control "gdpr-benchmark-windiws-firewall-block-inbound-on" do
title "Ensure we block inbound unless overriden"
desc "This setting determines the behavior for inbound connections that do not match an inbound firewall rule.
The default behavior is to block connections unless there are firewall rules to allow the connection."
impact 1.0
describe registry_key("HKEY_LOCAL_MACHINE\\Software\\Policies\\Microsoft\\WindowsFirewall\\PrivateProfile") do
it { should have_property "DefaultInboundAction" }
end
describe registry_key("HKEY_LOCAL_MACHINE\\Software\\Policies\\Microsoft\\WindowsFirewall\\PrivateProfile") do
its("DefaultInboundAction") { should cmp == 1 }
end
end