From ed97981ac26dbe002227037572a8ca6468148a26 Mon Sep 17 00:00:00 2001
From: Samson-W <samson@hardenedlinux.org>
Date: Tue, 24 Sep 2019 18:07:00 +0800
Subject: [PATCH] Add --final method discription to README doc.

---
 README-CN.md | 7 ++++++-
 README.md    | 7 ++++++-
 2 files changed, 12 insertions(+), 2 deletions(-)

diff --git a/README-CN.md b/README-CN.md
index fd36aa9..41e1c8f 100644
--- a/README-CN.md
+++ b/README-CN.md
@@ -166,7 +166,12 @@ $ sudo -s
 $ sed -i 's/^define int_if = ens33/define int_if = eth0/g' etc.nftables.conf 
 $ sudo nft -f ./etc.nftables.conf 
 ```
-5) 使用passwd命令改变所有用户的密码，以满足pam_cracklib模块配置的密码复杂度及健壮性。
+5) 当所有安全基线项都修复完成后，使用--final方法将完成以下的最终的工作：
+   1.使用passwd命令去重新设置常规用户及root用户的密码，以满足pam_cracklib模块配置的密码强度和健壮性。
+   2. 重新初始化aide工具的数据库。
+```
+$ sudo bin/hardening.sh --final
+```
 
 ## 特别注意 
 
diff --git a/README.md b/README.md
index 4c9277e..1f3bbb6 100644
--- a/README.md
+++ b/README.md
@@ -182,7 +182,12 @@ to do the following(your network interfacename(Example eth0)):
 $ sed -i 's/^define int_if = ens33/define int_if = eth0/g' etc.nftables.conf 
 $ sudo nft -f ./etc.nftables.conf 
 ```
-5) Use the passwd command to change the passwords of all users to apply the password complexity and robustness of the pam_cracklib module configuration.
+5) When all repairs are completed. --final method will:
+   1. Use passwd command to change the password of the regular and root user to apply the password complexity and robustness of the pam_cracklib module configuration.
+   2. Aide reinitializes.
+```
+$ sudo bin/hardening.sh --final
+```
 
 ## Special Note 
 Some check items check a variety of situations and are interdependent, they must be applied (fix) multiple times, and the OS must be a reboot after each applies (fix).