Setting Audit Rules
Rye, Gene R.
GENE.R.RYE at saic.com
Mon Jul 25 18:27:33 UTC 2011
I am attempting to secure a RHEL 5 64bit system. I am modifying the
stig.rules file to use as the audit.rules file. The NSA guide
identifies some rules requiring the ARCH value to be either 64b or 32b.
Some existing rules have both OS versions being audited. Should I leave
both available even though my system is 64b or should I only use the 64b
options?
Thanks
Gene Rye
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/linux-audit/attachments/20110725/06aa9dbc/attachment.htm>
More information about the Linux-audit
mailing list