CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

change how we allow or disallow states to be run https://github.com/Security-Onion-Solutions/securityonion/issues/2679

Browse Source
This commit is contained in:
m0duspwnens
2021-01-20 15:09:53 -05:00
parent b1c5b83fd5
commit b693373d8d
44 changed files with 491 additions and 234 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
salt/firewall/init.sls
View File

@@ -1,7 +1,5 @@
{% set show_top = salt['state.show_top']() %}
{% set top_states = show_top.values() | join(', ') %}
{% if 'firewall' in top_states %}
{% from 'allowed_states.map.jinja' import allowed_states %}
{% if sls in allowed_states %}
# Firewall Magic for the grid
{% from 'firewall/map.jinja' import hostgroups with context %}
@@ -138,8 +136,8 @@ iptables_drop_all_the_things:
{% else %}
firewall_state_not_allowed:
{{sls}}_state_not_allowed:
test.fail_without_changes:
- name: firewall_state_not_allowed
- name: {{sls}}_state_not_allowed
{% endif %}