Skip to content

Commit 347b070

Browse files
teacup-on-rockingchairteacup-on-rockingchair
authored
Merge pull request #14583 from teacup-on-rockingchair/sle15_disable_audit_rules_immutable
Disable audit_rules_immutable rule for sle15
2 parents a5b5903 + 3c9ab94 commit 347b070

7 files changed

Lines changed: 10 additions & 5 deletions

File tree

controls/cis_sle15.yml

Lines changed: 1 addition & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1496,9 +1496,7 @@ controls:
14961496
levels:
14971497
- l2_server
14981498
- l2_workstation
1499-
status: automated
1500-
rules:
1501-
- audit_rules_immutable
1499+
status: manual
15021500

15031501
- id: 4.2.1.1
15041502
title: Ensure rsyslog is installed (Automated)

products/sle15/profiles/anssi_bp28_enhanced.profile

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -78,3 +78,5 @@ selections:
7878
- '!audit_rules_mac_modification_etc_selinux'
7979
- '!no_nis_in_nsswitch'
8080
- '!service_chronyd_enabled'
81+
- '!audit_rules_immutable'
82+

products/sle15/profiles/anssi_bp28_high.profile

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -104,3 +104,5 @@ selections:
104104
- '!service_chronyd_enabled'
105105
- '!audit_rules_mac_modification_etc_selinux'
106106
- '!no_nis_in_nsswitch'
107+
- '!audit_rules_immutable'
108+

products/sle15/profiles/anssi_bp28_intermediary.profile

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -72,3 +72,5 @@ selections:
7272
- '!ldap_client_start_tls'
7373
- '!ldap_client_tls_cacertpath'
7474
- '!no_nis_in_nsswitch'
75+
- '!audit_rules_immutable'
76+

products/sle15/profiles/anssi_bp28_minimal.profile

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -42,6 +42,7 @@ selections:
4242
- '!accounts_passwords_pam_faillock_interval'
4343
- '!accounts_password_pam_ucredit'
4444
- '!accounts_password_pam_minlen'
45+
- '!audit_rules_immutable'
4546
- '!ensure_oracle_gpgkey_installed'
4647
- '!ensure_almalinux_gpgkey_installed'
4748
- '!enable_authselect'

products/sle15/profiles/hipaa.profile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -70,7 +70,7 @@ selections:
7070
- service_auditd_enabled
7171
- audit_rules_privileged_commands_sudo
7272
- audit_rules_privileged_commands_su
73-
- audit_rules_immutable
73+
- '!audit_rules_immutable'
7474
- kernel_module_usb-storage_disabled
7575
- service_autofs_disabled
7676
- auditd_audispd_syslog_plugin_activated

products/sle15/profiles/pcs-hardening.profile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -155,7 +155,7 @@ selections:
155155
- audit_rules_file_deletion_events_renameat
156156
- audit_rules_file_deletion_events_unlink
157157
- audit_rules_file_deletion_events_unlinkat
158-
- audit_rules_immutable
158+
- '!audit_rules_immutable'
159159
- audit_rules_kernel_module_loading_delete
160160
- audit_rules_kernel_module_loading_finit
161161
- audit_rules_kernel_module_loading_init

0 commit comments

Comments
 (0)