f422da8599
Add support for the openSUSE Leap distributions. The security rules are similar to the RedHat and Ubuntu ones. We also replace ansible_os_family with ansible_pkg_mgr since the former does not return consistent results across different SUSE distributions especially on older Ansible versions. Change-Id: I20ffe17039bb641aad70d8123f0b7e7417a42cba
404 B
404 B
---id: V-72181 status: implemented tag: auditd ---
The tasks add a rule to auditd that logs each time the
pt_chown command is used.
Deployers can opt-out of this change by setting an Ansible variable:
security_rhel7_audit_pt_chown: noNote
No action is taken on Ubuntu 16.04, openSUSE Leap and SUSE Linux
Enterprise because pt_chown is not available.