Puppet Class: lsys::hardening::polkit

Defined in:
manifests/hardening/polkit.pp

Summary

CVE-2021-4034 mitigation

Overview

It is possible to mitigate the problem by applying the configuration setting chmod 0755 /usr/bin/pkexec

Examples:

include lsys::hardening::polkit


8
9
10
11
12
 
# File 'manifests/hardening/polkit.pp', line 8

class lsys::hardening::polkit {
  file { '/usr/bin/pkexec':
    mode => '0755',
  }
}