Reviewed: https://review.openstack.org/459719 Committed: https://git.openstack.org/cgit/openstack/openstack-ansible-security/commit/?id=1819c4241a6b12de4119d1f5ec1b75451f64789c Submitter: Jenkins Branch: master commit 1819c4241a6b12de4119d1f5ec1b75451f64789c Author: Major Hayden <major at mhtx.net> Date: Tue May 16 10:32:13 2017 -0500 Configure AIDE before initial run This patch ensures that AIDE is fully configured before the first database initialization process begins. Closes-Bug: 1686110 Change-Id: I209b88afb305828fa6e46de255ef11f5a6645427 ** Changed in: openstack-ansible Status: In Progress => Fix Released -- You received this bug notification because you are a member of OpenStack Security, which is subscribed to OpenStack. https://bugs.launchpad.net/bugs/1686110 Title: AIDE configuration is set AFTER the initial run Status in openstack-ansible: Fix Released Bug description: The "Configure AIDE to verify additional properties" task runs *after* the tasks which do the AIDE initialization. This isn't a problem on CentOS since the default properties meet the STIG requirements, but it does affect Ubuntu. The result is that Ubuntu users may see a huge AIDE update upon their second AIDE run. To manage notifications about this bug go to: https://bugs.launchpad.net/openstack-ansible/+bug/1686110/+subscriptions