mirror of
https://github.com/trailofbits/algo.git
synced 2025-07-24 14:33:02 +02:00
35 lines
767 B
YAML
35 lines
767 B
YAML
# Auditd
|
|
|
|
- name: Auditd installed
|
|
apt: name=auditd state=latest
|
|
|
|
- name: Auditd rules configured
|
|
template: src=audit.rules.j2 dest=/etc/audit/audit.rules
|
|
notify:
|
|
- restart auditd
|
|
|
|
- name: Auditd configured
|
|
template: src=auditd.conf.j2 dest=/etc/audit/auditd.conf
|
|
notify:
|
|
- restart auditd
|
|
|
|
- name: Enable services
|
|
service: name=auditd enabled=yes
|
|
|
|
# Rsyslog
|
|
|
|
- name: Rsyslog installed
|
|
apt: name=rsyslog state=latest
|
|
|
|
- name: Rsyslog configured
|
|
template: src=rsyslog.conf.j2 dest=/etc/rsyslog.conf
|
|
notify:
|
|
- restart rsyslog
|
|
|
|
- name: Rsyslog CIS configured
|
|
template: src=CIS.conf.j2 dest=/etc/rsyslog.d/CIS.conf owner=root group=root mode=0644
|
|
notify:
|
|
- restart rsyslog
|
|
|
|
- name: Enable services
|
|
service: name=rsyslog enabled=yes
|