Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Debian 11 CIS CI Compliance #54

Open
wants to merge 33 commits into
base: master
Choose a base branch
from
Open

Debian 11 CIS CI Compliance #54

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
33 commits
Select commit Hold shift + click to select a range
ead90b8
Initial Commit with base.
May 23, 2023
925bde5
Added 99-finalize.rules for audit, sudoers use_pty, su group creation…
May 24, 2023
910d35b
Re-arranged folders and adapted JShielder script.
May 30, 2023
4af16e8
Updated Iptables script, Updated how the port is updated in the scrip…
Jun 5, 2023
6ffffd1
Removed Reboot section.
Jun 5, 2023
705d953
Optimized sed for ssh port.
Jun 5, 2023
89d44b9
Fixed SSH Port Issue.
Jun 5, 2023
7414f7e
Add $user to su group by default.
Jun 5, 2023
d9d633b
Added some more configs + added ipv6 lo rules + Re-arranged some lines.
Jun 5, 2023
4cab180
Removed some unused paths from ENV, Added CONSOLE: console:tty0:tty1:…
Jun 13, 2023
64caeda
Re-factored common-account-cis file to be more readable.
Jun 13, 2023
87d4bf8
Added full binary path to the bash script.
Jun 13, 2023
b19bbf0
Added Shell Timeout file with script.
Jun 13, 2023
a622d86
Added CIS Related IPTables Script to /etc/init.d/ , Modified correcte…
Jun 13, 2023
eb02f30
Fixed PAM Login Issue.
GirishMahabir Jun 20, 2023
0204638
Fixed Pam Issue files updated.
GirishMahabir Jun 20, 2023
04753f8
Fixed bug in shell script "unknown character \n"
GirishMahabir Jun 20, 2023
0f37dea
Bash ` bug on an echo line, resolved.
GirishMahabir Jun 20, 2023
ef7b706
Added Solutions for CIS 1.x.
GirishMahabir Jun 25, 2023
437a172
Added Solution for CIS 2.x.
GirishMahabir Jun 25, 2023
074a177
Added Solutions for CIS 4.x and added Variable for GRUB_CMDLINE_LINUX…
GirishMahabir Jun 25, 2023
ec14625
Added CIS Solution from 4.x -> 5.3.7. Also modified past variable ssh…
GirishMahabir Jun 27, 2023
94ee640
Added Solutions for CIS 5.5.X -> 6.X.
GirishMahabir Jun 27, 2023
8ad98e3
Removed comments and added space left params to resolve bug.
GirishMahabir Jul 4, 2023
a155b1e
Moved `-w /etc/sudoers -p wa -k scope ` to a separate line.
GirishMahabir Jul 4, 2023
7fa9e8c
Adapted script based on 1st run behaviour.
GirishMahabir Jul 4, 2023
5cf1156
Completed the PAM Section, tests still in progress tho.
GirishMahabir Jul 11, 2023
57adeae
Added pool to ntp configuration.
GirishMahabir Jul 11, 2023
8a6ece2
Prepared login.defs file.
GirishMahabir Jul 11, 2023
43ee6de
Tested and adapted the audit rules.
GirishMahabir Jul 11, 2023
61b6b57
AIDE Checker and Timer Tested and adapted.
GirishMahabir Jul 11, 2023
79ed600
Fixed some missed rules, typos etc.
GirishMahabir Sep 20, 2023
5afb613
Updated Debian 11 CIS CI (Added Additional Rules)
GirishMahabir Oct 2, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
50 changes: 50 additions & 0 deletions DebianServer_10/helpers.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,50 @@
#!/bin/bash

spinner ()
{
bar=" ++++++++++++++++++++++++++++++++++++++++++++++++++++++++"
barlength=${#bar}
i=0
while ((i < 100)); do
n=$((i*barlength / 100))
printf "\e[00;34m\r[%-${barlength}s]\e[00m" "${bar:0:n}"
((i += RANDOM%5+2))
sleep 0.02
done
}



# Show "Done."
function say_done() {
echo " "
echo -e "Done."
say_continue
}


# Ask to Continue
function say_continue() {
echo -n " To EXIT Press x Key, Press ENTER to Continue"
read acc
if [ "$acc" == "x" ]; then
exit
fi
echo " "
}


# Obtain Server IP
function __get_ip() {
serverip=$(ip route get 1 | awk '{print $7;exit}')
echo $serverip
}


# Copy Local Config Files
function tunning() {
whoapp=$1
cp templates/$whoapp /root/.$whoapp
cp templates/$whoapp /home/$username/.$whoapp
chown $username:$username /home/$username/.$whoapp
}
Loading