aaron/ansible-role-auditd
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #4 from nerrehmit/feature/optional-permissions

Browse Source 
make file permissions optional
This commit is contained in:
ḱ̷̘͙̓͌e̶̡̬̦̽r̸̲̈͜ͅn̴̞̾ẹ̸̉̏l̸̢̜͂ ̵̖͝p̴͍̊̕ą̶̉n̴͚͘i̶̦̥̰͆c̵̪͔͔̈́
2021-09-22 11:41:07 +02:00
committed by GitHub
parent a8cd040c09 8b2ee12423
commit 1c7c15a2ed
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
templates/custom.rules.j2
View File

@@ -13,7 +13,7 @@
{% if auditd_custom_rules is defined %} {% if auditd_custom_rules is defined %}
{% for rule in auditd_custom_rules %} {% for rule in auditd_custom_rules %}
{% if rule.type == 'filesystem' %} {% if rule.type == 'filesystem' %}
-w {{ rule.file }} -p {{ rule.permissions }} {% if rule.comment is defined %} -k {{ rule.comment }}{% endif %}{{''}} -w {{ rule.file }} {% if rule.permissions is defined %} -p {{ rule.permissions }}{% endif %}{% if rule.comment is defined %} -k {{ rule.comment }}{% endif %}{{''}}
{% endif %} {% endif %}
{% if rule.type == 'syscall' %} {% if rule.type == 'syscall' %}
-a {{ rule.action }}{% if rule.filters is defined %}{% for filter in rule.filters %} -F {{ filter }}{% endfor %}{% endif %}{% if rule.syscalls is defined %}{% for syscall in rule.syscalls %} -S {{ syscall }}{% endfor %}{% endif %} {% if rule.comment is defined %} -k {{ rule.comment }}{% endif %}{{''}} -a {{ rule.action }}{% if rule.filters is defined %}{% for filter in rule.filters %} -F {{ filter }}{% endfor %}{% endif %}{% if rule.syscalls is defined %}{% for syscall in rule.syscalls %} -S {{ syscall }}{% endfor %}{% endif %} {% if rule.comment is defined %} -k {{ rule.comment }}{% endif %}{{''}}