From c93b1676cca4d457f77aaff6a83b77faa419fbea Mon Sep 17 00:00:00 2001
From: Major Hayden <major@mhtx.net>
Date: Mon, 12 Sep 2016 14:51:58 -0500
Subject: [PATCH] Add network conf auditing on CentOS

This patch adds in auditing for /etc/sysconfig/network.

Closes-bug: 1622674
Change-Id: I0de15a130161ed1f8a6bdb2a7de33c55b91d6609
---
 templates/osas-auditd.j2 | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/templates/osas-auditd.j2 b/templates/osas-auditd.j2
index 941980aa..5819ccc4 100644
--- a/templates/osas-auditd.j2
+++ b/templates/osas-auditd.j2
@@ -61,8 +61,12 @@
 -w /etc/issue -p wa -k audit_network_modifications-V-38540
 -w /etc/issue.net -p wa -k audit_network_modifications-V-38540
 -w /etc/hosts -p wa -k audit_network_modifications-V-38540
+{% if ansible_os_family == "RedHat" %}
+-w /etc/sysconfig/network -p wa -k audit_network_modifications-V-38540
+{% elif ansible_os_family == "Debian" %}
 -w /etc/network -p wa -k audit_network_modifications-V-38540
 {% endif %}
+{% endif %}
 
 {% if linux_security_module == 'apparmor' and security_audit_mac_changes | bool %}
 # RHEL 6 STIG V-38541