-
Notifications
You must be signed in to change notification settings - Fork 739
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ansible 2.0 | "remove suid/sgid" task fails #64
Comments
my 'ugly' workaround is: suid_sgid.yml:
at least it works |
The fix proposed in #63 works well. I'm using a fork for Ansible v2 support until that's merged. |
iflowfor8hours
pushed a commit
to iflowfor8hours/sandcastle
that referenced
this issue
Mar 2, 2016
On a fresh pull and dependencies fetch (including ansible itself) the hardening role was causing ansible to fail to converge due to a [resolved issue](dev-sec/ansible-collection-hardening#64) The requirements file format for ansible-galaxy has been changed to yaml as well to remove a deprecation warning in ansible 2.
iflowfor8hours
pushed a commit
to iflowfor8hours/sandcastle
that referenced
this issue
Mar 2, 2016
On a fresh pull and dependencies fetch (including ansible itself) the hardening role was causing ansible to fail to converge due to a [resolved issue](dev-sec/ansible-collection-hardening#64) The requirements file format for ansible-galaxy has been changed to yaml as well to remove a deprecation warning in ansible 2.
rndmh3ro
pushed a commit
that referenced
this issue
Jul 24, 2020
rndmh3ro
pushed a commit
that referenced
this issue
Jul 24, 2020
add always_run: true to task. fix #64
divialth
pushed a commit
to divialth/ansible-collection-hardening
that referenced
this issue
Aug 3, 2022
divialth
pushed a commit
to divialth/ansible-collection-hardening
that referenced
this issue
Aug 3, 2022
add always_run: true to task. fix dev-sec#64
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
TASK [ansible-os-hardening : remove suid/sgid bit from all binaries except in system and user whitelist] ***
fatal: [testbuild]: FAILED! => {"failed": true, "msg": "ERROR! 'suid' is undefined"}
Ubuntu 14.04.3 LTS
The text was updated successfully, but these errors were encountered: