Move auditd file permission rules to auditing group to fix rule order #12935
Conversation
When remediating the whole Ubuntu 24.04 CIS Level 2 profile, these rules were executed before package_audit_installed, resulting in errors due to missing configuration and binary files: - file_groupownership_audit_binaries - file_ownership_audit_binaries - file_permissions_audit_binaries - file_permissions_etc_audit_auditd - file_permissions_etc_audit_rules - file_permissions_etc_audit_rulesd Moving them to the auditing group places them after auditd is installed, fixing the issue.
|
Hi @mpurg. Thanks for your PR. I'm waiting for a ComplianceAsCode member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
|
Code Climate has analyzed commit 6b431fc and detected 0 issues on this pull request. The test coverage on the diff in this pull request is 100.0% (50% is the threshold). This pull request will bring the total coverage in the repository to 61.9% (0.0% change). View more on Code Climate. |
|
/packit build |
|
@Mab879 @teacup-on-rockingchair @Xeicker if you could give a look on this PR, it would be nice to include it in the next release. |
Description:
Move these auditd file permission rules to auditing group to fix rule order:
Rationale:
When remediating the whole Ubuntu 24.04 CIS Level 2 profile, these rules were executed before package_audit_installed, resulting in errors due to missing configuration and binary files.