Skip to content

Commit

Permalink
fix: more readable condition and prevent skipping 0600 ansible-lockdo…
Browse files Browse the repository at this point in the history 
…wn#173

Signed-off-by: rjacobs1990 <ricardojacobs20@gmail.com>
  • Loading branch information
@rjacobs1990 @ipruteanu-sie
rjacobs1990 authored and ipruteanu-sie committed Feb 21, 2024
1 parent 087b936 commit 6f92ed8
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion tasks/section_4/cis_4.2.3.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@
- name: "4.2.3 | PATCH | Ensure permissions on all logfiles are configured | change permissions"
ansible.builtin.file:
path: "{{ item.path }}"
mode: "{{ '0640' if item.mode != '0600' else '0600' }}"
mode: "{{ '0600' if item.mode == '0600' else '0640' }}"
loop: "{{ logfiles.files }}"
loop_control:
label: "{{ item.path }}"
Expand Down

0 comments on commit 6f92ed8

Please sign in to comment.