2aca8287dc
This patch adds a task and handlers for enabling the audit daemon during the boot sequence to comply with V-38438. Deployers have the option to opt-out of the entire change, or they can apply the change without updating the active grub.cfg file. Change-Id: Ia8702b8439a5993516397363b21356f1216be403
42 lines
1.2 KiB
YAML
42 lines
1.2 KiB
YAML
---
|
|
# Copyright 2016, Rackspace US, Inc.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
|
|
# Maximum age of the apt cache before a refresh is required
|
|
cache_timeout: 600
|
|
|
|
# Configuration file paths
|
|
pam_auth_file: /etc/pam.d/common-auth
|
|
pam_password_file: /etc/pam.d/common-password
|
|
vsftpd_conf_file: /etc/vsftpd.conf
|
|
grub_conf_file: /boot/grub/grub.cfg
|
|
aide_cron_job_path: /etc/cron.daily/aide
|
|
aide_database_file: /var/lib/aide/aide.db
|
|
|
|
# Package names
|
|
auditd_pkg: auditd
|
|
ldap_server_pkg: slapd
|
|
telnet_server_pkg: telnetd
|
|
tftp_pkg: tftpd
|
|
xserver_pkg: xorg-xserver
|
|
ypserv_pkg: nis
|
|
|
|
# Service name
|
|
cron_service: cron
|
|
ssh_service: ssh
|
|
chrony_service: chrony
|
|
|
|
# Commands
|
|
grub_update_cmd: "update-grub"
|