Modify variable name: *REDHAT to *CENTOS.

bin/hardening/10.1.5_set_password_lock_inactive_user.sh

@@ -18,7 +18,7 @@ set -u # One variable unset, it's over
 HARDENING_LEVEL=3
 
 OPTIONS='INACTIVE=30'
-OPTIONS_REDHAT='INACTIVE=0'
+OPTIONS_CENTOS='INACTIVE=0'
 SHA_FILE='/etc/shadow'
 DISABLE_V='-1'
 FILE='/etc/default/useradd'
@@ -158,7 +158,7 @@ check_config() {
     if [ $OS_RELEASE -eq 1 ]; then
 		:
 	elif [ $OS_RELEASE -eq 2 ]; then
-		OPTIONS=$OPTIONS_REDHAT
+		OPTIONS=$OPTIONS_CENTOS
 	else
 		warn "Current OS is not support!"	
 	fi

bin/hardening/12.13_etc_gshadow_backup_permissions.sh

@@ -16,16 +16,16 @@ HARDENING_LEVEL=1
 
 FILE='/etc/gshadow-'
 PERMISSIONS='600'
-PERMISSIONS_REDHAT='0'
+PERMISSIONS_CENTOS='0'
 USER='root'
 GROUP='shadow'
-GROUP_REDHAT='root'
+GROUP_CENTOS='root'
 
 # This function will be called if the script status is on enabled / audit mode
 audit () {
 	if [ $OS_RELEASE -eq 2 ]; then
-		PERMISSIONS=$PERMISSIONS_REDHAT
-		GROUP=$GROUP_REDHAT
+		PERMISSIONS=$PERMISSIONS_CENTOS
+		GROUP=$GROUP_CENTOS
 	else
 		:
 	fi
@@ -46,8 +46,8 @@ audit () {
 # This function will be called if the script status is on enabled mode
 apply () {
 	if [ $OS_RELEASE -eq 2 ]; then
-		PERMISSIONS=$PERMISSIONS_REDHAT
-		GROUP=$GROUP_REDHAT
+		PERMISSIONS=$PERMISSIONS_CENTOS
+		GROUP=$GROUP_CENTOS
 	else
 		:
 	fi

bin/hardening/12.2_etc_shadow_permissions.sh

@@ -16,16 +16,16 @@ HARDENING_LEVEL=1
 
 FILE='/etc/shadow'
 PERMISSIONS='640'
-PERMISSIONS_REDHAT='0'
+PERMISSIONS_CENTOS='0'
 USER='root'
 GROUP='shadow'
-GROUP_REDHAT='root'
+GROUP_CENTOS='root'
 
 # This function will be called if the script status is on enabled / audit mode
 audit () {
 	if [ $OS_RELEASE -eq 2 ]; then
-		PERMISSIONS=$PERMISSIONS_REDHAT
-		GROUP=$GROUP_REDHAT
+		PERMISSIONS=$PERMISSIONS_CENTOS
+		GROUP=$GROUP_CENTOS
 	else
 		:
 	fi
@@ -46,8 +46,8 @@ audit () {
 # This function will be called if the script status is on enabled mode
 apply () {
 	if [ $OS_RELEASE -eq 2 ]; then
-		PERMISSIONS=$PERMISSIONS_REDHAT
-		GROUP=$GROUP_REDHAT
+		PERMISSIONS=$PERMISSIONS_CENTOS
+		GROUP=$GROUP_CENTOS
 	else
 		:
 	fi

bin/hardening/12.4_etc_gshadow_permissions.sh

@@ -16,16 +16,16 @@ HARDENING_LEVEL=1
 
 FILE='/etc/gshadow'
 PERMISSIONS='640'
-PERMISSIONS_REDHAT='0'
+PERMISSIONS_CENTOS='0'
 USER='root'
 GROUP='shadow'
-GROUP_REDHAT='root'
+GROUP_CENTOS='root'
 
 # This function will be called if the script status is on enabled / audit mode
 audit () {
 	if [ $OS_RELEASE -eq 2 ]; then
-		PERMISSIONS=$PERMISSIONS_REDHAT
-		GROUP=$GROUP_REDHAT
+		PERMISSIONS=$PERMISSIONS_CENTOS
+		GROUP=$GROUP_CENTOS
 	else
 		:
 	fi
@@ -46,8 +46,8 @@ audit () {
 # This function will be called if the script status is on enabled mode
 apply () {
 	if [ $OS_RELEASE -eq 2 ]; then
-		PERMISSIONS=$PERMISSIONS_REDHAT
-		GROUP=$GROUP_REDHAT
+		PERMISSIONS=$PERMISSIONS_CENTOS
+		GROUP=$GROUP_CENTOS
 	else
 		:
 	fi

bin/hardening/12.6_etc_shadow_backup_permissions.sh

@@ -16,16 +16,16 @@ HARDENING_LEVEL=1
 
 FILE='/etc/shadow-'
 PERMISSIONS='600'
-PERMISSIONS_REDHAT='0'
+PERMISSIONS_CENTOS='0'
 USER='root'
 GROUP='shadow'
-GROUP_REDHAT='root'
+GROUP_CENTOS='root'
 
 # This function will be called if the script status is on enabled / audit mode
 audit () {
 	if [ $OS_RELEASE -eq 2 ]; then
-		PERMISSIONS=$PERMISSIONS_REDHAT
-		GROUP=$GROUP_REDHAT
+		PERMISSIONS=$PERMISSIONS_CENTOS
+		GROUP=$GROUP_CENTOS
 	else
 		:
 	fi
@@ -46,8 +46,8 @@ audit () {
 # This function will be called if the script status is on enabled mode
 apply () {
 	if [ $OS_RELEASE -eq 2 ]; then
-		PERMISSIONS=$PERMISSIONS_REDHAT
-		GROUP=$GROUP_REDHAT
+		PERMISSIONS=$PERMISSIONS_CENTOS
+		GROUP=$GROUP_CENTOS
 	else
 		:
 	fi

bin/hardening/2.1_tmp_partition.sh

@@ -18,7 +18,7 @@ HARDENING_LEVEL=2
 PARTITION="/tmp"
 SERVICENAME="tmp.mount"
 SERVICEPATH_DEBIAN="/usr/share/systemd/tmp.mount"
-REDHAT_SERVICEPATH="/usr/lib/systemd/system/tmp.mount"
+CENTOS_SERVICEPATH="/usr/lib/systemd/system/tmp.mount"
 DEBIAN_SERVICEPATH="/lib/systemd/system/tmp.mount"
 
 # This function will be called if the script status is on enabled / audit mode
@@ -75,12 +75,12 @@ apply () {
 				fi
 			fi
 		elif [ $OS_RELEASE -eq 2 ]; then 
-			if [ -e $REDHAT_SERVICEPATH ]; then
+			if [ -e $CENTOS_SERVICEPATH ]; then
 				$SUDO_CMD systemctl enable "$SERVICENAME"
 				$SUDO_CMD systemctl daemon-reload
 				$SUDO_CMD systemctl start "$SERVICENAME"
 			else
-				crit "System unit file $REDHAT_SERVICEPATH is not exist!"
+				crit "System unit file $CENTOS_SERVICEPATH is not exist!"
 			fi
 		fi
 	fi

bin/hardening/2.2_tmp_nodev.sh

@@ -19,7 +19,7 @@ PARTITION="/tmp"
 OPTION="nodev"
 SERVICENAME="tmp.mount"
 SERVICEPATH_DEBIAN="/usr/share/systemd/tmp.mount"
-REDHAT_SERVICEPATH="/usr/lib/systemd/system/tmp.mount"
+CENTOS_SERVICEPATH="/usr/lib/systemd/system/tmp.mount"
 DEBIAN_SERVICEPATH="/lib/systemd/system/tmp.mount"
 
 # This function will be called if the script status is on enabled / audit mode
@@ -50,7 +50,7 @@ audit () {
 		if [ $OS_RELEASE -eq 1 ]; then
 			UNITSERVICEPATH=$DEBIAN_SERVICEPATH
 		elif [ $OS_RELEASE -eq 2 ]; then
-			UNITSERVICEPATH=$REDHAT_SERVICEPATH
+			UNITSERVICEPATH=$CENTOS_SERVICEPATH
 		fi
         if [ -e $UNITSERVICEPATH ]; then
 			has_mount_option_systemd $UNITSERVICEPATH $OPTION 
@@ -80,7 +80,7 @@ apply () {
 	if [ $OS_RELEASE -eq 1 ]; then
 		UNITSERVICEPATH=$DEBIAN_SERVICEPATH		
 	elif [ $OS_RELEASE -eq 2 ]; then
-		UNITSERVICEPATH=$REDHAT_SERVICEPATH
+		UNITSERVICEPATH=$CENTOS_SERVICEPATH
 	fi
     if [ $FNRET = 0 ]; then
         ok "$PARTITION is correctly set"

bin/hardening/2.3_tmp_nosuid.sh

@@ -19,7 +19,7 @@ PARTITION="/tmp"
 OPTION="nosuid"
 SERVICEPATH_DEBIAN="/usr/share/systemd/tmp.mount"
 SERVICENAME="tmp.mount"
-REDHAT_SERVICEPATH="/usr/lib/systemd/system/tmp.mount"
+CENTOS_SERVICEPATH="/usr/lib/systemd/system/tmp.mount"
 DEBIAN_SERVICEPATH="/lib/systemd/system/tmp.mount"
 
 # This function will be called if the script status is on enabled / audit mode
@@ -50,7 +50,7 @@ audit () {
 		if [ $OS_RELEASE -eq 1 ]; then
 			UNITSERVICEPATH=$DEBIAN_SERVICEPATH
 		elif [ $OS_RELEASE -eq 2 ]; then
-			UNITSERVICEPATH=$REDHAT_SERVICEPATH
+			UNITSERVICEPATH=$CENTOS_SERVICEPATH
 		fi
 		if [ -e $UNITSERVICEPATH ]; then
 			has_mount_option_systemd $UNITSERVICEPATH $OPTION 
@@ -80,7 +80,7 @@ apply () {
 	if [ $OS_RELEASE -eq 1 ]; then
 		UNITSERVICEPATH=$DEBIAN_SERVICEPATH		
 	elif [ $OS_RELEASE -eq 2 ]; then
-		UNITSERVICEPATH=$REDHAT_SERVICEPATH
+		UNITSERVICEPATH=$CENTOS_SERVICEPATH
 	fi
     if [ $FNRET = 0 ]; then
         ok "$PARTITION is correctly set"

bin/hardening/2.4_tmp_noexec.sh

@@ -19,7 +19,7 @@ PARTITION="/tmp"
 OPTION="noexec"
 SERVICEPATH_DEBIAN="/usr/share/systemd/tmp.mount"
 SERVICENAME="tmp.mount"
-REDHAT_SERVICEPATH="/usr/lib/systemd/system/tmp.mount"
+CENTOS_SERVICEPATH="/usr/lib/systemd/system/tmp.mount"
 DEBIAN_SERVICEPATH="/lib/systemd/system/tmp.mount"
 
 # This function will be called if the script status is on enabled / audit mode
@@ -50,7 +50,7 @@ audit () {
 		if [ $OS_RELEASE -eq 1 ]; then
 			UNITSERVICEPATH=$DEBIAN_SERVICEPATH
 		elif [ $OS_RELEASE -eq 2 ]; then
-			UNITSERVICEPATH=$REDHAT_SERVICEPATH
+			UNITSERVICEPATH=$CENTOS_SERVICEPATH
 		fi
 		if [ -e $UNITSERVICEPATH ]; then
 			has_mount_option_systemd $UNITSERVICEPATH $OPTION
@@ -80,7 +80,7 @@ apply () {
 	if [ $OS_RELEASE -eq 1 ]; then
 		UNITSERVICEPATH=$DEBIAN_SERVICEPATH		
 	elif [ $OS_RELEASE -eq 2 ]; then
-		UNITSERVICEPATH=$REDHAT_SERVICEPATH
+		UNITSERVICEPATH=$CENTOS_SERVICEPATH
 	fi
     if [ $FNRET = 0 ]; then
         ok "$PARTITION is correctly set"

bin/hardening/5.1.1_disable_nis.sh

@@ -15,12 +15,12 @@ set -u # One variable unset, it's over
 HARDENING_LEVEL=3
 
 PACKAGE='nis'
-PACKAGE_REDHAT='ypserv'
+PACKAGE_CENTOS='ypserv'
 
 # This function will be called if the script status is on enabled / audit mode
 audit () {
 	if [ $OS_RELEASE -eq 2 ]; then
-		PACKAGE=$PACKAGE_REDHAT
+		PACKAGE=$PACKAGE_CENTOS
 	fi
 	is_pkg_installed $PACKAGE
     if [ $FNRET = 0 ]; then
@@ -34,7 +34,7 @@ audit () {
 # This function will be called if the script status is on enabled mode
 apply () {
 	if [ $OS_RELEASE -eq 2 ]; then
-		PACKAGE=$PACKAGE_REDHAT
+		PACKAGE=$PACKAGE_CENTOS
 	fi
     is_pkg_installed $PACKAGE
     if [ $FNRET = 0 ]; then

bin/hardening/5.1.2_disable_rsh.sh

@@ -16,7 +16,7 @@ HARDENING_LEVEL=2
 
 # Based on aptitude search '~Prsh-server'
 PACKAGES='rsh-server rsh-redone-server heimdal-servers'
-PACKAGE_REDHAT='rsh-server'
+PACKAGE_CENTOS='rsh-server'
 FILE='/etc/inetd.conf'
 PATTERN='^(shell|login|exec)'
 
@@ -43,11 +43,11 @@ audit_debian () {
 }
 
 audit_centos () {
-	is_pkg_installed $PACKAGE_REDHAT
+	is_pkg_installed $PACKAGE_CENTOS
 	if [ $FNRET = 0 ]; then
-         crit "$PACKAGE_REDHAT is installed!"
+         crit "$PACKAGE_CENTOS is installed!"
 	else
-		ok "$PACKAGE_REDHAT is absent"
+		ok "$PACKAGE_CENTOS is absent"
 	fi
 }
 # This function will be called if the script status is on enabled / audit mode
@@ -91,12 +91,12 @@ apply_debian () {
 }
 
 apply_centos () {
-	is_pkg_installed $PACKAGE_REDHAT
+	is_pkg_installed $PACKAGE_CENTOS
     if [ $FNRET = 0 ]; then
-		crit "$PACKAGE_REDHAT is installed, purging it"
-		yum -y remove $PACKAGE_REDHAT
+		crit "$PACKAGE_CENTOS is installed, purging it"
+		yum -y remove $PACKAGE_CENTOS
 	else
-		ok "$PACKAGE_REDHAT is absent"
+		ok "$PACKAGE_CENTOS is absent"
 	fi
 }
 

bin/hardening/5.1.4_disable_talk.sh

@@ -17,7 +17,7 @@ HARDENING_LEVEL=2
 PACKAGES='inetutils-talkd talkd'
 FILE='/etc/inetd.conf'
 PATTERN='^(talk|ntalk)'
-PACKAGES_REDHAT='talk-server'
+PACKAGES_CENTOS='talk-server'
 
 audit_debian () {
     for PACKAGE in $PACKAGES; do
@@ -42,7 +42,7 @@ audit_debian () {
 }
 
 audit_centos () {
-    for PACKAGE in $PACKAGES_REDHAT; do
+    for PACKAGE in $PACKAGES_CENTOS; do
         is_pkg_installed $PACKAGE
         if [ $FNRET = 0 ]; then
             crit "$PACKAGE is installed"
@@ -93,7 +93,7 @@ apply_debian () {
 }
 
 apply_centos () {
-    for PACKAGE in $PACKAGES_REDHAT; do
+    for PACKAGE in $PACKAGES_CENTOS; do
         is_pkg_installed $PACKAGE
         if [ $FNRET = 0 ]; then
             crit "$PACKAGE is installed, purging it"

bin/hardening/5.1.5_disable_talk_client.sh

@@ -15,12 +15,12 @@ set -u # One variable unset, it's over
 HARDENING_LEVEL=2
 
 PACKAGES='talk inetutils-talk'
-PACKAGES_REDHAT='talk'
+PACKAGES_CENTOS='talk'
 
 # This function will be called if the script status is on enabled / audit mode
 audit () {
 	if [ $OS_RELEASE -eq 2 ]; then
-		PACKAGES=$PACKAGES_REDHAT
+		PACKAGES=$PACKAGES_CENTOS
 	fi
     for PACKAGE in $PACKAGES; do
         is_pkg_installed $PACKAGE
@@ -35,7 +35,7 @@ audit () {
 # This function will be called if the script status is on enabled mode
 apply () {
 	if [ $OS_RELEASE -eq 2 ]; then
-		PACKAGES=$PACKAGES_REDHAT
+		PACKAGES=$PACKAGES_CENTOS
 	fi
     for PACKAGE in $PACKAGES; do
         is_pkg_installed $PACKAGE