Ubuntu 24.04 2.4.2.1 Ensure at is restricted to authorized users #12711
Conversation
|
Hi @ericeberry. Thanks for your PR. I'm waiting for a ComplianceAsCode member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
|
Start a new ephemeral environment with changes proposed in this pull request: rhel8 (from CTF) Environment (using Fedora as testing environment) Fedora Testing Environment Oracle Linux 8 Environment |
|
Code Climate has analyzed commit 62527ea and detected 0 issues on this pull request. The test coverage on the diff in this pull request is 100.0% (50% is the threshold). This pull request will bring the total coverage in the repository to 60.9% (0.0% change). View more on Code Climate. |
| @@ -0,0 +1,35 @@ | |||
| documentation_complete: true | |||
There was a problem hiding this comment.
/etc/at.deny does not need to exist for this recommendation so this rule isn't needed
linux_os/guide/services/cron_and_at/restrict_at_cron_users/file_groupowner_at_deny/rule.yml
Show resolved
Hide resolved
controls/cis_ubuntu2404.yml
Outdated
|
|
||
| - file_at_deny_not_exist | ||
| - '!file_at_deny_exists' | ||
| - '!file_groupowner_at_deny' |
There was a problem hiding this comment.
I don't think we should disable the at_deny rules, both files should be checked according to 2.4.2.1
Description:
Rationale: