mirror of
https://github.com/nikdoof/ansible-cis.git
synced 2025-12-13 09:32:15 +00:00
21 lines
499 B
YAML
21 lines
499 B
YAML
---
|
|
# Modify login.defs
|
|
- name: Set Default umask for Users
|
|
ansible.builtin.lineinfile:
|
|
dest: "/etc/login.defs"
|
|
regexp: "UMASK"
|
|
line: "UMASK 077"
|
|
state: present
|
|
- name: Set Home filemode
|
|
ansible.builtin.lineinfile:
|
|
dest: "/etc/login.defs"
|
|
regexp: "HOME_MODE"
|
|
line: "HOME_MODE 0701"
|
|
state: present
|
|
- name: Disable user groups
|
|
ansible.builtin.lineinfile:
|
|
dest: "/etc/login.defs"
|
|
regexp: "USERGROUPS_ENAB"
|
|
line: "USERGROUPS_ENAB no"
|
|
state: present
|