Comments (7)
Hmm - hold on a sec. When I look at that folder on a running Ubuntu 16.04 instances, I see the following:
support@xxx-i04f2fe3931285439b:~$ sudo ls -la /etc/audit/rules.d
total 20
drwxr-x--- 2 root root 4096 Feb 15 13:58 .
drwxr-x--- 3 root root 4096 Feb 15 14:00 ..
-rw-r--r-- 1 root root 8454 Feb 15 13:58 osas-auditd-rhel7.rules
So, it looks like the /etc/audit/rules.d/audit.rules
folder doesn't exist. Does it need to be created, or should we use the osas-auditd-rhel7.rules
file?
from ubuntu1604-cis.
Hmmm - a little bit curious. When I start a vanilla Ubuntu 16.04 and install auditd, I see the following:
root@ip:/etc/audit# ls -lR *
-rw-r----- 1 root root 701 Jan 18 2016 auditd.conf
-rw-r----- 1 root root 373 Jan 18 2016 audit.rules
rules.d:
total 4
-rw-r----- 1 root root 373 Jan 18 2016 audit.rules
There is /etc/audit/audit.rules
as well as /etc/audit/rules.d/audit.rules
from ubuntu1604-cis.
I will check the duplicate code and fix it.
from ubuntu1604-cis.
Why do you need to create audit.rules
in the Dockerfile?
from ubuntu1604-cis.
duplicate code is fixed.
The Dockerfile was for testing with travis. But they did some changes and it does not work anymore.
I will switch to molecule for automatic ansible role testing with the next version.
from ubuntu1604-cis.
All audit rules are generated correctly in /etc/audit/audit.rules
by the role in my test environment.
It looks like you use a second role which creates osas-auditd-rhel7.rules
Please let me know if there are other problems with the original topic. Otherwise I would like to close the issue.
from ubuntu1604-cis.
Youre right; I ran two roles to harden the OS, which created the other audit file. Thanks for all your hard work!
from ubuntu1604-cis.
Related Issues (16)
- Undefined variable grub_cfg & grub2-mkconfig doesn't exist HOT 1
- Idempotence test failed HOT 1
- Changing password fails
- Requirement.yml is missing HOT 1
- NTP configuration fails (chronyd) HOT 2
- section 1 Ensure XD/NX support is enabled can fail on systems with long uptime /large number of devices
- Why can't these fail? HOT 2
- it looks like this line is out of order HOT 1
- Use version tags in Galaxy HOT 1
- tasks/main.yml has type section issues HOT 5
- Section 1.1.1 does not match CIS Guide HOT 3
- ubuntu1604cis_aide_cron
- Link to CIS Guide doesn't work. HOT 2
- Vaildate SSH config file after changes
- 6.2.6 Leaves empty secure path, breaks playbook HOT 12
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ubuntu1604-cis.