openstack-ansible-security/doc/metadata/rhel6/V-38541.rst

---id: V-38541 status: implemented tag: misc ---

For Ubuntu, rules are added to auditd that will log any changes made in the /etc/apparmor directory.

For CentOS, rules are added to auditd that will log any changes made in the /etc/selinux directory.

To opt-out of this change, set the following Ansible variable:

security_audit_mac_changes: no