Update no_legacy_plus_entries_* Ansible Remedations

[Mab879]

Description:

• Move to multi platforms
• Update Ansible remedations to fit the style guide

Rationale:

• Style guide
• Ansible parity

[github-actions]

Start a new ephemeral environment with changes proposed in this pull request:

rhel8 (from CTF) Environment (using Fedora as testing environment)

Fedora Testing Environment

Oracle Linux 8 Environment

[github-actions]

This datastream diff is auto generated by the check Compare DS/Generate Diff

Click here to see the full diff

ansible remediation for rule 'xccdf_org.ssgproject.content_rule_no_legacy_plus_entries_etc_group' differs.
--- xccdf_org.ssgproject.content_rule_no_legacy_plus_entries_etc_group
+++ xccdf_org.ssgproject.content_rule_no_legacy_plus_entries_etc_group
@@ -1,5 +1,6 @@
-- name: Backup the old /etc/group file
-  copy:
+- name: Ensure there are no legacy + NIS entries in /etc/group - Backup the Old /etc/group
+    File
+  ansible.builtin.copy:
     src: /etc/group
     dest: /etc/group-
     remote_src: true
@@ -12,8 +13,9 @@
   - no_reboot_needed
   - restrict_strategy
 
-- name: Remove lines starting with + from /etc/group
-  lineinfile:
+- name: Ensure there are no legacy + NIS entries in /etc/group - Remove Lines Starting
+    with + From /etc/group
+  ansible.builtin.lineinfile:
     regexp: ^\+.*$
     state: absent
     path: /etc/group

ansible remediation for rule 'xccdf_org.ssgproject.content_rule_no_legacy_plus_entries_etc_passwd' differs.
--- xccdf_org.ssgproject.content_rule_no_legacy_plus_entries_etc_passwd
+++ xccdf_org.ssgproject.content_rule_no_legacy_plus_entries_etc_passwd
@@ -1,5 +1,6 @@
-- name: Backup the old /etc/passwd file
-  copy:
+- name: Ensure there are no legacy + NIS entries in /etc/passwd - Backup the Old /etc/passwd
+    File
+  ansible.builtin.copy:
     src: /etc/passwd
     dest: /etc/passwd-
     remote_src: true
@@ -12,8 +13,9 @@
   - no_reboot_needed
   - restrict_strategy
 
-- name: Remove lines starting with + from /etc/passwd
-  lineinfile:
+- name: Ensure there are no legacy + NIS entries in /etc/passwd - Remove Lines Starting
+    with + From /etc/passwd
+  ansible.builtin.lineinfile:
     regexp: ^\+.*$
     state: absent
     path: /etc/passwd

ansible remediation for rule 'xccdf_org.ssgproject.content_rule_no_legacy_plus_entries_etc_shadow' differs.
--- xccdf_org.ssgproject.content_rule_no_legacy_plus_entries_etc_shadow
+++ xccdf_org.ssgproject.content_rule_no_legacy_plus_entries_etc_shadow
@@ -1,5 +1,6 @@
-- name: Backup the old /etc/shadow file
-  copy:
+- name: Ensure there are no legacy + NIS entries in /etc/shadow - Backup the Old /etc/shadow
+    File
+  ansible.builtin.copy:
     src: /etc/shadow
     dest: /etc/shadow-
     remote_src: true
@@ -12,8 +13,9 @@
   - no_reboot_needed
   - restrict_strategy
 
-- name: Remove lines starting with + from /etc/shadow
-  lineinfile:
+- name: Ensure there are no legacy + NIS entries in /etc/shadow - Remove Lines Starting
+    with + From /etc/shadow
+  ansible.builtin.lineinfile:
     regexp: ^\+.*$
     state: absent
     path: /etc/shadow

[marcusburghardt]

Thanks

[codeclimate]

Code Climate has analyzed commit 0d2e0de and detected 0 issues on this pull request.

The test coverage on the diff in this pull request is 100.0% (50% is the threshold).

This pull request will bring the total coverage in the repository to 53.3% (0.0% change).

View more on Code Climate.