From 37ecce709bf3ddc0c7e0d38fea9f1c8089b1c03e Mon Sep 17 00:00:00 2001
From: Jack Ivanov <e601809@gmail.com>
Date: Wed, 8 Nov 2017 18:22:58 +0300
Subject: [PATCH] remove the dead code. Fixes #671

---
 roles/security/tasks/main.yml | 7 -------
 1 file changed, 7 deletions(-)

diff --git a/roles/security/tasks/main.yml b/roles/security/tasks/main.yml
index 4289ad1f..2f279122 100644
--- a/roles/security/tasks/main.yml
+++ b/roles/security/tasks/main.yml
@@ -56,13 +56,6 @@
         group: root
         mode: 0750
 
-    - name: Collect Use of privileged commands
-      shell: >
-        /usr/bin/find {/usr/local/sbin,/usr/local/bin,/sbin,/bin,/usr/sbin,/usr/bin} -xdev \( -perm -4000 -o -perm -2000 \) -type f | awk '{print "-a always,exit -F path=" $1 " -F perm=x -F auid>=500 -F auid!=4294967295 -k privileged" }'
-      args:
-        executable: /bin/bash
-      register: privileged_programs
-
     # Core dumps
 
     - name: Restrict core dumps (with PAM)