Debian12 and others changes coming

[damcav35]

Hello CIS users,

long time no see :-)

Just to let you know, we are in the process of releasing the long awaited debian 12 CIS release.
But not only that, we are planning some changes along the way.

If you have been following the CIS debian hardening for some time, you may have noticed that the recommendation names are a moving target.
A recommendation named "1.1.1.1" in a version, may be renamed "1.2.3.5" in the next for instance.

A few years back, we made the choice to keep the naming consistent in our repository, and not follow the name changes provided by the CIS team.
The idea was to simplify the usage for the users, because you may use some custom configurations on some scripts for instance (we know we do), and it could be a burden to check and update them for each release.

There are a few drawbacks though.
As a user, there are no clear correlation between the scripts executed and the CIS release. There is no easy way to match the CIS release.
As a maintainer, it is becoming a pain to update the repository, as once again, there is no easy match between our repository and the CIS release.

So at short term, we have set the following goals:
- provide the updated scripts for Debian 12
- maintain the scripts for the current Debian LTS (11 & 12)
- for each maintained Debian release, provide the scripts in a way that matches the CIS file
-> if I have a Debian 11 for instance, I want to be able to run the the CIS scripts matching the Debian 11 CIS recommendations.

To accomplish that, we are adding a new "--set-version" option.
This will allow to chose at run time the cis version to use from a "versions" folder.
If not set, it will use a default one.
For a smooth transition, the current default one will point to an "ovh_legacy" version, wich is the current state of the repository.
This "ovh_legacy" version will also be updated with the Debian 12 scripts, once again in order to provide a smooth transition.

Note that "ovh_legacy" won't be updated for the next Debian releases.

So here are our plans for the near future. We hope you'll find the changes beneficial, and feel free to share your thoughts with us.