CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #2950 from Security-Onion-Solutions/delta

Browse Source 
Disable ICMP timestamps by default
This commit is contained in:
Josh Patterson
2021-02-12 13:54:59 -05:00
committed by GitHub
parent bf8ca590d0 a8598a50e4
commit ce04b109fe
2 changed files with 15 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
salt/firewall/init.sls
View File

@@ -120,6 +120,15 @@ enable_docker_user_established:
{% endfor %} {% endfor %}
{% endfor %} {% endfor %}
# Block icmp timestamp response
block_icmp_timestamp_reply:
iptables.append:
- table: filter
- chain: OUTPUT
- jump: DROP
- proto: icmp
- icmp-type: 'timestamp-reply'
# Make the input policy send stuff that doesn't match to be logged and dropped # Make the input policy send stuff that doesn't match to be logged and dropped
iptables_drop_all_the_things: iptables_drop_all_the_things:
iptables.append: iptables.append:

6
salt/salt/init.sls
View File

@@ -11,3 +11,9 @@ salt_bootstrap:
- name: /usr/sbin/bootstrap-salt.sh - name: /usr/sbin/bootstrap-salt.sh
- source: salt://salt/scripts/bootstrap-salt.sh - source: salt://salt/scripts/bootstrap-salt.sh
- mode: 755 - mode: 755
{% if grains.os == 'CentOS' %}
remove_salt-2019-2-5.repo:
file.absent:
- name: /etc/yum.repos.d/salt-2019-2-5.repo
{% endif %}