Product Name
CIS Build Kit
Product Version
Some Linux-based versions
Date
09 Mar
Problem
| Info |
|---|
I have added recommendations to the |
Solution
The exclusions_listDue to a bug in the some of the Linux-based Build Kit shell scripts, the exclusions.txt file is only intended to be used as a checklist to keep track of what recommendations are being applied outside of the scriptdoes not work as intended. To exclude the recommendations you have to comment out or remove those recommendations from the Build Kit shell script file that ends in .sh.
In the UBUNTU2004_LBK.sh script file that is seen below, recommendation 1.1.1.1 is still commented out (i.e., the # remains in front of each line of the recommendation), but recommendation 1.1.1.2 is not commented out (i.e., no # symbol in front of each line of the recommendation); therefore, when the Build Kit shell script (UBUNTU2004_LBK.sh) is run, 1.1.1.1 will be excluded and 1.1.1.2 will be applied.
Please see the section titled “Where should I start” in the following CIS Build Kit FAQ page for more information: https://www.cisecurity.org/cis-securesuite/cis-securesuite-build-kit-content/build-kits-faq. In addition, please be sure to read the READ_ME.txt file that comes with each Build Kit. | Note |
|---|
Please be sure to read the |
Keywords; Build Kit recommendations exclusion exclude apply linux
Content by Label
| Filter by label (Content by label) | ||||||
|---|---|---|---|---|---|---|
|
| Page Properties | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||||||||||
|