Implement audit and apply methods for 7.6 disable_wireless.

2019-04-12 04:07:44 -04:00 · 2019-04-12 04:07:44 -04:00 · e2313bd1ff
parent b2fd0dd674
commit e2313bd1ff
73 changed files with 92 additions and 76 deletions
--- a/bin/hardening/1.2_enable_verify_sign_packages_from_repository.sh
+++ b/bin/hardening/1.2_enable_verify_sign_packages_from_repository.sh
@ -6,7 +6,7 @@

 #
 # 1.2 Enable Option for signature of packages from a repository (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/1.3_enable_verify_sign_of_local_packages.sh
+++ b/bin/hardening/1.3_enable_verify_sign_of_local_packages.sh
@ -6,7 +6,7 @@

 #
 # 1.3 Enable verify the signature of local packages (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/1.4_set_no_allow_insecure_repository_by_apt.sh
+++ b/bin/hardening/1.4_set_no_allow_insecure_repository_by_apt.sh
@ -6,7 +6,7 @@

 #
 # 1.4 Set no allow insecure repository when by apt update (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/10.1.10_set_create_home_bool.sh
+++ b/bin/hardening/10.1.10_set_create_home_bool.sh
@ -6,7 +6,7 @@

 #
 # 10.1.10 Set create home bool  (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/10.1.11_set_maxlogins_for_all_accounts.sh
+++ b/bin/hardening/10.1.11_set_maxlogins_for_all_accounts.sh
@ -6,7 +6,7 @@

 #
 # 10.1.11 Set maxlogins for all accounts  (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/10.1.12_ensure_no_shosts_cfg_on_system.sh
+++ b/bin/hardening/10.1.12_ensure_no_shosts_cfg_on_system.sh
@ -6,7 +6,7 @@

 #
 # 10.1.12 Ensure no shosts configure file on system (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/10.1.4_set_password_encrypt_method.sh
+++ b/bin/hardening/10.1.4_set_password_encrypt_method.sh
@ -6,7 +6,7 @@

 #
 # 10.1.4 Set Password Expiration Days (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/10.1.5_set_min_password_lifetime.sh
+++ b/bin/hardening/10.1.5_set_min_password_lifetime.sh
@ -6,7 +6,7 @@

 #
 # 10.1.5 Set mininum password lifetime (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/10.1.6_set_max_password_lifetime.sh
+++ b/bin/hardening/10.1.6_set_max_password_lifetime.sh
@ -6,7 +6,7 @@

 #
 # 10.1.6 Set maximum password lifetime (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/10.1.7_remove_nopasswd_sudoers.sh
+++ b/bin/hardening/10.1.7_remove_nopasswd_sudoers.sh
@ -6,7 +6,7 @@

 #
 # 10.1.7 Remove nopasswd option from the sudoers configuration (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/10.1.8_remove_noauthenticate_sudoers.sh
+++ b/bin/hardening/10.1.8_remove_noauthenticate_sudoers.sh
@ -6,7 +6,7 @@

 #
 # 10.1.8 Remove not authenticate option from the sudoers configuration (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/10.1.9_set_fail_delay_seconds.sh
+++ b/bin/hardening/10.1.9_set_fail_delay_seconds.sh
@ -6,7 +6,7 @@

 #
 # 10.1.9 Set FAIL_DELAY Parameters Using pam_faildelay (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/2.26_home_nosuid.sh
+++ b/bin/hardening/2.26_home_nosuid.sh
@ -6,7 +6,7 @@

 #
 # 2.26 Set nosuid option for /home filesystem/Partition (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/2.27_nfs_nosuid.sh
+++ b/bin/hardening/2.27_nfs_nosuid.sh
@ -6,7 +6,7 @@

 #
 # 2.27 Set nosuid option for nfs/nfs4 filesystem/Partition (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/2.28_nfs_noexec.sh
+++ b/bin/hardening/2.28_nfs_noexec.sh
@ -6,7 +6,7 @@

 #
 # 2.28 Set noexec option for nfs/nfs4 filesystem/Partition (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/2.29_nfs_RPCSEC_GSS.sh
+++ b/bin/hardening/2.29_nfs_RPCSEC_GSS.sh
@ -6,7 +6,7 @@

 #
 # 2.29 Set RPCSEC_GSS option for nfs/nfs4 filesystem/Partition (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/4.5_enable_apparmor.sh
+++ b/bin/hardening/4.5_enable_apparmor.sh
@ -6,7 +6,7 @@

 #
 # 4.5 Activate AppArmor (Scored)
-# Add by Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Add by Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/5.10_ensure_installed_sudo.sh
+++ b/bin/hardening/5.10_ensure_installed_sudo.sh
@ -7,7 +7,7 @@
 #
 # 5.10 Ensure sudo is installed (Scored)
 # Add new by: 
-# Authors : Samson wen, Samson <sccxboy@gmail.com> 
+# Author : Samson wen, Samson <sccxboy@gmail.com> 
 #

 set -e # One error, it's over
--- a/bin/hardening/5.7_install_screen.sh
+++ b/bin/hardening/5.7_install_screen.sh
@ -6,7 +6,7 @@

 #
 # 5.7 Install screen (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com> 
+# Author : Samson wen, Samson <sccxboy@gmail.com> 
 #

 set -e # One error, it's over
--- a/bin/hardening/5.8_enable_openssh_server.sh
+++ b/bin/hardening/5.8_enable_openssh_server.sh
@ -6,7 +6,7 @@

 #
 # 5.8 Ensure openssh server is enabled (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com> 
+# Author : Samson wen, Samson <sccxboy@gmail.com> 
 #

 set -e # One error, it's over
--- a/bin/hardening/5.9_disable_ctrl_alt_del_target.sh
+++ b/bin/hardening/5.9_disable_ctrl_alt_del_target.sh
@ -6,7 +6,7 @@

 #
 # 5.9 Ensure ctrl-alt-del is disabled (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com> 
+# Author : Samson wen, Samson <sccxboy@gmail.com> 
 #

 set -e # One error, it's over
--- a/bin/hardening/6.17_ensure_virul_scan_server_is_enabled.sh
+++ b/bin/hardening/6.17_ensure_virul_scan_server_is_enabled.sh
@ -6,7 +6,7 @@

 #
 # 6.17 Ensure virul scan Server is enabled (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/6.18_ensure_virusscan_program_update_is_enabled.sh
+++ b/bin/hardening/6.18_ensure_virusscan_program_update_is_enabled.sh
@ -6,7 +6,7 @@

 #
 # 6.18 Ensure virul scan Server update is enabled (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/6.5_ensure_time_sync_server_is_installed.sh
+++ b/bin/hardening/6.5_ensure_time_sync_server_is_installed.sh
@ -6,7 +6,7 @@

 #
 # 6.19 Ensure time synchronization server is installed ( Not Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/7.1.3_disable_interface_promisc_mode.sh
+++ b/bin/hardening/7.1.3_disable_interface_promisc_mode.sh
@ -6,7 +6,7 @@

 #
 # 7.1.3 Disable promiscuous mode for network interface (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/7.6_disable_wireless.sh
+++ b/bin/hardening/7.6_disable_wireless.sh
@ -1,11 +1,12 @@
 #!/bin/bash

 #
-# harbian audit 7/8/9  Hardening
+# harbian audit 9  Hardening
 #

 #
-# 7.6 Deactivate Wireless Interfaces (Not Scored)
+# 7.6 Ensure wireless interfaces are disabled (Not Scored)
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
@ -15,12 +16,27 @@ HARDENING_LEVEL=3

 # This function will be called if the script status is on enabled / audit mode
 audit () {
-    info "Not implemented yet"
+	if [ $(lspci  | grep -ic wireless ) -eq 0 ]; then
+		info "The OS is not wireless device! "
+		FNRET=0
+	else
+		if [ $(wc -l /proc/net/wireless) -lt 3 ]; then
+			ok "Wireless interfaces are disabled!"
+			FNRET=0
+		else
+			crit "Wireless interfaces is not disabled!"
+			FNRET=1
+		fi
+	fi
 }

 # This function will be called if the script status is on enabled mode
 apply () {
-    info "Not implemented yet"
+	if [ $FNRET = 0 ]; then
+		ok "Wireless interfaces are disabled!"
+	else
+		warn "Wireless interfaces is not disabled! Need the administrator to manually disable it. HOWTO: ip link set <interface> down"
+	fi
 }

 # This function will check config parameters required
--- a/bin/hardening/7.7.1_enable_firewall.sh
+++ b/bin/hardening/7.7.1_enable_firewall.sh
@ -7,7 +7,7 @@
 #
 # 7.7.1 Ensure Firewall is active (Scored)
 # Corresponds to the original 7.7 
-# Modify Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Modify Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/7.7.2_ensure_set_firewall_rules.sh
+++ b/bin/hardening/7.7.2_ensure_set_firewall_rules.sh
@ -7,7 +7,7 @@
 #
 # 7.7.2 Ensure the Firewall is set rules (Scored)
 # Include ipv4 and ipv6
-# Add this feature:Authors : Samson wen, Samson <sccxboy@gmail.com> 
+# Add this feature:Author : Samson wen, Samson <sccxboy@gmail.com> 
 #

 set -e # One error, it's over
--- a/bin/hardening/7.7.3_ensure_firewall_set_protect_dos_attacks.sh
+++ b/bin/hardening/7.7.3_ensure_firewall_set_protect_dos_attacks.sh
@ -7,7 +7,7 @@
 #
 # 7.7.3 Ensure the Firewall is set rules of protect DOS attacks (Scored)
 # Include ipv4 and ipv6
-# Add this feature:Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Add this feature:Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/7.7.4_ensure_default_deny_firewall_policy.sh
+++ b/bin/hardening/7.7.4_ensure_default_deny_firewall_policy.sh
@ -7,7 +7,7 @@
 #
 # 7.7.4 Ensure default deny firewall policy (Scored)
 # Include ipv4 and ipv6
-# Add this feature:Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Add this feature:Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/7.7.5_ensure_loopback_traffic_is_configured.sh
+++ b/bin/hardening/7.7.5_ensure_loopback_traffic_is_configured.sh
@ -7,7 +7,7 @@
 #
 # 7.7.5 Ensure loopback traffic is configured (Scored)
 # Include ipv4 and ipv6
-# Add this feature:Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Add this feature:Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/7.7.6_ensure_firewall_rules_exist_for_all_open_ports.sh
+++ b/bin/hardening/7.7.6_ensure_firewall_rules_exist_for_all_open_ports.sh
@ -7,7 +7,7 @@
 #
 # 7.7.6 Ensure default deny firewall policy (Scored)
 # Include ipv4 and ipv6
-# Add this feature:Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Add this feature:Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/7.7.7_ensure_outbound_and_established_connections_are_configured.sh
+++ b/bin/hardening/7.7.7_ensure_outbound_and_established_connections_are_configured.sh
@ -7,7 +7,7 @@
 #
 # 7.7.7 Ensure outbound and established connections are configured (Not Scored)
 # Include ipv4 and ipv6
-# Add this feature:Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Add this feature:Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.1.4_set_failure_mode.sh
+++ b/bin/hardening/8.1.1.4_set_failure_mode.sh
@ -6,7 +6,7 @@

 #
 # 8.1.1.4 Set failure mode of audit service (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.1.5_ensure_set_remote_server.sh
+++ b/bin/hardening/8.1.1.5_ensure_set_remote_server.sh
@ -6,7 +6,7 @@

 #
 # 8.1.1.5 Ensure set remote_server for audit service (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.1.6_ensure_set_encrypt_for_audit_remote.sh
+++ b/bin/hardening/8.1.1.6_ensure_set_encrypt_for_audit_remote.sh
@ -6,7 +6,7 @@

 #
 # 8.1.1.6 Ensure enable_krb5 set to yes for remote audit service (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.1.7_ensure_set_action_for_audit_storage_full.sh
+++ b/bin/hardening/8.1.1.7_ensure_set_action_for_audit_storage_full.sh
@ -6,7 +6,7 @@

 #
 # 8.1.1.7 Ensure set action for audit storage volume is fulled (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.1.8_ensure_set_action_for_net_fail.sh
+++ b/bin/hardening/8.1.1.8_ensure_set_action_for_net_fail.sh
@ -6,7 +6,7 @@

 #
 # 8.1.1.8 Ensure set action for network failure on remote audit service (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.1.9_set_space_left_audit.sh
+++ b/bin/hardening/8.1.1.9_set_space_left_audit.sh
@ -6,7 +6,7 @@

 #
 # 8.1.1.9 Set space left for auditd service (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.19_record_sshkeysign_usage.sh
+++ b/bin/hardening/8.1.19_record_sshkeysign_usage.sh
@ -6,7 +6,7 @@

 #
 # 8.1.19  Recored ssh-keysign command usage (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.20_record_open_by_handle_at_syscall.sh
+++ b/bin/hardening/8.1.20_record_open_by_handle_at_syscall.sh
@ -6,7 +6,7 @@

 #
 # 8.1.20  Recored open_by_handle_at syscall  (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.21_record_Events_that_privileged_passwd_cmd_usage.sh
+++ b/bin/hardening/8.1.21_record_Events_that_privileged_passwd_cmd_usage.sh
@ -6,7 +6,7 @@

 #
 # 8.1.21  Recored Events that privileged-passwd command usage (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.22_record_Events_that_privileged_priv_change_cmd_usage.sh
+++ b/bin/hardening/8.1.22_record_Events_that_privileged_priv_change_cmd_usage.sh
@ -6,7 +6,7 @@

 #
 # 8.1.22  Recored Events that privileged-priv-change command usage (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.23_record_Events_that_privileged_postfix_cmd_usage.sh
+++ b/bin/hardening/8.1.23_record_Events_that_privileged_postfix_cmd_usage.sh
@ -6,7 +6,7 @@

 #
 # 8.1.23  Recored Events that privileged-postfix command usage (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.24_record_crontab_cmd_usage.sh
+++ b/bin/hardening/8.1.24_record_crontab_cmd_usage.sh
@ -6,7 +6,7 @@

 #
 # 8.1.24  Recored crontab command usage (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.25_record_pam_timestamp_check_cmd_usage.sh
+++ b/bin/hardening/8.1.25_record_pam_timestamp_check_cmd_usage.sh
@ -6,7 +6,7 @@

 #
 # 8.1.25  Recored pam_timestamp_check command usage (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/8.1.26_record_pam_tally_cmd_usage.sh
+++ b/bin/hardening/8.1.26_record_pam_tally_cmd_usage.sh
@ -6,7 +6,7 @@

 #
 # 8.1.26  Recored pam_tally/pam_tally2 command usage (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com> Author add this 
+# Author : Samson wen, Samson <sccxboy@gmail.com> Author add this 
 #

 set -e # One error, it's over
--- a/bin/hardening/8.5_verify_integrity_packages.sh
+++ b/bin/hardening/8.5_verify_integrity_packages.sh
@ -5,7 +5,7 @@
 #
 #
 # 8.5 Verifies integrity all packages (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.10_enable_maxclassrepeat_cracklib.sh
+++ b/bin/hardening/9.2.10_enable_maxclassrepeat_cracklib.sh
@ -6,7 +6,7 @@

 #
 # 9.2.10 Set Password Creation Requirement Parameters Using pam_cracklib: audit maxclassrepeat option (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.11_set_deny_times_password.sh
+++ b/bin/hardening/9.2.11_set_deny_times_password.sh
@ -8,7 +8,7 @@
 # 9.2.11 Set deny times for Password Attempts (Scored)
 # The number in the original document is 9.2.2
 # for login and ssh service
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.13_enable_password_sha512.sh
+++ b/bin/hardening/9.2.13_enable_password_sha512.sh
@ -6,7 +6,7 @@

 #
 # 9.2.13 Set password with the SHA512 algorithm (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.14_enable_auth_without_nullpwd.sh
+++ b/bin/hardening/9.2.14_enable_auth_without_nullpwd.sh
@ -6,7 +6,7 @@

 #
 # 9.2.14 Configure password without blank or null passwords (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.15_set_printlastlog_to_showfailed.sh
+++ b/bin/hardening/9.2.15_set_printlastlog_to_showfailed.sh
@ -6,7 +6,7 @@

 #
 # 9.2.15 Set login display the date and time of last fail logon (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.17_enable_even_deny_root_password.sh
+++ b/bin/hardening/9.2.17_enable_even_deny_root_password.sh
@ -6,7 +6,7 @@

 #
 # 9.2.17 Ensure unsuccessful root logon occur the associated account must be locked. (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 # for login and ssh service
 #

--- a/bin/hardening/9.2.1_enable_retry_cracklib.sh
+++ b/bin/hardening/9.2.1_enable_retry_cracklib.sh
@ -6,7 +6,7 @@

 #
 # 9.2.1 Set Password Creation Requirement Parameters Using pam_cracklib: audit retry option (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.2_enable_minlen_cracklib.sh
+++ b/bin/hardening/9.2.2_enable_minlen_cracklib.sh
@ -6,7 +6,7 @@

 #
 # 9.2.2 Set Password Creation Requirement Parameters Using pam_cracklib: audit minlen option (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.3_enable_dcredit_cracklib.sh
+++ b/bin/hardening/9.2.3_enable_dcredit_cracklib.sh
@ -6,7 +6,7 @@

 #
 # 9.2.3 Set Password Creation Requirement Parameters Using pam_cracklib: audit dcredit option (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.4_enable_ucredit_cracklib.sh
+++ b/bin/hardening/9.2.4_enable_ucredit_cracklib.sh
@ -6,7 +6,7 @@

 #
 # 9.2.4 Set Password Creation Requirement Parameters Using pam_cracklib: audit ucredit option (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.5_enable_ocredit_cracklib.sh
+++ b/bin/hardening/9.2.5_enable_ocredit_cracklib.sh
@ -6,7 +6,7 @@

 #
 # 9.2.5 Set Password Creation Requirement Parameters Using pam_cracklib: audit ocredit option (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.6_enable_lcredit_cracklib.sh
+++ b/bin/hardening/9.2.6_enable_lcredit_cracklib.sh
@ -6,7 +6,7 @@

 #
 # 9.2.6 Set Password Creation Requirement Parameters Using pam_cracklib: audit lcredit option (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.7_enable_difok_cracklib.sh
+++ b/bin/hardening/9.2.7_enable_difok_cracklib.sh
@ -6,7 +6,7 @@

 #
 # 9.2.7 Set Password Creation Requirement Parameters Using pam_cracklib: audit difok option (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.8_enable_minclass_cracklib.sh
+++ b/bin/hardening/9.2.8_enable_minclass_cracklib.sh
@ -6,7 +6,7 @@

 #
 # 9.2.8 Set Password Creation Requirement Parameters Using pam_cracklib: audit minclass option (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.2.9_enable_maxrepeat_cracklib.sh
+++ b/bin/hardening/9.2.9_enable_maxrepeat_cracklib.sh
@ -6,7 +6,7 @@

 #
 # 9.2.9 Set Password Creation Requirement Parameters Using pam_cracklib: audit maxrepeat option (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.3.15_sshd_printlastlog.sh
+++ b/bin/hardening/9.3.15_sshd_printlastlog.sh
@ -6,7 +6,7 @@

 #
 # 9.3.15 Set SSHD printlastlog to yes (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.3.16_sshd_IgnoreUserKnownHosts.sh
+++ b/bin/hardening/9.3.16_sshd_IgnoreUserKnownHosts.sh
@ -6,7 +6,7 @@

 #
 # 9.3.16 Set SSHD ignoreuserknownhosts to yes (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.3.17_sshd_GSSAPIAuthentication.sh
+++ b/bin/hardening/9.3.17_sshd_GSSAPIAuthentication.sh
@ -6,7 +6,7 @@

 #
 # 9.3.17 Set SSHD GSSAPIAuthentication to yes (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.3.18_sshd_KerberosAuthentication.sh
+++ b/bin/hardening/9.3.18_sshd_KerberosAuthentication.sh
@ -6,7 +6,7 @@

 #
 # 9.3.18 Set SSHD KerberosAuthentication to yes (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.3.19_sshd_StrictModes.sh
+++ b/bin/hardening/9.3.19_sshd_StrictModes.sh
@ -6,7 +6,7 @@

 #
 # 9.3.19 Set SSHD StrictModes to yes (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.3.20_sshd_UsePrivilegeSeparation.sh
+++ b/bin/hardening/9.3.20_sshd_UsePrivilegeSeparation.sh
@ -6,7 +6,7 @@

 #
 # 9.3.20 Set SSHD UsePrivilegeSeparation to sandbox (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.3.21_sshd_compression.sh
+++ b/bin/hardening/9.3.21_sshd_compression.sh
@ -6,7 +6,7 @@

 #
 # 9.3.21 Set SSHD Compression to no (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.3.22_sshd_MACs.sh
+++ b/bin/hardening/9.3.22_sshd_MACs.sh
@ -6,7 +6,7 @@

 #
 # 9.3.22 Set SSHD MACs to hmac-sha2-256,hmac-sha2-512 (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.3.23_ssh_check_pub_hostkey_permission.sh
+++ b/bin/hardening/9.3.23_ssh_check_pub_hostkey_permission.sh
@ -6,7 +6,7 @@

 #
 # 9.3.23 Check SSH public host key permission (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over
--- a/bin/hardening/9.3.24_ssh_check_priv_hostkey_permission.sh
+++ b/bin/hardening/9.3.24_ssh_check_priv_hostkey_permission.sh
@ -6,7 +6,7 @@

 #
 # 9.3.24 Check SSH private host key permission (Scored)
-# Authors : Samson wen, Samson <sccxboy@gmail.com>
+# Author : Samson wen, Samson <sccxboy@gmail.com>
 #

 set -e # One error, it's over