From 0f237250b9105c3f44f4340808ce50f0652414f5 Mon Sep 17 00:00:00 2001 From: Andrew Williams Date: Sat, 20 May 2023 08:29:34 +0100 Subject: [PATCH] Allow hidden proc to be disabled --- defaults/main.yaml | 2 ++ handlers/main.yaml | 2 +- tasks/proc.yaml | 1 + 3 files changed, 4 insertions(+), 1 deletion(-) create mode 100644 defaults/main.yaml diff --git a/defaults/main.yaml b/defaults/main.yaml new file mode 100644 index 0000000..f664805 --- /dev/null +++ b/defaults/main.yaml @@ -0,0 +1,2 @@ +--- +cis_hide_proc: false \ No newline at end of file diff --git a/handlers/main.yaml b/handlers/main.yaml index f5a71f5..362df36 100644 --- a/handlers/main.yaml +++ b/handlers/main.yaml @@ -12,7 +12,7 @@ - name: remount proc ansible.posix.mount: path: /proc - state: remount + state: remounted - name: restart journald ansible.builtin.service: name: systemd-journald diff --git a/tasks/proc.yaml b/tasks/proc.yaml index 63519c0..209b6b1 100644 --- a/tasks/proc.yaml +++ b/tasks/proc.yaml @@ -8,3 +8,4 @@ state: present fstype: proc notify: remount proc + when: cis_hide_proc \ No newline at end of file