Merge pull request #18 from aquasecurity/yoavAqua-patch-1

fix check 3.2.1.c
2019-10-10 09:42:56 +01:00 · 2019-10-10 09:42:56 +01:00 · b079eda356
commit b079eda356
parent 29ecb5b1c9 e299588285
1 changed files with 5 additions and 2 deletions
--- a/cfg/1.1.0/definitions.yaml
+++ b/cfg/1.1.0/definitions.yaml
@ -4312,10 +4312,13 @@ groups:
            
    - id: 3.2.1.c
      description: "Ensure source routed packets are not accepted"
-      audit: "grep net.ipv4.conf.all.accept_source_route /etc/sysctl.conf /etc/sysctl.d/*"   
+      audit: "grep ^\\s*net.ipv4.conf.all.accept_source_route /etc/sysctl.conf /etc/sysctl.d/*"   
      tests:
        test_items:
-        - flag: "net.ipv4.conf.all.accept_source_route = 0"
+        - flag: "net.ipv4.conf.all.accept_source_route"
+          compare:
+            op: eq
+            value: "0"
          set: true                        
      remediation: |
            Set the following parameters in `/etc/sysctl.conf` or a `/etc/sysctl.d/*` file: