mirror of
https://github.com/tommytran732/Linux-Setup-Scripts
synced 2024-11-09 11:41:33 -05:00
Remove USG references
Signed-off-by: Tommy <contact@tommytran.io>
This commit is contained in:
parent
4b5f7c70b5
commit
74b6200e90
@ -27,22 +27,13 @@ unpriv(){
|
||||
#Compliance and updates
|
||||
sudo systemctl mask debug-shell.service
|
||||
|
||||
#sudo ua enable usg
|
||||
sudo apt update -y
|
||||
sudo apt full-upgrade -y
|
||||
#sudo apt install -y usg
|
||||
sudo apt autoremove -y
|
||||
#sudo usg fix cis_level2_workstation
|
||||
|
||||
# Make home directory private
|
||||
sudo chmod 700 /home/*
|
||||
|
||||
# Remove AIDE
|
||||
#sudo apt purge -y aide*
|
||||
|
||||
# Allow su which is disabled by CIS
|
||||
sudo sed -i 's/auth required pam_wheel.so use_uid group=sugroup//g' /etc/pam.d/su
|
||||
|
||||
# Setting umask to 077
|
||||
umask 077
|
||||
sudo sed -ie '/^DIR_MODE=/ s/=[0-9]*\+/=0700/' /etc/adduser.conf
|
||||
|
@ -29,21 +29,13 @@ sudo systemctl mask debug-shell.service
|
||||
echo 'Authorized uses only. All activity may be monitored and reported.' | sudo tee /etc/issue
|
||||
echo 'Authorized uses only. All activity may be monitored and reported.' | sudo tee /etc/issue.net
|
||||
|
||||
#USG CIS Server 2 Breaks Unbound right now.
|
||||
#sudo ua enable usg
|
||||
sudo apt update -y
|
||||
sudo apt full-upgrade -y
|
||||
sudo apt install -y curl
|
||||
#sudo apt install -y usg curl libpam-pwquality
|
||||
#sudo apt autoremove -y
|
||||
#sudo usg fix cis_level2_server
|
||||
|
||||
# Make home directory private
|
||||
sudo chmod 700 /home/*
|
||||
|
||||
# Remove AIDE
|
||||
#sudo apt purge -y aide*
|
||||
|
||||
# Setup NTS
|
||||
sudo systemctl disable --now systemd-timesyncd
|
||||
sudo apt install -y chrony
|
||||
|
Loading…
Reference in New Issue
Block a user