auditd

Configures auditd and add some standard rule

Luther Barnum

lgbarn

9,543 downloads

6,593 latest version

4.6 quality score

Version information

  • 1.0.0 (latest)
  • 0.8.1
  • 0.8.0
  • 0.7.3
  • 0.7.2
  • 0.7.1
  • 0.7.0
  • 0.6.0
released Jan 16th 2016
This version is compatible with:
  • RedHat
    ,
    CentOS
    ,
    OracleLinux

Start using this module

Documentation

lgbarn/auditd — version 1.0.0 Jan 16th 2016

Build Status

Table of Contents

  1. Overview
  2. Module Description - What the module does and why it is useful
  3. Setup - The basics of getting started with auditd
  4. Usage - Configuration options and additional functionality
  5. Reference - An under-the-hood peek at what the module is doing and how
  6. Limitations - OS compatibility, etc.
  7. Development - Guide for contributing to the module

Overview

This module will install a basic template for auditd rules. Thss should be a starting point for security auditing on your Linux server

Module Description

This module edits the default /etc/audit/auditd.conf and adds a /etc/audit/audit.rules file to the server and restarts auditd.

Setup

What auditd affects

  • /etc/audit/auditd.conf
  • /etc/audit/audit.rules
  • RPM Package audit will be installed
  • Servce auditd will be turned on and started

Beginning with auditd

Install module with sudo puppet module install auditd or use r10k.

Usage

Use the following syntax to get this module working:

include auditd

or

class { 'auditd': }

Reference

Classes

Public Classes

  • auditd: Installs and configures auditd on your server.

<<<<<<< HEAD ####Private Classes

Private Classes

<<<<<<< HEAD

  • auditd::config: Configures the module.
  • auditd::install: Installs auditd package on your server.
  • auditd::params: Handle parameters to module.
  • auditd::service: Configures auditd service.

    e4b38a3... added space for proper markdown formatting

  • auditd::config: Configures the module.
  • auditd::install: Installs auditd package on your server.
  • auditd::params: Handle parameters to module.
  • auditd::service: Configures auditd service.

    5bc0cb1... added module install specifics

Limitations

This module has only been tested on RedHat,CentOS and it derivatives. All other distributions are not supported.

Development

This module is public and can be found on githubhere