Merge branch 'master' of https://github.com/hardenedlinux/harbian-audit

2025-07-28 16:14:42 +02:00 · 2018-11-29 22:31:12 -05:00 · 2018-11-29 22:31:12 -05:00 · 200d337df5
commit 200d337df5
parent f7acb391ea 37e2065bc7
2 changed files with 5 additions and 0 deletions
--- a/docs/examples/configurations/etc.audit.rules.d.audit.rules
+++ b/docs/examples/configurations/etc.audit.rules.d.audit.rules
@ -90,3 +90,6 @@
 -w /etc/profile -p wa -k config_file_change
 -w /etc/profile.d/ -p wa -k config_file_change
 -w /etc/security/ -p wa -k config_file_change
 -w /etc/iptables/ -p wa -k config_file_change
 -w /etc/sysctl.conf -p wa -k config_file_change
--- a/docs/harbian_audit_Debian_9_Benchmark_v0.1.mkd
+++ b/docs/harbian_audit_Debian_9_Benchmark_v0.1.mkd
@ -837,6 +837,7 @@ Verify the operating system generates audit records that modify configuration. C
 -w /etc/profile -p wa -k config_file_change
 -w /etc/profile.d/ -p wa -k config_file_change
 -w /etc/security/ -p wa -k config_file_change
 -w /etc/iptables/ -p wa -k config_file_change
 -w /etc/sysctl.conf -p wa -k config_file_change
 ```
 If the command does not return any output, this is a finding.
@ -855,6 +856,7 @@ Fixtext: Configure the operating system to generate audit records that modify co
 -w /etc/profile -p wa -k config_file_change
 -w /etc/profile.d/ -p wa -k config_file_change
 -w /etc/security/ -p wa -k config_file_change
 -w /etc/iptables/ -p wa -k config_file_change
 -w /etc/sysctl.conf -p wa -k config_file_change
 ```
 The audit daemon must be restarted for the changes to take effect.