Reviewed: https://review.openstack.org/319438 Committed: https://git.openstack.org/cgit/openstack/openstack-ansible-security/commit/?id=7b313ee1bc6c300869ce557d7ab8e3ddc17b2333 Submitter: Jenkins Branch: master commit 7b313ee1bc6c300869ce557d7ab8e3ddc17b2333 Author: Major Hayden <major at mhtx.net> Date: Wed May 25 11:26:56 2016 -0500 Adding audit rule for SELinux policy modifications This patch fixes the auditd rules template so that AppArmor and SELinux policy modifications are logged, depending on which Linux distribution is in use. The security_audit_apparmor_changes variable has been renamed to security_audit_mac_changes to be more generic. Documentation updates and a release note are included. Closes-bug: 1584187 Change-Id: I0955e2cb8a05af4afd36aaca518322a9df6d1ff7 ** Changed in: openstack-ansible Status: In Progress => Fix Released -- You received this bug notification because you are a member of OpenStack Security, which is subscribed to OpenStack. https://bugs.launchpad.net/bugs/1584187 Title: Security role should set audit rules for SELinux Status in openstack-ansible: Fix Released Bug description: V-38541 requires that SELinux modifications are audited. This was configured for Ubuntu, but not for CentOS. To manage notifications about this bug go to: https://bugs.launchpad.net/openstack-ansible/+bug/1584187/+subscriptions