fa2800419e
This patch migrates all of the remaining non-unique variable names in the security role to a pattern that begins with `security_*`. This will reduce potential variable collisions with other roles. This is a breaking change for deployers and users who are moving from the liberty or stable/mitaka branches to master. Release notes are included with additional details to help with the transition. Closes-Bug: 1578326 Change-Id: Ib716e81e6fed971b21dc5579ae1a871736e21189
11 lines
429 B
ReStructuredText
11 lines
429 B
ReStructuredText
Ubuntu's default action for ``security_max_log_file_action`` is to rotate the
|
|
logs. This meets the STIG requirements and the Ansible task will ensure that
|
|
the secure default is maintained.
|
|
|
|
Use caution when changing this option. Certain values, like ``SUSPEND`` will
|
|
cause the audit daemon to lock the machine when the maximum size for a log
|
|
file is reached. Review the audit documentation carefully before making
|
|
adjustments.
|
|
|
|
|