You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
2.2.1.3_configure_chrony consider check failed if chrony package is not installed. However, CIS benchmark §2.2.1.3 is only related to chrony proper configuration and clearly states:
This recommendation only applies if chrony is in use on the system.
so the check should be skipped if package is not installed instead of failing (like when grub is not in use for test 1.5.1_bootloader_ownership
same should apply to 2.2.1.4_configure_ntp if ntp is not instaled
2.2.1.3_configure_chrony [ KO ] chrony is not installed!
2.2.1.3_configure_chrony [ KO ] Check Failed
The text was updated successfully, but these errors were encountered:
We currently disable the check on machines via configuration file where chrony (for instance) is not installed on the machine, wouldn't this solution work for you ?
yes, that would work.
However, on the other side, CIS benchmark clearly states that the recommandation only apply if chrony (resp. ntp) is in use so default config should skip if not installed I think.
I will try to publish a pull request.
2.2.1.3_configure_chrony
consider check failed ifchrony
package is not installed. However, CIS benchmark §2.2.1.3 is only related to chrony proper configuration and clearly states:so the check should be skipped if package is not installed instead of failing (like when grub is not in use for test
1.5.1_bootloader_ownership
same should apply to
2.2.1.4_configure_ntp
if ntp is not instaledThe text was updated successfully, but these errors were encountered: