Description
on a server that store a massive number of files in a data directory, I want to exclude that data filesystem from being run through by hardening scripts, especially find commands, as it can take literally hours and impact disk accesses.
This is currently possible with configuration variables, however it takes 3 different variables to fullfill that need: EXCEPTIONS for rule 1.1.21, EXCLUDED for rules 6.1.10, 6.1.11 and 6.1.12 and IGNORED_PATH for rules 6.1.13 and 6.1.14
Please also note that rules 4.2.1.4, 5.4.2, 6.1.13, 6.1.14, 6.2.6, 6.2.8, 6.2.9, 6.2.16 have a different meaning for the EXCEPTIONS variable, making impossible to set this variable globally.
These inconsistencies should be corrected to have a unique variable accross all scripts to exclude a path/filesystem from all scripts.