auditd_time_change failed CIS RHEL 8 Benchmark v2.0.0, released 2022-02-23

tom-krieger / cis_security_hardening

Define a complete security baseline and monitor the baseline's rules. The definition of the baseline should be done in Hiera. The purpose of the module is to give the ability to setup a complete security baseline which not necessarily have to stick to industry security guides like the CIS benchmarks.

Apache License 2.0

15 stars 10 forks source link

auditd_time_change failed CIS RHEL 8 Benchmark v2.0.0, released 2022-02-23 #52

Closed warrenbel closed 1 year ago

warrenbel commented 1 year ago

OpenSCAP with profile CIS Red Hat Enterprise Linux 8 Benchmark for Level 2 - Server Red Hat Enterprise Linux 8 Benchmark™, v2.0.0, released 2022-02-23.

auditd items missing: -a always,exit -F arch=b32 -S clock_settime -F a0=0x0 -F key=time-change -a always,exit -F arch=b64 -S clock_settime -F a0=0x0 -F key=time-change -a always,exit -F arch=b64 -S adjtimex,settimeofday -F key=audit_time_rules

tom-krieger commented 1 year ago

Will be fixed in next release