---
id: V-72125
status: implemented
tag: auditd
---

Rules are added to audit all ``open`` syscalls on the system.

Deployers can opt out of this change by setting an Ansible variable:

.. code-block:: yaml

    security_rhel7_audit_open: no

This rule is compatible with x86, x86_64, and ppc64 architectures.