[WIP] chore(CIS): enable ufw firewall

[jackfrancis]

Reason for Change:

Enforce ufw firewall configuration via VHD + cloud-init

Issue Fixed:

Fixes #987

Requirements:

• uses conventional commit messages
• includes documentation
• adds unit tests
• tested upgrade from previous version

Notes:

[acs-bot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: jackfrancis

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [jackfrancis]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[codecov]

Codecov Report

Merging #1060 into master will increase coverage by <.01%.
The diff coverage is 100%.

@@            Coverage Diff            @@
##           master   #1060      +/-   ##
=========================================
+ Coverage   74.29%   74.3%   +<.01%     
=========================================
  Files         131     131              
  Lines       18261   18265       +4     
=========================================
+ Hits        13567   13571       +4     
  Misses       3912    3912              
  Partials      782     782

[jackfrancis]

FYI this doesn't work as-is. Ostensibly the UFW hardening here is excessive.

[stale]

This pull request has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.