fa2800419e
This patch migrates all of the remaining non-unique variable names in the security role to a pattern that begins with `security_*`. This will reduce potential variable collisions with other roles. This is a breaking change for deployers and users who are moving from the liberty or stable/mitaka branches to master. Release notes are included with additional details to help with the transition. Closes-Bug: 1578326 Change-Id: Ib716e81e6fed971b21dc5579ae1a871736e21189
429 B
429 B
Ubuntu's default action for security_max_log_file_action
is to rotate the logs. This meets the STIG requirements and the Ansible
task will ensure that the secure default is maintained.
Use caution when changing this option. Certain values, like
SUSPEND
will cause the audit daemon to lock the machine
when the maximum size for a log file is reached. Review the audit
documentation carefully before making adjustments.