088884c731
The 'docs' tox target executes the doc8 lint test which may result in failures when testing documentation builds, but OpenStack-CI does not execute that tox target. In order to ensure that we catch all standard documentation syntax errors and prevent them from merging, this patch includes the docs target in the 'linters' chain of tests. Fixes for any failures which result from executing this test are also included in the patch. Change-Id: I80c2ce387e59a30c34bf2252a54037c00b420380
1020 B
This STIG requires that NOPASSWD and
!authenticate are not used within the sudoers configuration
files. Using these directives reduces the security of the system.
NOPASSWD allows users to run commands as root without
providing a password first. Using !authenticate with the
Defaults directive will disable password usage for any
users which use sudo.
There are two configuration options for handling these changes. By
default, both of these options are set to no, which means
that the sudoers configuration files will not be altered:
security_sudoers_remove_nopasswd: no
security_sudoers_remove_authenticate: noSetting security_sudoers_remove_nopasswd to
yes will cause the Ansible tasks to search for any lines
containing NOPASSWD and comment them out of the
configuration. Setting security_sudoers_remove_authenticate
will do the same actions on lines containing !authenticate.
Lines that are already commented will be left unaltered.