Puppet Class: security_baseline::world_writeable_files_cron

Defined in:
manifests/world_writeable_files_cron.pp

Summary

Create cron for world writable files search

Overview

Create a cron job for world writable files search.

Examples:

include security_baseline::world_writeable_files_cron

Parameters:

  • dirs_to_exclude (Array) (defaults to: [])

    Array of directories to exclude from search.



11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
 
# File 'manifests/world_writeable_files_cron.pp', line 11

class security_baseline::world_writeable_files_cron (
  Array $dirs_to_exclude = [],
) {
  $filename = '/root/world-writable-files.txt'

  file { '/usr/share/security_baseline/bin/world-writable-files.sh':
    ensure  => present,
    content => epp('security_baseline/world-writeable-files.epp', {
      filename        => $filename,
      dirs_to_exclude => $dirs_to_exclude
    }),
    owner   => 'root',
    group   => 'root',
    mode    => '0700',
  }

  $min = fqdn_rand(60, 'sjdhgfuwdqfbqwjkc wwequ')

  file { '/etc/cron.d/world-writebale-files.cron':
    ensure  => present,
    content => epp('security_baseline/world-writeable-files.cron.epp', {min => $min}),
    owner   => 'root',
    group   => 'root',
    mode    => '0644',
  }
}