Produced by Araxis Merge on 5/14/2018 1:18:36 PM Eastern Daylight Time. See www.araxis.com for information about Merge. This report uses XHTML and CSS2, and is best viewed with a modern standards-compliant browser. For optimum results when printing this report, use landscape orientation and enable printing of background images and colours in your browser.
| # | Location | File | Last Modified |
|---|---|---|---|
| 1 | MCCF_EDI_TAS_Infrastructure.zip\MCCF_EDI_TAS_Infrastructure\mag_sys_build\playbooks | audit_access_rule.yml | Tue Mar 27 23:51:10 2018 UTC |
| 2 | MCCF_EDI_TAS_Infrastructure.zip\MCCF_EDI_TAS_Infrastructure\mag_sys_build\playbooks | audit_access_rule.yml | Tue May 8 03:18:17 2018 UTC |
| Description | Between Files 1 and 2 |
|
|---|---|---|
| Text Blocks | Lines | |
| Unchanged | 2 | 48 |
| Changed | 1 | 2 |
| Inserted | 0 | 0 |
| Removed | 0 | 0 |
| Whitespace | |
|---|---|
| Character case | Differences in character case are significant |
| Line endings | Differences in line endings (CR and LF characters) are ignored |
| CR/LF characters | Not shown in the comparison detail |
No regular expressions were active.
| 1 | # Ansible Playbook | |
| 2 | # Erik van Oudheusde n PII - 28 Sep 2 017 | |
| 3 | # | |
| 4 | # Ensure a uditd Coll ects Unaut horized Ac cess Attem pts to Fil es (unsucc essful) | |
| 5 | ||
| 6 | --- | |
| 7 | - name: En sure audit d Collects Unauthori zed Access Attempts to Files ( unsuccessf ul) | |
| 8 | hosts: r hel7 | |
| 9 | become: yes | |
| 10 | tasks: | |
| 11 | - name: Create acc ess.rules Comment | |
| 12 | blocki nfile: | |
| 13 | path : /etc/aud it/rules.d /access.ru les | |
| 14 | crea te: yes | |
| 15 | back up: yes | |
| 16 | mark er: "## {m ark} Added for VA CR ISP" | |
| 17 | owne r: root | |
| 18 | grou p: root | |
| 19 | mode : 0600 | |
| 20 | cont ent: | | |
| 21 | ## Access Rul es | |
| 22 | -a always,ex it -F arch =b32 -S cr eat -S ope n -S opena t -S open_ by_handle_ at -S trun cate -S ft runcate -F exit=-EAC CES -F aui d>=1000 -F auid!=429 4967295 -k access | |
| 23 | -a always,ex it -F arch =b32 -S cr eat -S ope n -S opena t -S open_ by_handle_ at -S trun cate -S ft runcate -F exit=-EPE RM -F auid >=1000 -F auid!=4294 967295 -k access | |
| 24 | -a always,ex it -F arch =b64 -S cr eat -S ope n -S opena t -S open_ by_handle_ at -S trun cate -S ft runcate -F exit=-EAC CES -F aui d>=1000 -F auid!=429 4967295 -k access | |
| 25 | -a always,ex it -F arch =b64 -S cr eat -S ope n -S opena t -S open_ by_handle_ at -S trun cate -S ft runcate -F exit=-EPE RM -F auid >=1000 -F auid!=4294 967295 -k access |
Araxis Merge (but not the data content of this report) is Copyright © 1993-2016 Araxis Ltd (www.araxis.com). All rights reserved.