Define a complete security baseline and monitor the baseline's rules. The definition of the baseline should be done in Hiera. The purpose of the module is to give the ability to setup a complete security baseline which not necessarily have to stick to industry security guides like the CIS benchmarks.
tom-krieger
commented
1 year ago
I used the latest version 0.8.3
class { 'cis_security_hardening::rules::auditd_time_change': enforce => true, }
auditd items missing: -a always,exit -F arch=b32 -S stime -F key=