[Openstack-security] [Bug 1590916] Re: Running augenrules should trigger an auditd restart

OpenStack Infra 1590916 at bugs.launchpad.net
Tue Jun 14 14:12:36 UTC 2016


Reviewed:  https://review.openstack.org/328279
Committed: https://git.openstack.org/cgit/openstack/openstack-ansible-security/commit/?id=e26c9112f95b2b3503dd8650bb9f49c11940d5a6
Submitter: Jenkins
Branch:    liberty

commit e26c9112f95b2b3503dd8650bb9f49c11940d5a6
Author: Major Hayden <major at mhtx.net>
Date:   Thu Jun 9 15:14:42 2016 -0500

    Restart auditd after running augenrules
    
    The augenrules command joins together all of the audit rules from
    rules.d and it is run any time the audit rules template changes. However,
    the augenrules handler didn't actually restart auditd to apply the
    changes to the system.
    
    This patch fires off the auditd restart handler anytime the augenrules
    handler is notified.
    
    Closes-bug: 1590916
    
    Change-Id: Ice83fe17ebb0e9edff9da897e435ae96c1778580
    (cherry picked from commit 809b6cb52db069fc2cfc4e22f11fef417a893195)


** Tags added: in-liberty

** Tags added: in-stable-mitaka

-- 
You received this bug notification because you are a member of OpenStack
Security, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1590916

Title:
  Running augenrules should trigger an auditd restart

Status in openstack-ansible:
  Fix Released

Bug description:
  The security role runs augenrules to create the main audit rules file
  whenever the rules template changes, but the handlers weren't set up
  to restart the audit daemon right after.  We should chain the handlers
  so that the augenrules handler will trigger a restart of auditd.

  This bug exists in master, mitaka, and liberty.

To manage notifications about this bug go to:
https://bugs.launchpad.net/openstack-ansible/+bug/1590916/+subscriptions




More information about the Openstack-security mailing list