ia/_files/os/redhat/rhel5-guide-i731.pdf), Chapter 3.2.3)
* prelink ([open-scap](https://static.open-scap.org/ssg-guides/ssg-sl7-guide-ospp-rhel7-server.html#xccdf_org.ssgproject.content_rule_disable_prelink))

## Example Playbook

Expand Down
2 changes: 1 addition & 1 deletion defaults/main.yml
Original file line number Diff line number Diff line change
Expand Up @@ -34,7 +34,7 @@ os_security_suid_sgid_remove_from_unknown: false

# remove packages with known issues
os_security_packages_clean: true
os_security_packages_list: ['xinetd','inetd','ypserv','telnet-server','rsh-server','rsync']
os_security_packages_list: ['xinetd','inetd','ypserv','telnet-server','rsh-server','rsync', 'prelink']

# Allow interactive startup (rhel, centos)
os_security_init_prompt: true
Expand Down

0 comments on commit 0aa330a

Please sign in to comment.