Forge Home
Premium module

cem_linux

Compliance Enforcement Module for Linux

979 downloads

40 latest version

Version information

  • 1.1.1 (latest)
  • 1.1.0
  • 1.0.0
released Jan 25th 2022
This version is compatible with:
  • Puppet Enterprise 2021.4.x, 2021.3.x, 2021.2.x, 2021.1.x, 2021.0.x, 2019.8.x
  • Puppet >= 6.23.0 < 8.0.0
  • ,
Tasks:
  • audit_authselect
  • audit_duplicate_gid
  • audit_duplicate_group_names
  • audit_duplicate_uid
  • audit_duplicate_user_names
  • audit_etcpasswd_groups
  • audit_pw_change_date
  • and 15 more. See all tasks

Documentation

puppetlabs/cem_linux — version 1.1.1 Jan 25th 2022

What are tasks?

Modules can contain tasks that take action outside of a desired state managed by Puppet. It’s perfect for troubleshooting or deploying one-off changes, distributing scripts to run across your infrastructure, or automating changes that need to happen in a particular order as part of an application deployment.

Tasks in this module release

audit_authselect

Audit authselect profile for RHEL8 and CentOS8

audit_duplicate_gid

Finds and returns duplicate GIDs in /etc/group

audit_duplicate_group_names

Finds and returns duplicate group names in /etc/group.

audit_duplicate_uid

Finds duplicate UIDs in /etc/passwd and returns the UID and all users that use it

audit_duplicate_user_names

Finds and returns duplicate user names in /etc/passwd.

audit_etcpasswd_groups

Finds groups that exist in /etc/passwd but do not exist in /etc/group

audit_pw_change_date

Returns the last password change date for all users

audit_sgid_executables

A short description of this task

audit_shadow_group

Finds and returns any users in the shadow group

audit_suid_executables

Returns a list of SUID executable files

audit_unconfined_services

Returns a list of all unconfined services

audit_unowned_files_and_directories

Returns a list of any unowned files and directories

audit_world_writable_files

Returns a list of any world-writable files

query_gpg_keys

Queries for RPM GPG keys

query_listening_services

Queries for services with established TCP / UDP connections

query_yum_repos

Queries YUM repositories

root_path_integrity

Audits root path integrity. Must be run as root

update_bootloader

Updates and reinstall bootloader configuration