Ahmed Messaoud
|
cdec8a14fb
|
Fixed invalid conditional for "Setup QEMU" action (#738)
|
2024-07-02 16:25:02 -07:00 |
|
Ahmed Messaoud
|
556226e0f0
|
Run native amd64 containers without QEMU (#737)
|
2024-07-02 15:50:54 -07:00 |
Marius Niculescu
|
1bc8dee8e7
|
Optimizing the Configuration module for the new IotHubManagementEnabled setting and more (#736)
|
2024-07-02 11:41:14 -07:00 |
|
Ahmed Messaoud
|
c2c9a89bc7
|
Fixed upload-artifact to use v4 (#735)
|
2024-06-28 14:25:16 -07:00 |
|
Marius Niculescu
|
35c689b071
|
Making IoT Hub management optional by default and configurable in favor of RC/DC channel (#733)
|
2024-06-27 16:56:51 -07:00 |
|
Ahmed Messaoud
|
e16a6c68b3
|
Fixed signing and updated debian-10 base image (#734)
|
2024-06-27 16:28:07 -07:00 |
|
Marius Niculescu
|
cb259f69c1
|
Fixing situation when RC/DC watcher fails to apply configuration from fresh DC file (#732)
|
2024-06-25 15:19:17 -07:00 |
|
Marius Niculescu
|
af0326bc73
|
Stabilizing ASB v2's auditEnsureZeroconfNetworkingIsDisabled and remediateEnsureZeroconfNetworkingIsDisabled (#731)
|
2024-06-24 11:00:50 -07:00 |
|
Marius Niculescu
|
8b179cc2fb
|
Continued stabilization for ASB v2 (auditEnsurePermissionsOnEtcPasswdDash and more) (#730)
|
2024-06-21 14:34:04 -07:00 |
|
Marius Niculescu
|
f234891d09
|
Stabilizing ASB v2's auditEnsureSyslogRotaterServiceIsEnabled and remediateEnsureSyslogRotaterServiceIsEnabled (#729)
|
2024-06-19 18:26:43 -07:00 |
|
Marius Niculescu
|
cd68ccb502
|
Stabilizing ASB v2's auditEnsureRemoteLoginWarningBannerIsConfigured and remediateEnsureRemoteLoginWarningBannerIsConfigured (#728)
|
2024-06-19 16:03:03 -07:00 |
|
Marius Niculescu
|
6b46ac4ab4
|
Stabilizing ASB v2's auditEnsureAuditdInstalled and remediateEnsureAuditdInstalled (#727)
|
2024-06-19 13:05:01 -07:00 |
|
Marius Niculescu
|
ef1df6e73d
|
Stabilizing ASB v2's auditEnsureLoggingIsConfigured and remediateEnsureLoggingIsConfigured (#726)
|
2024-06-18 15:31:11 -07:00 |
|
Marius Niculescu
|
afe605d98c
|
Stabilizing ASB v2's auditEnsurePasswordCreationRequirements and remediateEnsurePasswordCreationRequirements (#725)
|
2024-06-18 12:58:11 -07:00 |
|
Marius Niculescu
|
0aea987b44
|
Stabilize ASB v2' auditEnsurePortmapServiceIsDisabled and remediateEnsurePortmapServiceIsDisabled and more (#723)
|
2024-06-18 08:50:09 -07:00 |
|
Ahmed Messaoud
|
3c9eefd37d
|
Update to use new test-reporter on ci (#724)
|
2024-06-17 17:57:51 -07:00 |
|
Marius Niculescu
|
cfb557c79f
|
Stabilization for ASB v2's auditEnsurePermissionsOnBootloaderConfig and remediateEnsurePermissionsOnBootloaderConfig (#722)
|
2024-06-17 11:45:38 -07:00 |
|
Marius Niculescu
|
530e9dd70e
|
Stabilizing ASB v2's auditEnsureUnnecessaryAccountsAreRemoved and remediateEnsureUnnecessaryAccountsAreRemoved (#721)
|
2024-06-17 09:53:31 -07:00 |
|
Marius Niculescu
|
240ca531f8
|
Adding to CI the Security Baseline module test and disabling from build and test unnecessary modules (#720)
|
2024-06-14 16:27:32 -07:00 |
|
Marius Niculescu
|
ba9a3ce357
|
Making the MIM test recipe for Security Baseline module test in full ASB v2, including confirming audits passing (#718)
|
2024-06-13 15:39:58 -07:00 |
|
Marius Niculescu
|
bf8da105ea
|
Continued stabilization for ASB v2 audit and remediation and the CI test automation (#717)
|
2024-06-12 14:49:04 -07:00 |
|
Marius Niculescu
|
d16fcc6cad
|
Continued stabilization for ASB v2: AuditEnsureCronServiceIsEnabled
|
2024-06-07 13:28:52 -07:00 |
|
Ahmed Messaoud
|
6cb96140bc
|
Updated upload/download artifact to v4 - Changed test reporting action (#701)
Co-authored-by: Marius Niculescu (MariusNi) <mariusni@microsoft.com>
|
2024-06-07 11:23:34 -07:00 |
|
Marius Niculescu
|
bc9bcc74c5
|
Allowing read access to the NRP logs under /var/log (#715)
|
2024-06-07 10:35:10 -07:00 |
|
Marius Niculescu
|
a42a795a6e
|
Stabilizing the ASB v2 RemediateEnsurePortmapServiceIsDisabled check (#714)
|
2024-06-06 21:39:41 -07:00 |
|
Marius Niculescu
|
eb4078a755
|
Work in progress (#713)
|
2024-06-06 16:08:24 -07:00 |
|
Marius Niculescu
|
91d344272e
|
Continuing stabilization for ASB v2 audit and remediation (#712)
|
2024-06-06 14:43:00 -07:00 |
|
Marius Niculescu
|
6864c02716
|
Improving detection of users to be removed for ASB v2 audit and remediation (#711)
|
2024-06-05 17:03:12 -07:00 |
|
Marius Niculescu
|
412a978760
|
Fixing ASB v2 audit and remediation for user accounts to be removed and reasons for SSH protocol audit (#710)
|
2024-06-05 11:20:36 -07:00 |
|
Marius Niculescu
|
9f19a4e611
|
Fixing Samba service name used to check if Samba is running and more stabilization for ASB v2 (#709)
|
2024-06-05 09:20:45 -07:00 |
|
Marius Niculescu
|
12286933ff
|
Continuing stabilization for ASB v2 implementation (#708)
|
2024-06-04 16:40:06 -07:00 |
|
Marius Niculescu
|
7f2ad0105e
|
Work in progress (#707)
|
2024-06-04 11:23:54 -07:00 |
|
Marius Niculescu
|
52052373f0
|
Continuing stabilization for ASB v2 audit and remediation (#706)
|
2024-06-04 10:04:03 -07:00 |
|
Marius Niculescu
|
b4a2e7df37
|
Continuing implementation for ABS v2 remediation and audit stabilization (#705)
|
2024-06-04 08:37:02 -07:00 |
|
Marius Niculescu
|
006ac6db49
|
Advancing remediation implementation for ASB v2 and adding reasons for corrupted user and group databases (#704)
|
2024-05-30 15:58:33 -07:00 |
|
Marius Niculescu
|
75e1423f28
|
Preventing ASB v2 audit checks from overwriting themselves and other improvements (#703)
|
2024-05-29 10:54:29 -07:00 |
|
Marius Niculescu
|
6555d350a4
|
Improving disabling all wireless interfaces for ASB v2 (#702)
|
2024-05-28 15:39:57 -07:00 |
|
Marius Niculescu
|
3803b4f283
|
Adding a new ASBv2 policy parameter for EnsureDefaultDenyFirewallPolicyIsSet and fixing AuditEnsureIpv6ProtocolIsEnabled (#700)
|
2024-05-28 14:02:50 -07:00 |
|
Marius Niculescu
|
ec116678ee
|
Advancing implementation for ASB v2 remediation and audit stabilization (#699)
|
2024-05-24 16:04:41 -07:00 |
|
Marius Niculescu
|
b6a3d294f0
|
Improved way of safe writing to system files to keep and restore original owner, group and access mode permissions (#698)
|
2024-05-24 09:16:03 -07:00 |
|
Ahmed Messaoud
|
651811009f
|
Updating for CI the ASB v2 NRP MC PS tests (#695)
|
2024-05-22 20:58:31 -07:00 |
|
Marius Niculescu
|
56d9599a8b
|
Removing collision that overwrite Security Baseline remediation checks for /etc/passwd, /etc/shadow and /etc/group access modes (#697)
|
2024-05-22 19:37:36 -07:00 |
|
Marius Niculescu
|
1895dfc30c
|
Completing implementation for 3 more Security Baseline remediation checks (#696)
|
2024-05-22 14:17:42 -07:00 |
|
Marius Niculescu
|
62a85e2084
|
Completing remediation for 4 more Security Baseline checks (#694)
|
2024-05-21 16:04:09 -07:00 |
|
Ahmed Messaoud
|
697a5bc28b
|
Fixed logs on failure (#693)
|
2024-05-20 16:19:58 -07:00 |
|
Marius Niculescu
|
c0a18c6a54
|
Adding for Azure Security Baseline v2's EnsurePasswordReuseIsLimited check remediation and consolidating audit (#692)
|
2024-05-20 10:14:50 -07:00 |
|
Marius Niculescu
|
43a5d1a954
|
Adding few stabilization fixes for Azure Security Baseline v2 audit implementation (#691)
|
2024-05-16 17:05:57 -07:00 |
|
Marius Niculescu
|
89ce2293d4
|
AuditEnsureBind9NotInstalled is reversed (#690)
|
2024-05-16 13:55:44 -07:00 |
|
Marius Niculescu
|
599bd6d60f
|
Adding remediation for Security Baseline checks related to: permissions on bootloader configuration, password creation requirements and lockout for failed password attempts (#689)
|
2024-05-16 11:58:51 -07:00 |
|
Marius Niculescu
|
cabd6456a1
|
Continuing work for Security Baseline remediation implementation and audit improvements (#688)
|
2024-05-13 13:38:26 -07:00 |