Skip to content

Commit

Permalink
Fix InSpec check warnings
Browse files Browse the repository at this point in the history
  • Loading branch information
martezr committed Sep 6, 2018
1 parent 22e66f5 commit a9eb368
Showing 1 changed file with 4 additions and 0 deletions.
4 changes: 4 additions & 0 deletions controls/vault.rb
Original file line number Diff line number Diff line change
Expand Up @@ -94,6 +94,7 @@
control 'vault-1.3' do
impact 1.0
title 'Verify that vault configuration directory permissions are set to 640 or more restrictive'
desc 'Verify that vault configuration directory permissions are set to 640 or more restrictive'

describe directory(vault_dir) do
its('owner') { should eq vault_user }
Expand All @@ -106,6 +107,7 @@
control 'vault-1.4' do
impact 1.0
title 'Audit Vault files and directories'
desc 'Audit the Vault files and directories'

only_if { os.linux? }
rule = '-w ' + vault_dir + ' -p rwxa -k vault'
Expand All @@ -117,6 +119,7 @@
control 'vault-1.5' do
impact 1.0
title 'Audit Vault service configuration'
desc 'Audit Vault service configuration file'

only_if { os.linux? }
rule = '-w ' + vault_service_path + ' -p rwxa -k vault'
Expand All @@ -128,6 +131,7 @@
control 'vault-1.6' do
impact 1.0
title 'Ensure that the vault service is running'
desc 'Ensure that the Vault systemd service is running and enabled'

describe service(vault_service) do
it { should be_installed }
Expand Down

0 comments on commit a9eb368

Please sign in to comment.