Hi everyone,
I am really having a very Monday Monday today and am just having a fit with
my regex. I'm working on implementing part of the DISA STIG for RHEL 9 and
need to edit /etc/bashrc, specifically:
# Set default umask for non-login shell only if it is set to 0
[ `umask` -eq 0 ] && umask 022
I need to change that "umask 022" to "umask 077" and I've gotten as far as
this:
- name: RHEL-09-412055 | RHEL 9 must define default permissions for the bash
shell
ansible.builtin.lineinfile:
path: /etc/bashrc
regexp: \sumask\s\d{3}
line: "[ `umask` -eq 0 ] && umask 077"
But then realized that the regexp and replacement isn't idempotent and since
then my brain has just decided to go on a little vacation by itself.
I was thinking about some sort of capture group and then something saying
"if <capture group> != '077'," but I think I completely lost the plot at
that point.
Thank you for any help on this Mondayest of Mondays.
--
Chad Schrock, he/him
Supporting MIT Lincoln Laboratory, Lexington, MA
--
You received this message because you are subscribed to the Google Groups
"Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to ansible-project+unsubscr...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/ansible-project/PH1P110MB14443DB4A6FBB2E6DD135DA8B3B3A%40PH1P110MB1444.NAMP110.PROD.OUTLOOK.COM.
smime.p7s
Description: S/MIME cryptographic signature
