openstack
/
ansible-hardening
Code Issues Proposed changes
ansible-hardening/doc/metadata/rhel7/V-72129.rst

336 B
Raw Blame History

---id: V-72129 status: implemented tag: auditd ---

Rules are added to audit all open_by_handle_at syscalls on the system.

Deployers can opt out of this change by setting an Ansible variable:

security_rhel7_audit_open_by_handle_at: no

This rule is compatible with x86, x86_64, and ppc64 architectures.