From 75ab7bad8b9a9d412da012fa0f0ab1c846ba83ff Mon Sep 17 00:00:00 2001 From: Thomas H Jones II Date: Fri, 26 May 2023 08:50:18 -0400 Subject: [PATCH] Add stub-content for remaining keys listed in pillar.example file --- README_PillarContents.md | 90 ++++++++++++++++++++++++++++++++++++++++ 1 file changed, 90 insertions(+) diff --git a/README_PillarContents.md b/README_PillarContents.md index fa5161ab5..17c0ee514 100644 --- a/README_PillarContents.md +++ b/README_PillarContents.md @@ -12,6 +12,20 @@ This is the top-level key in the pillar contents. When executing the `ash-linux- Next-level pillar-key for this formula's states' governance. Mostly provides a mnemonic entry-pont into the remaining sub-keys. +## `rsyslog` + +Explanatory-contents to be added upon request. Currently, only the Enterprise Linux 7 content references this key. + +## `cac-enable` + +**Status:** _Vestigial_ + +Currently, no live project-content still references this key. Reference remains in pillar in case content used for earlier Enterprise Linux releases needs to be re-implemented for newer ones. + +## `notifier-email` + +Explanatory-contents to be added upon request. Currently, only the Enterprise Linux 7 content references this key. + ## `skip-stigs` This pillar-key is a list of state-names. By adding a state-name to this list, the associated state-file's logic will be skipped. The values in this list must exactly match the file-name of an individually-enumerated STIG-finding (minus the file's `.sls` suffix). Typically, this name-value will be something like `RHEL-07-NNNNNN` or `RHEL-08-NNNNNN`. Notionally, any file in this project that contains the code-snippet: @@ -26,3 +40,79 @@ notify_{{ stig_id }}-skipSet: ~~~ Can also be skipped by adding its (suffixless) file-name to this list. However, the baseline assumption is that skippable state-content will almost exclusively be files whose names align to those enumerated in the STIG content published by DISA. + +## `mustpatch-days` + +**Status:** _Vestigial_ + +Currently, no live project-content still references this key. Reference remains in pillar in case content used for earlier Enterprise Linux releases needs to be re-implemented for newer ones. + +## `home-mode` + +Explanatory-contents to be added upon request. Currently, only the Enterprise Linux 7 content references this key. + +## `audit-overflow` + +Explanatory-contents to be added upon request. Currently, only the Enterprise Linux 7 content references this key. + +## `audit-space-action` + +Explanatory-contents to be added upon request. Currently, only the Enterprise Linux 7 content references this key. + +## `audisp-server` + +Explanatory-contents to be added upon request. Currently, only the Enterprise Linux 7 content references this key. + +## `audisp-disk-full` + +Explanatory-contents to be added upon request. Currently, only the Enterprise Linux 7 content references this key. + +## `banned-accts` + +Explanatory-contents to be added upon request. Currently, only the Enterprise Linux 7 content references this key. + +## `dns-info` + +Explanatory-contents to be added upon request. Currently, only the Enterprise Linux 7 content references this key. + +## `grub-user` + +Explanatory-contents to be added upon request. + +## `grub-passwd` + +Explanatory-contents to be added upon request. + +## `sshd-loglevel` + +Explanatory-contents to be added upon request. Currently, only the Enterprise Linux 7 content references this key. + +## `scap-profile` + +Explanatory-contents to be added upon request. + +## `scap-cpe` + +Explanatory-contents to be added upon request. + +## `scap-ds` + +Explanatory-contents to be added upon request. + +## `scap-xccdf` + +Explanatory-contents to be added upon request. + +## `scap-output` + +Explanatory-contents to be added upon request. + +## `banner` + +**Status:** _Vestigial_ + +Currently, no live project-content still references this key. Reference remains in pillar in case content used for earlier Enterprise Linux releases needs to be re-implemented for newer ones. + +## `login-banners` + +Explanatory-contents to be added upon request. Currently, only the Enterprise Linux 7 content references this key.