1
0
mirror of https://github.com/tommytran732/Linux-Setup-Scripts synced 2024-11-22 17:41:32 -05:00

Remove USG references

Signed-off-by: Tommy <contact@tommytran.io>
This commit is contained in:
Tommy 2024-01-19 23:44:03 -07:00
parent 4b5f7c70b5
commit 74b6200e90
Signed by: Tomster
GPG Key ID: 555C902A34EC968F
2 changed files with 0 additions and 17 deletions

View File

@ -27,22 +27,13 @@ unpriv(){
#Compliance and updates #Compliance and updates
sudo systemctl mask debug-shell.service sudo systemctl mask debug-shell.service
#sudo ua enable usg
sudo apt update -y sudo apt update -y
sudo apt full-upgrade -y sudo apt full-upgrade -y
#sudo apt install -y usg
sudo apt autoremove -y sudo apt autoremove -y
#sudo usg fix cis_level2_workstation
# Make home directory private # Make home directory private
sudo chmod 700 /home/* sudo chmod 700 /home/*
# Remove AIDE
#sudo apt purge -y aide*
# Allow su which is disabled by CIS
sudo sed -i 's/auth required pam_wheel.so use_uid group=sugroup//g' /etc/pam.d/su
# Setting umask to 077 # Setting umask to 077
umask 077 umask 077
sudo sed -ie '/^DIR_MODE=/ s/=[0-9]*\+/=0700/' /etc/adduser.conf sudo sed -ie '/^DIR_MODE=/ s/=[0-9]*\+/=0700/' /etc/adduser.conf

View File

@ -29,21 +29,13 @@ sudo systemctl mask debug-shell.service
echo 'Authorized uses only. All activity may be monitored and reported.' | sudo tee /etc/issue echo 'Authorized uses only. All activity may be monitored and reported.' | sudo tee /etc/issue
echo 'Authorized uses only. All activity may be monitored and reported.' | sudo tee /etc/issue.net echo 'Authorized uses only. All activity may be monitored and reported.' | sudo tee /etc/issue.net
#USG CIS Server 2 Breaks Unbound right now.
#sudo ua enable usg
sudo apt update -y sudo apt update -y
sudo apt full-upgrade -y sudo apt full-upgrade -y
sudo apt install -y curl sudo apt install -y curl
#sudo apt install -y usg curl libpam-pwquality
#sudo apt autoremove -y
#sudo usg fix cis_level2_server
# Make home directory private # Make home directory private
sudo chmod 700 /home/* sudo chmod 700 /home/*
# Remove AIDE
#sudo apt purge -y aide*
# Setup NTS # Setup NTS
sudo systemctl disable --now systemd-timesyncd sudo systemctl disable --now systemd-timesyncd
sudo apt install -y chrony sudo apt install -y chrony