From b184b50c59810d10b55ccf65f65ee4e2fe89365d Mon Sep 17 00:00:00 2001
From: wdower <will@dower.dev>
Date: Fri, 15 Mar 2024 11:09:39 -0400
Subject: [PATCH] replacing ad-hoc hardening content

Signed-off-by: wdower <will@dower.dev>
---
 .../tasks/ad_hoc.yml                          | 36 +++++++++----------
 1 file changed, 18 insertions(+), 18 deletions(-)

diff --git a/spec/ansible/roles/ansible-role-rhel-hardened/tasks/ad_hoc.yml b/spec/ansible/roles/ansible-role-rhel-hardened/tasks/ad_hoc.yml
index a78c454b..ed1a3178 100644
--- a/spec/ansible/roles/ansible-role-rhel-hardened/tasks/ad_hoc.yml
+++ b/spec/ansible/roles/ansible-role-rhel-hardened/tasks/ad_hoc.yml
@@ -6,24 +6,24 @@
 # executables to have perms greater than 755
 # the STIG does not allow perms over 755 regardless of whether they are root-owned, so
 # we will fix it here
-# - name: Find files with permissions set too high
-#   ansible.builtin.shell: "find -L /bin /sbin /usr/bin /usr/sbin /usr/local/bin /usr/local/sbin -perm /0022"
-#   changed_when: false
-#   failed_when: false
-#   register: files_with_too_high_perms
+- name: Find files with permissions set too high
+  ansible.builtin.shell: "find -L /bin /sbin /usr/bin /usr/sbin /usr/local/bin /usr/local/sbin -perm /0022"
+  changed_when: false
+  failed_when: false
+  register: files_with_too_high_perms
 
 
-# - name: Fix files with permissions set too high
-#   ansible.builtin.file:
-#     path: "{{ item }}"
-#     owner: root
-#     group: root
-#     mode: "{{ rhel8stig_sys_commands_perm }}"
-#     force: true
-#   with_items:
-#       - "{{ files_with_too_high_perms.stdout_lines }}"
+- name: Fix files with permissions set too high
+  ansible.builtin.file:
+    path: "{{ item }}"
+    owner: root
+    group: root
+    mode: "{{ rhel8stig_sys_commands_perm }}"
+    force: true
+  with_items:
+      - "{{ files_with_too_high_perms.stdout_lines }}"
 
-# - name: fix busted symlink to /usr/bin/miniterm-3.6.py in /bin
-#   ansible.builtin.file:
-#     path: /bin/miniterm-3.6.py
-#     state: absent
\ No newline at end of file
+- name: fix busted symlink to /usr/bin/miniterm-3.6.py in /bin
+  ansible.builtin.file:
+    path: /bin/miniterm-3.6.py
+    state: absent
\ No newline at end of file