Project

General

Profile

Actions
Copy link

Bug #27342

open

RHEL 8 - Section 2.2 : inversion of key / value & fixes

Added by Lucas FRANCOIS 8 days ago. Updated 6 days ago.

Status:
Pending release
Priority:
N/A
Assignee:
Nicolas CHARLES
Target version:
Rudder plugins - 8.3
Pull Request:
https://github.com/Normation/rudder-p...
Severity:
UX impact:
User visibility:
Effort required:
Priority:
0
Name check:
To do
Fix check:
To do
Regression:
No

Description

On control point 2.21, the value is inverted with the key in the method. It needs to be inet_interfaces = loopback-only and not loopback-only = inet_interfaces. Plus, we can remove the names in the methods, they are no longer required.

_2_2_21 = hardening.Leaf {
  _item_nb = "2.2.21" 
  id = "2448e441-5030-478b-92fc-2639ee17be8b" 
  _audit_and_enforce_items = [
    rudder.Method {
      name = "Force the Mail Transfer Agent to listen only on loopback address" 
      method = "file_key_value_present" 
      params = {
        path = "/etc/postfix/main.cf" 
        value = "inet_interfaces" 
        key = "loopback-only" 
        separator = r"${ncf_const.s}=${ncf_const.s}" 
      }
    }
    rudder.Method {
      name = "Restart the Mail Transfer Agent if needed" 
      method = "service_restart" 
      params = {name = "postfix"}
      condition = "file_key_value_present__etc_postfix_main_cf_repaired" 
    }
  ]
}

Actions
Copy link

Also available in: Atom PDF