From 2265497e75b0b16b9df42cc7761c6fac724fad53 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Benedikt=20B=C3=B6hm?= Date: Tue, 26 Jul 2022 15:57:39 +0200 Subject: [PATCH] Fix broken mode for /var/log/audit (#552) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ``` Unable to open /var/log/audit/audit.log (Permission denied) ``` This PR fixes the issue by using the default permission set by auditd (`0700`). Signed-off-by: Benedikt Böhm --- roles/os_hardening/defaults/main.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/roles/os_hardening/defaults/main.yml b/roles/os_hardening/defaults/main.yml index b32d3eded..3c002f8a2 100644 --- a/roles/os_hardening/defaults/main.yml +++ b/roles/os_hardening/defaults/main.yml @@ -428,7 +428,7 @@ os_mnt_var_log_src: "" os_mnt_var_log_options: 'rw,nosuid,nodev,noexec' os_mnt_var_log_filesystem: "ext4" -os_mnt_var_log_audit_dir_mode: '0640' +os_mnt_var_log_audit_dir_mode: '0700' os_mnt_var_log_audit_enabled: false os_mnt_var_log_audit_src: "" os_mnt_var_log_audit_options: 'rw,nosuid,nodev,noexec'