e57593dfd4
With the upcoming changes to rebase onto the RHEL 7 STIG controls, there needs to be a new solution for documentation that is easier to manage and filter. This patch automates the generation of the STIG control documentation in the following way: * A Sphinx extension runs early in the doc build process that writes all of the individual STIG control docs as well as ToC pages. * ToC pages are now sorted by severity, tag, and implementation status. * A giant listing of controls is easier to navigate now. * Docs are generated from metadata in the /doc/metadata directory. New documentation only needs to be added there. (Will explain this in the developer notes in a subsequent patch.) Implements: blueprint security-rhel7-stig Change-Id: I455af1121049f52193e98e2c9cb1ba5d4c292386
430 B
430 B
---id: V-38500 status: implemented tag: misc ---
The Ansible tasks will search for accounts in
/etc/passwd that have UID 0 that aren't the normal root
account. If any matching accounts are found, a warning is printed to
stdout and the Ansible play will fail.
No action is taken on those accounts as that action may disrupt a
production environment. Deployers are strongly urged to use
sudo for these types of actions.