24f3f73717
This patch is a follow on patch for change I228f8aa7b0df80cce16e54c5f1e11da678bfd67d that implemented V-38524. Change-Id: I77b1c141e9de1fd949b18bc693c68fea56b8e2d6
13 lines
381 B
YAML
13 lines
381 B
YAML
---
|
|
features:
|
|
- |
|
|
A task was added that restricts ICMPv4 redirects to meet the requirements
|
|
of V-38524 in the STIG. This configuration is disabled by default since
|
|
it could cause issues with LXC in some environments.
|
|
|
|
Deployers can enable this configuration by setting an Ansible variable:
|
|
|
|
.. code-block:: yaml
|
|
|
|
security_disable_icmpv4_redirects: yes
|