Updated 'default' label for attributes to 'value' (#85)

controls/V-71849.rb

@@ -3,13 +3,13 @@
 # Support for passed in Atrributes
 disable_slow_controls = attribute(
   'disable_slow_controls',
-  default: false,
+  value: false,
   description: 'If enabled, this attribute disables this control and other
                 controls that consistently take a long time to complete.'
 )
 rpm_verify_perms_except = attribute(
   'rpm_verify_perms_except',
-  default: [],
+  value: [],
   description: 'This is a list of system files that should be allowed to change
                 permission attributes from an rpm verify point of view.')
 

controls/V-71855.rb

@@ -2,13 +2,13 @@
 #
 disable_slow_controls = attribute(
   'disable_slow_controls',
-  default: false,
+  value: false,
   description: 'If enabled, this attribute disables this control and other
                 controls that consistently take a long time to complete.')
 
 rpm_verify_integrity_except = attribute(
   'rpm_verify_integrity_except',
-  default: [],
+  value: [],
   description: 'This is a list of system files that should be allowed to change
                 from an rpm verify point of view.')
 

controls/V-71859.rb

@@ -1,13 +1,13 @@
 # encoding: utf-8
 #
 
-banner_message_enabled = attribute('banner_message_enabled', default: "true",
+banner_message_enabled = attribute('banner_message_enabled', value: "true",
   description: 'The banner message must display the Standard Mandatory DoD notice
   before granting access.')
 
 dconf_user = attribute(
   'dconf_user',
-  default: '',
+  value: '',
   description: "User to use to check dconf settings"
 )
 

controls/V-71861.rb

@@ -1,7 +1,7 @@
 # encoding: utf-8
 #
 banner_message_text_gui = attribute('banner_message_text_gui',
-default:
+value:
 "You are accessing a U.S. Government (USG) Information System (IS) that is \
 provided for USG-authorized use only. By using this IS (which includes any \
 device attached to this IS), you consent to the following conditions: -The USG \
@@ -23,7 +23,7 @@
 description: 'The banner message must display the designated banner before granting access.')
 
 banner_message_text_gui_limited = attribute('banner_message_text_gui_limited',
-default: "I've read & consent to terms in IS user agreem't.",
+value: "I've read & consent to terms in IS user agreem't.",
 description: 'The banner message must display the designated banner before granting access.')
 
 control "V-71861" do

controls/V-71863.rb

@@ -4,7 +4,7 @@
 #TODO: Make sure this is actually an onlyif on the GUI - ssh banner, ftp banner also use /etc/issue
 
 banner_message_text_cli = attribute('banner_message_text_cli',
-default:
+value:
 "You are accessing a U.S. Government (USG) Information System (IS) that is \
 provided for USG-authorized use only. By using this IS (which includes any \
 device attached to this IS), you consent to the following conditions: -The USG \
@@ -26,7 +26,7 @@
 description: 'The banner message must display the designated banner before granting access.')
 
 banner_message_text_cli_limited = attribute('banner_message_text_cli_limited',
-default: "I've read & consent to terms in IS user agreem't.",
+value: "I've read & consent to terms in IS user agreem't.",
 description: 'The banner message must display the designated banner before granting access.')
 
 control "V-71863" do

controls/V-71901.rb

@@ -2,7 +2,7 @@
 #
 
 lock_delay = attribute('lock_delay',
-default: 5,
+value: 5,
 description: 'The scereensaver lock-delay must be less than or equal to the
 specified value.')
 

controls/V-71911.rb

@@ -1,7 +1,7 @@
 # encoding: utf-8
 #
 
-difok = attribute('difok', default: 8, description: 'The acceptable range of
+difok = attribute('difok', value: 8, description: 'The acceptable range of
 values for difok which specifies the maximum number of characters that must
 change when a password is changed.')
 

controls/V-71933.rb

@@ -5,7 +5,7 @@
 # TODO this can happen if `authconfig` has not been run on the system yet and
 # TODO the system is still using the `non-ac` versions of the files yet.
 
-min_reuse_generations = attribute('min_reuse_generations', default: 5,
+min_reuse_generations = attribute('min_reuse_generations', value: 5,
 description: 'The minimum number of generations before a password can be
 reused.')
 

controls/V-71935.rb

@@ -4,7 +4,7 @@
 # TODO update attrib to use the same `style` as the other PAM/PASSWD attributes
 # TODO we should also have a PAM_PWQUALITY_PATH attrib I think
 
-min_len = attribute('min_len', default: 15,
+min_len = attribute('min_len', value: 15,
 description: 'The minimum number of characters for passwords.')
 
 control "V-71935" do

controls/V-71941.rb

@@ -1,7 +1,7 @@
 # encoding: utf-8
 #
 
-days_of_inactivity = attribute('days_of_inactivity', default: 0, description: 'The
+days_of_inactivity = attribute('days_of_inactivity', value: 0, description: 'The
 number of days of inactivity before an account is disabled.')
 
 control "V-71941" do

controls/V-71943.rb

@@ -1,13 +1,13 @@
 # encoding: utf-8
 #
 
-unsuccessful_attempts = attribute('unsuccessful_attempts', default: 3,
+unsuccessful_attempts = attribute('unsuccessful_attempts', value: 3,
 description: 'The account is denied access after the specified number of
 consecutive failed logon attempts.')
-fail_interval = attribute('fail_interval', default: 900,
+fail_interval = attribute('fail_interval', value: 900,
 description: 'The interval of time in which the consecutive failed logon
 attempts must occur in order for the account to be locked out (in seconds).')
-lockout_time = attribute('lockout_time', default: 604800,
+lockout_time = attribute('lockout_time', value: 604800,
 description: 'The minimum amount of time that an account must be locked out
 after the specified number of unsuccessful logon attempts (in seconds).
 This attribute should never be set greater than 604800.')

controls/V-71961.rb

@@ -4,17 +4,17 @@
 grub_superusers = attribute(
   'grub_superusers',
   description: 'superusers for grub boot ( array )',
-  default: ['root']
+  value: ['root']
 )
 grub_user_boot_files = attribute(
  'grub_user_boot_files',
  description: 'grub boot config files',
- default: ['/boot/grub2/user.cfg']
+ value: ['/boot/grub2/user.cfg']
 )
 grub_main_cfg = attribute(
  'grub_main_cfg',
  description: 'main grub boot config file',
- default: '/boot/grub2/grub.cfg'
+ value: '/boot/grub2/grub.cfg'
 )
 
 control "V-71961" do

controls/V-71963.rb

@@ -4,17 +4,17 @@
 efi_superusers = attribute(
   'efi_superusers',
   description: 'superusers for efi boot ( array )',
-  default: ['root']
+  value: ['root']
 )
 efi_user_boot_files = attribute(
  'efi_user_boot_files',
  description: 'efi boot config files',
- default: ['/boot/efi/EFI/redhat/user.cfg']
+ value: ['/boot/efi/EFI/redhat/user.cfg']
 )
 efi_main_cfg = attribute(
  'efi_main_cfg',
  description: 'main efi boot config file',
- default: '/boot/efi/EFI/redhat/grub.cfg'
+ value: '/boot/efi/EFI/redhat/grub.cfg'
 )
 
 control "V-71963" do

controls/V-71965.rb

@@ -10,7 +10,7 @@
 
 smart_card_status = attribute(
   'smart_card_status',
-  default: 'enabled', # values(enabled|disabled)
+  value: 'enabled', # values(enabled|disabled)
   description: 'Smart Card Status'
 )
 

controls/V-71971.rb

@@ -3,7 +3,7 @@
 # Will need to be changed to reflect list of authorized system accounts
 admin_logins = attribute(
   'admin_logins',
-  default: [],
+  value: [],
   description: "System accounts that support approved system activities."
 )
 

controls/V-71973.rb

@@ -1,9 +1,9 @@
 # encoding: utf-8
 #
 
-file_integrity_tool = attribute('file_integrity_tool', default: 'aide',
+file_integrity_tool = attribute('file_integrity_tool', value: 'aide',
 description: 'Tool used to determine file integrity')
-file_integrity_interval = attribute('file_integrity_interval', default: 'weekly',
+file_integrity_interval = attribute('file_integrity_interval', value: 'weekly',
 description: 'Interval for running the file integrity tool.')
 
 control "V-71973" do

controls/V-71975.rb

@@ -3,7 +3,7 @@
 
 file_integrity_tool = attribute(
   'file_integrity_tool',
-  default: 'aide',
+  value: 'aide',
   description: "Tool used to determine file integrity"
 )
 

controls/V-72001.rb

@@ -3,7 +3,7 @@
 
 known_system_accounts = attribute(
   'known_system_accounts',
-  default: [
+  value: [
         'root',
         'bin',
         'daemon',
@@ -37,7 +37,7 @@
 disallowed_accounts = attribute(
   'disallowed_accounts',
   description: 'Accounts that are not allowed on the system (Array)',
-  default: [
+  value: [
     'games',
     'gopher',
     'ftp',
@@ -47,7 +47,7 @@
 user_accounts = attribute(
   'user_accounts',
   description: 'accounts of known managed users (Array)',
-  default:[]
+  value:[]
 )
 
 control "V-72001" do

controls/V-72011.rb

@@ -7,13 +7,13 @@
 exempt_home_users = attribute(
   'exempt_home_users',
   description: 'These are `home dir` exempt interactive accounts',
-  default: []
+  value: []
 )
 
 non_interactive_shells = attribute(
   'non_interactive_shells',
   description: 'These shells do not allow a user to login',
-  default: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
+  value: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
 )
 
 control "V-72011" do

controls/V-72015.rb

@@ -6,13 +6,13 @@
 exempt_home_users = attribute(
   'exempt_home_users',
   description: 'These are `home dir` exempt interactive accounts',
-  default: []
+  value: []
 )
 
 non_interactive_shells = attribute(
   'non_interactive_shells',
   description: 'These shells do not allow a user to login',
-  default: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
+  value: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
 )
 
 control "V-72015" do

controls/V-72017.rb

@@ -4,13 +4,13 @@
 exempt_home_users = attribute(
   'exempt_home_users',
   description: 'These are `home dir` exempt interactive accounts',
-  default: []
+  value: []
 )
 
 non_interactive_shells = attribute(
   'non_interactive_shells',
   description: 'These shells do not allow a user to login',
-  default: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
+  value: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
 )
 
 control "V-72017" do

controls/V-72019.rb

@@ -4,13 +4,13 @@
 exempt_home_users = attribute(
   'exempt_home_users',
   description: 'These are `home dir` exempt interactive accounts',
-  default: []
+  value: []
 )
 
 non_interactive_shells = attribute(
   'non_interactive_shells',
   description: 'These shells do not allow a user to login',
-  default: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
+  value: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
 )
 
 control "V-72019" do

controls/V-72021.rb

@@ -4,13 +4,13 @@
 exempt_home_users = attribute(
   'exempt_home_users',
   description: 'These are `home dir` exempt interactive accounts',
-  default: []
+  value: []
 )
 
 non_interactive_shells = attribute(
   'non_interactive_shells',
   description: 'These shells do not allow a user to login',
-  default: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
+  value: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
 )
 
 control "V-72021" do

controls/V-72023.rb

@@ -4,13 +4,13 @@
 exempt_home_users = attribute(
   'exempt_home_users',
   description: 'These are `home dir` exempt interactive accounts',
-  default: []
+  value: []
 )
 
 non_interactive_shells = attribute(
   'non_interactive_shells',
   description: 'These shells do not allow a user to login',
-  default: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
+  value: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
 )
 
 control "V-72023" do

controls/V-72025.rb

@@ -4,13 +4,13 @@
 exempt_home_users = attribute(
   'exempt_home_users',
   description: 'These are `home dir` exempt interactive accounts',
-  default: []
+  value: []
 )
 
 non_interactive_shells = attribute(
   'non_interactive_shells',
   description: 'These shells do not allow a user to login',
-  default: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
+  value: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
 )
 
 control "V-72025" do

controls/V-72027.rb

@@ -4,13 +4,13 @@
 exempt_home_users = attribute(
   'exempt_home_users',
   description: 'These are `home dir` exempt interactive accounts',
-  default: []
+  value: []
 )
 
 non_interactive_shells = attribute(
   'non_interactive_shells',
   description: 'These shells do not allow a user to login',
-  default: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
+  value: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
 )
 
 control "V-72027" do

controls/V-72029.rb

@@ -4,13 +4,13 @@
 exempt_home_users = attribute(
   'exempt_home_users',
   description: 'These are `home dir` exempt interactive accounts',
-  default: []
+  value: []
 )
 
 non_interactive_shells = attribute(
   'non_interactive_shells',
   description: 'These shells do not allow a user to login',
-  default: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
+  value: ["/sbin/nologin","/sbin/halt","/sbin/shutdown","/bin/false","/bin/sync", "/bin/true"]
 )
 
 control "V-72029" do