60 lines
1.6 KiB
YAML
60 lines
1.6 KiB
YAML
---
|
|
# Copyright 2022 Red Hat, Inc.
|
|
# All Rights Reserved.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
# not use this file except in compliance with the License. You may obtain
|
|
# a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations
|
|
# under the License.
|
|
|
|
tripleo_auditd_pkg: 'audit'
|
|
tripleo_auditd_service: 'auditd'
|
|
tripleo_auditd_rules:
|
|
"Default - Delete all rules":
|
|
content: '-D'
|
|
order: 0
|
|
"Default - Set Buffer size":
|
|
content: '-b 8192'
|
|
order: 1
|
|
"Default - Set failure mode":
|
|
content: "-f 1"
|
|
order: 2
|
|
"Default - Set backlog time":
|
|
content: "--backlog_wait_time 60000"
|
|
order: 3
|
|
|
|
tripleo_auditd_config: {}
|
|
tripleo_auditd_config_default:
|
|
log_file: '/var/log/audit/audit.log'
|
|
log_format: 'RAW'
|
|
log_group: 'root'
|
|
write_logs: 'yes'
|
|
priority_boost: '4'
|
|
flush: 'incremental_async'
|
|
freq: '20'
|
|
num_logs: '5'
|
|
disp_qos: 'lossy'
|
|
dispatcher: '/sbin/audispd'
|
|
name_format: 'none'
|
|
max_log_file: '6'
|
|
max_log_file_action: 'rotate'
|
|
space_left: '75'
|
|
space_left_action: 'syslog'
|
|
action_mail_acct: 'root'
|
|
admin_space_left: '50'
|
|
admin_space_left_action: 'suspend'
|
|
disk_full_action: 'suspend'
|
|
disk_error_action: 'suspend'
|
|
tcp_listen_queue: '5'
|
|
tcp_max_per_addr: '1'
|
|
tcp_client_max_idle: '0'
|
|
enable_krb5: 'no'
|
|
krb5_principal: 'auditd'
|