From 9516d25e869b5f704297442a9b28751081410f55 Mon Sep 17 00:00:00 2001 From: Guilhem Moulin Date: Mon, 14 Jul 2014 03:04:45 +0200 Subject: Install auditd. --- roles/common/tasks/auditd.yml | 7 +++++++ roles/common/tasks/main.yml | 1 + roles/common/tasks/samhain.yml | 5 +---- 3 files changed, 9 insertions(+), 4 deletions(-) create mode 100644 roles/common/tasks/auditd.yml (limited to 'roles/common/tasks') diff --git a/roles/common/tasks/auditd.yml b/roles/common/tasks/auditd.yml new file mode 100644 index 0000000..05bd447 --- /dev/null +++ b/roles/common/tasks/auditd.yml @@ -0,0 +1,7 @@ +- name: Install auditd + apt: pkg=auditd + +- name: Start auditd + service: name=auditd state=started + +- meta: flush_handlers diff --git a/roles/common/tasks/main.yml b/roles/common/tasks/main.yml index a239667..903e834 100644 --- a/roles/common/tasks/main.yml +++ b/roles/common/tasks/main.yml @@ -4,6 +4,7 @@ - include: apt.yml tags=apt - include: firewall.yml tags=firewall,iptables - include: samhain.yml tags=samhain +- include: auditd.yml tags=auditd - include: rkhunter.yml tags=rkhunter - include: clamav.yml tags=clamav - include: fail2ban.yml tags=fail2ban diff --git a/roles/common/tasks/samhain.yml b/roles/common/tasks/samhain.yml index 184decc..dd5c09b 100644 --- a/roles/common/tasks/samhain.yml +++ b/roles/common/tasks/samhain.yml @@ -1,8 +1,5 @@ - name: Install samhain - apt: pkg={{ item }} - with_items: - - samhain - - auditd + apt: pkg=samhain # XXX: Doesn't work out of the box, see #660197. # Every once in a while, or after a major upgrade, you may want to # update Samhain's database: -- cgit v1.2.3