ansible-lockdown/RHEL9-CIS
3
0
Fork 1
mirror of https://github.com/ansible-lockdown/RHEL9-CIS.git synced 2025-12-24 22:23:06 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Storing max_log_file under rhel9cis_auditd dict variable.

Browse source 
Signed-off-by: Ionut Pruteanu <ionut.pruteanu@siemens.com>
This commit is contained in:
Ionut Pruteanu 2023-12-20 21:58:49 +02:00
parent 8405e67db2
commit 88ffe32137
No known key found for this signature in database
GPG key ID: 95B7D43B702B3569
2 changed files with 3 additions and 10 deletions
Download patch file Download diff file Expand all files Collapse all files

11
defaults/main.yml
View file

@ -525,26 +525,19 @@ rhel9cis_auditd:
space_left_action: email
action_mail_acct: root
admin_space_left_action: halt
# The max_log_file parameter should be based on your sites policy.
max_log_file: 10
max_log_file_action: keep_logs
# The audit_back_log_limit value should never be below 8192
rhel9cis_audit_back_log_limit: 8192
# The max_log_file parameter should be based on your sites policy
rhel9cis_max_log_file_size: 10
### 4.1.3.x audit template
update_audit_template: false
## Advanced option found in auditd post
rhel9cis_allow_auditd_uid_user_exclusions: false
# This can be used to configure other keys in auditd.conf
rhel9cis_auditd_extra_conf: {}
# Example:
# rhel9cis_auditd_extra_conf:
# admin_space_left: '10%'
## Preferred method of logging
## Whether rsyslog or journald preferred method for local logging
## Affects rsyslog cis 4.2.1.3 and journald cis 4.2.2.5