Skip to content
/ cissec Public

Kickstart profiles for CentOS 7 to help meet CIS benchmarks + shell script to audit

License

BSD-3-Clause license
53 stars 27 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

rosshamilton1/cissec

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

37 Commits
LICENCE
LICENCE
 
 
README.md
README.md
 
 
centos7-cis.ks
centos7-cis.ks
 
 
cis-audit
cis-audit
 
 
minimal.ks
minimal.ks
 
 

Repository files navigation

Files:

centos7-cis.ks

minimal.ks

cis-audit

centos7-cis.ks: kickstart file for CentOS 7, aims to provide a starting point for a Linux admin to build a host which meets the CIS CentOS 7 benchmarks

minimal.ks: A minimal kickstart file is provided so people can test their setup (PXE/DHCP etc) with a minimal amount of configuration going on.

cis-audit: A bash script to audit whether a host conforms to the CIS benchmarks.

Aforementioned CIS benchmarks should be able to be found here https://benchmarks.cisecurity.org/tools2/linux/CIS_CentOS_Linux_7_Benchmark_v1.1.0.pdf

I'm not affliated with the Center for Internet Security in any way. Use any material from this repository at your own risk.

centos7-cis.ks will need extensive customising to suit a particular user's environment. There's a lot of config in there because it suits me. e.g. CIS 6.4 /etc/securetty, change it to suit yourself.

Feel free to get in touch about this. Particularly with any errors or bugs!

Ross Hamilton <ross.x.hamilton AT gmail.com>

About

Kickstart profiles for CentOS 7 to help meet CIS benchmarks + shell script to audit

Resources

Readme

License

BSD-3-Clause license
Activity

Stars

53 stars

Watchers

14 watching

Forks

27 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages