Puppet Class: secure_windows::stig::v73305
- Defined in:
- manifests/stig/v73305.pp
Overview
This class manages V-73305 FTP servers must be configured to prevent access to the system drive.
3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 |
# File 'manifests/stig/v73305.pp', line 3
class secure_windows::stig::v73305 (
Boolean $enforced = false,
) {
if $enforced {
# The fact windows_role returns a comma separated list of role IDs
# The role ID for FTP Server is 184. We are checking if 184 is in the list
# so that these resources only apply to FTP Servers
if ($facts['windows_role'] and
$facts['windows_role'] =~ /(^184|,184,|,184$)/) {
if $facts['ftp_root'] =~ /(^C:\\$|^C:\\Program Files|^C:\\Windows)/ {
notify { 'Not in compliance with DoD STIG V-73305':
message => 'Not in compliance with DoD STIG V-73305. The FTP Server\'s root contains system files.',
loglevel => warning,
}
}
}
}
}
|