31 lines
887 B
YAML
31 lines
887 B
YAML
---
|
|
|
|
{{ if .Vars.ubtu24cis_level_2 }}
|
|
{{ if .Vars.ubtu24cis_config_aide }}
|
|
{{ if .Vars.ubtu24cis_rule_6_3_3 }}
|
|
command:
|
|
audit_tools_crypto:
|
|
title: 6.3.3 | Ensure cryptographic mechanisms are used to protect the integrity of audit tools
|
|
exec: grep -P -- '(\/sbin\/(audit|au)\H*\b)' /etc/aide/aide.conf
|
|
exit-status: 0
|
|
stdout:
|
|
- '/sbin/auditctl p+i+n+u+g+s+b+acl+xattrs+sha512'
|
|
- '/sbin/auditd p+i+n+u+g+s+b+acl+xattrs+sha512'
|
|
- '/sbin/ausearch p+i+n+u+g+s+b+acl+xattrs+sha512'
|
|
- '/sbin/aureport p+i+n+u+g+s+b+acl+xattrs+sha512'
|
|
- '/sbin/autrace p+i+n+u+g+s+b+acl+xattrs+sha512'
|
|
- '/sbin/augenrules p+i+n+u+g+s+b+acl+xattrs+sha512'
|
|
meta:
|
|
server: 2
|
|
workstation: 2
|
|
CIS_ID:
|
|
- 6.3.3
|
|
CISv8: NA
|
|
CISv8_IG1: NA
|
|
CISv8_IG2: NA
|
|
CISv8_IG3: NA
|
|
NIST800-53R5: NA
|
|
{{ end }}
|
|
{{ end }}
|
|
{{ end }}
|