pool/yast2-security
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
292 Commits 2 Branches 0 Tags
Commit Graph

135 Commits

Author SHA256 Message Date
YaST Team Bot
cd6c8968a8 - 5.0.0 (bsc#1185510) 
OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=292
 2023-10-19 15:32:45 +00:00
YaST Team Bot
ca2e0c5f3d - Bump version to 4.6.0 (bsc#1208913) 
OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=291
 2023-03-03 17:05:14 +00:00
YaST Team Bot
5c6f5b2bdd - bsc#1208492 
- do not store empty values in CFA login.defs empty value to
    avoid crash when parsing according to login.defs lens
- 4.5.6

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=290
 2023-02-23 10:34:55 +00:00
YaST Team Bot
41bfe4f2ef - AutoYaST: export security policy settings (related to 
jsc#SLE-24764).
- Always write the ssg-apply configuration if a security policy
  is enabled, even if the action is 'none' (related to
  jsc#SLE-24764).
- 4.5.5

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=289
 2023-01-12 11:31:43 +00:00
YaST Team Bot
567d86ffc9 - Fixed wrong steps count causing a crash during saving (bsc#1205918) 
- 4.5.4

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=288
 2022-12-01 16:00:03 +00:00
YaST Team Bot
145ef18baa - Add support for DISA STIG security policy validation 
(jsc#SLE-24764).
- Disable the ssg-apply service if the selected SCAP action is
  "do nothing" (related to jsc#SLE-24764).
- 4.5.3

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=287
 2022-11-16 09:04:14 +00:00
YaST Team Bot
609c40487a - Fix hash vs keyword arguments in RSpec expectations (bsc#1204871) 
- 4.5.2

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=285
 2022-11-04 10:27:25 +00:00
YaST Team Bot
5596067f5f - Do not crash when reading active LSM modules returns nil 
(related to jsc#SLE-22069)
- 4.5.1

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=284
 2022-08-23 10:04:20 +00:00
YaST Team Bot
84887676c2 - Bump version to 4.5.0 (bsc#1198109) 
OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=283
 2022-04-13 01:50:01 +00:00
YaST Team Bot
ad3811e6c8 - Always check for the package in the underlying system when 
trying to detect if running on systemd (bsc#1196963).
- 4.4.13

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=282
 2022-03-11 15:44:05 +00:00
YaST Team Bot
7b84d971ee - Stop using 'lsm' kernel boot parameter even for the 
"None" Major Linux Security Module (bsc#1194332, bsc#1196274).
- 4.4.12

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=281
 2022-02-22 09:00:50 +00:00
YaST Team Bot
e9275a6d6b - Fixed Export unit test (related to jsc#SLE-22069). 
- 4.4.11

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=280
 2022-02-04 09:26:29 +00:00
YaST Team Bot
c01ecbb3ce Related to jsc#SLE-22069: 
- AutoYaST LSM: only allow to select the desired LSM and the
    SELinux mode.
- 4.4.10

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=279
 2022-01-26 23:13:07 +00:00
YaST Team Bot
5da2ecb24d - Use Package module instead of PackageSystem (bsc#1194886). 
- 4.4.9

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=278
 2022-01-26 07:13:43 +00:00
YaST Team Bot
38da14f0ff - Related to jsc#SLE-22069: 
- Fix import of 'none' and 'apparmor' options from the profile
    when declared
- 4.4.8

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=277
 2022-01-24 10:05:11 +00:00
YaST Team Bot
5b2c5b639e Related to jsc#SLE-22069: 
- Autoyast LSM section: added "none" section in order to mark it
    as not selectable during the installation.
- 4.4.7

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=274
 2022-01-11 08:46:35 +00:00
YaST Team Bot
e2692355bf - Fix security_auto client selinux requirement (bsc#1194449) 
- 4.4.6

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=273
 2022-01-10 10:16:08 +00:00
YaST Team Bot
fd2c95b65b - Do not use the 'lsm' kernel boot parameter by now as it could 
need other modules to be pecified like the integrity one
  (bsc#1194332).
- 4.4.5

- Add support for selecting and configuring the desired Linux

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=272
 2022-01-10 09:48:55 +00:00
YaST Team Bot
1a3e1d0c9f - Related to jsc#SLE-22069: 
- Autoyast LSM section: added "selectable" option to the section
  - Do not propose a default LSM configuration when it is declared
    as not configurable in the control file or AutoYaST
- 4.4.4

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=271
 2022-01-05 06:45:55 +00:00
YaST Team Bot
2ce7d82bd9 - Added back the selinux boot parameter when selinux is selected 
and not disabled in order to switch on SELinux (jsc#SLE-22069)
- 4.4.3

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=270
 2021-12-29 15:01:04 +00:00
YaST Team Bot
936ee4d330 - Add support for selecting and configuring the desired Linux 
Security Module (jsc#SLE-22069)
- 4.4.2

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=269
 2021-12-27 10:22:23 +00:00
YaST Team Bot
42ce49589f - Add Security#SafeRead to allow detecting read errors when calling 
it from perl modules (related to bsc#1177183).

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=266
 2021-07-15 14:27:16 +00:00
YaST Team Bot
77edeb8515 - Add Security#SafeRead to allow to detect read errors when calling 
it from perl modules (releated to bsc#1177183).
- 4.4.1

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=265
 2021-07-15 11:02:48 +00:00
YaST Team Bot
18ef9e93bf - 4.4.0 (bsc#1185510) 
OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=264
 2021-04-30 17:04:12 +00:00
YaST Team Bot
bef8cf3008 - Do not set SELinux mode when it is not configurable (bsc#1182940) 
- 4.3.16

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=263
 2021-03-18 12:40:25 +00:00
YaST Team Bot
02315c00af - Make SELinux not configurable when running on WSL (bsc#1182940) 
- 4.3.15

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=262
 2021-03-04 15:08:23 +00:00
YaST Team Bot
0deaff0edf - Ensure defined SELinux patterns are set (bsc#1182543). 
- 4.3.14

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=261
 2021-03-03 09:25:34 +00:00
YaST Team Bot
472771ae7f - Do not write bootloader in insts-sys (bsc#1182894). 
- 4.3.13

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=260
 2021-03-02 16:40:40 +00:00
YaST Team Bot
ba05731856 - Change the SELinux resolvable unique id used in auto-installation 
to be consistent with the one used by normal installation
  (related to jsc#SLE-17342).
- 4.3.12

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=259
 2021-03-02 13:33:21 +00:00
YaST Team Bot
a05d006430 - Move security_finish client to yast2-installation (bsc#1182821) 
- 4.3.11

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=258
 2021-03-01 11:36:46 +00:00
YaST Team Bot
7272b56ef4 - Move SELinux .autorelabel file from / to /etc/selinux if root 
filesystem will be mounted as read only (jsc#SLE-17307).
- 4.3.10

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=257
 2021-02-23 23:14:27 +00:00
YaST Team Bot
1f94707ab2 Tue Feb 16 13:36:34 UTC 2021 - David Diaz <dgonzalez@suse.com> 
- jsc#SMO-20, jsc#SLE-17342:
  - Add class for managing SELinux configuration.
  - AutoYaST: add support for SELinux configuration.
- 4.3.9

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=256
 2021-02-18 15:01:06 +00:00
YaST Team Bot
e04bcc8ad2 - Adapted unit test to recent changes in Yast::Report (related to 
bsc#1179893).
- 4.3.8

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=255
 2021-02-15 14:52:56 +00:00
YaST Team Bot
4c89ee6105 - Removed old code for sysvinit configuration (bsc#1175494). 
- 4.3.7

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=253
 2020-12-15 13:46:01 +00:00
YaST Team Bot
a9dfb91f8e - Removed obsolete setting DISPLAYMANAGER_SHUTDOWN from 
/etc/sysconfig/displaymanager (bsc#1175495).
- 4.3.6

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=252
 2020-12-14 16:22:03 +00:00
YaST Team Bot
a9eb96bd0c - Removed handling of obsolete entry SYSTOHC in /etc/sysconfig/clock 
(bsc#1175496)
- 4.3.5

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=251
 2020-12-11 13:03:59 +00:00
YaST Team Bot
f63a9e5248 - AY-Import: Translate <enable_sysrq> setting to <kernel.sysrq> 
with the correct value format (bsc#1177720).
- 4.3.4

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=250
 2020-10-28 12:23:08 +00:00
YaST Team Bot
7d3b29bb71 - Fixed randomly failing unit tests, do not query the installed 
PAM modules in the testing system (related to bsc#1171318)
- 4.3.3

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=249
 2020-08-13 11:14:04 +00:00
YaST Team Bot
21d617220d - AutoYaST: Added supplements: autoyast(security) into the spec file 
in order to install this packages if the section has been defined
  in the AY configuration file (bsc#1146494).
- 4.3.2

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=248
 2020-08-12 10:22:42 +00:00
YaST Team Bot
ddabcd70da - Use pam_pwquality instead of pam_cracklib depending on 
availability (bsc#1171318)
- Fix setting dictpath for pam_pwquality (bsc#1174619)
- 4.3.1

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=247
 2020-07-29 09:07:15 +00:00
YaST Team Bot
89951adc02 - Autoyast schema: Allow optional types for string and map objects 
(bsc#1170886)
- 4.3.0

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=246
 2020-05-12 15:41:59 +00:00
YaST Team Bot
775360ae15 - Apply sysctl changes to the running system when the YaST sysctl 
configuration file is modified (bsc#1167234)
- 4.2.12

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=244
 2020-04-02 14:39:48 +00:00
YaST Team Bot
17729cde81 - Using SysctlConfig class: Handle sysctl entries in different 
directories (bsc#1151649).
- 4.2.11

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=243
 2020-02-21 09:23:20 +00:00
YaST Team Bot
56d2aafab7 - don't use /bin/systemctl compat symlink (bsc#1160890) 
- 4.2.10

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=242
 2020-01-23 14:08:11 +00:00
YaST Team Bot
8cfdbb450d - convert old init.d to systemd (jsc#SLE-10976) 
- 4.2.9

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=241
 2020-01-13 12:53:55 +00:00
YaST Team Bot
ae91d1a280 - Added to rnc file: sys_gid_max, sys_gid_min, sys_uid_max, 
sys_uid_min, hibernate_system, kernel.sysrq, mandatory_services,
  net.ipv4.ip_forward, net.ipv4.tcp_syncookies,
  net.ipv6.conf.all.forwarding (bsc#1158301).
- 4.2.8

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=240
 2019-12-12 14:24:40 +00:00
YaST Team Bot
793c667b41 - bsc#1155735, bsc#1157541: 
- Read /usr/etc/login.defs.
  - Write login.defs configuration to /etc/login.defs.d/.
- 4.2.7

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=239
 2019-11-27 09:57:47 +00:00
YaST Team Bot
b181422cbb - Change default encryption method from DES to SHA512 (bsc#1157541, 
CVE-2019-3700).
- 4.2.6

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=238
 2019-11-22 12:54:27 +00:00
YaST Team Bot
53aeab7d36 - Added extra_services to security.rnc file (bsc#1153623). 
- 4.2.5

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=237
 2019-10-18 11:17:47 +00:00
YaST Team Bot
1e61ff6d53 - Place sysctl settings in /etc/sysctl.d/ (jsc#SLE-9077). 
- 4.2.4

OBS-URL: https://build.opensuse.org/package/show/YaST:Head/yast2-security?expand=0&rev=236
 2019-10-07 12:43:10 +00:00