forked from ansible-lockdown/RHEL9-CIS
Updated as per steps
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
This commit is contained in:
Mark Bolwell
parent
56f0618bc3
commit
e88b3efbf0
1 changed files with 9 additions and 3 deletions
|
|
@ -7,15 +7,21 @@
|
||||||
name: aide
|
name: aide
|
||||||
state: present
|
state: present
|
||||||
|
|
||||||
- name: "1.3.1 | PATCH | Ensure AIDE is installed | Configure AIDE"
|
- name: "1.3.1 | PATCH | Ensure AIDE is installed | Build AIDE DB"
|
||||||
ansible.builtin.shell: /usr/sbin/aide --init -B 'database_out=file:/var/lib/aide/aide.db.gz'
|
ansible.builtin.shell: /usr/sbin/aide --init
|
||||||
changed_when: false
|
changed_when: false
|
||||||
failed_when: false
|
failed_when: false
|
||||||
async: 45
|
async: 45
|
||||||
poll: 0
|
poll: 0
|
||||||
args:
|
args:
|
||||||
creates: /var/lib/aide/aide.db.gz
|
creates: /var/lib/aide/aide.db.new.gz
|
||||||
when: not ansible_check_mode
|
when: not ansible_check_mode
|
||||||
|
|
||||||
|
- name: "1.3.1 | PATCH | Ensure AIDE is installed | copy AIDE DB"
|
||||||
|
ansible.builtin.copy:
|
||||||
|
src: /var/lib/aide/aide.db.new.gz
|
||||||
|
dest: /var/lib/aide/aide.db.gz
|
||||||
|
remote_src: true
|
||||||
when:
|
when:
|
||||||
- rhel9cis_config_aide
|
- rhel9cis_config_aide
|
||||||
- rhel9cis_rule_1_3_1
|
- rhel9cis_rule_1_3_1
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue