linux-audit.redhat.com archive mirror
 help / color / mirror / Atom feed
From: Enzo Matsumiya <ematsumiya@suse.de>
To: Steve Grubb <sgrubb@redhat.com>
Cc: linux-audit@redhat.com
Subject: Re: [RFC] audit.spec: create audit group for log read access
Date: Wed, 20 Jan 2021 18:39:11 -0300	[thread overview]
Message-ID: <20210120213911.32v27lqeqhrdm53i@hyori> (raw)
In-Reply-To: <5439988.DvuYhMxLoT@x2>

On 01/20, Steve Grubb wrote:
>This might go against the DISA STIG, but otherwise this is using the audit
>system as intended.

Ah yes, you're right. I checked and it seems so for RH, but not for SUSE.
Good catch, though.

>I consider the audit.spec file to be an example to help others with packaging.
>But I'm not entirely sure if it's 100% in sync with Fedora since they make
>arbitrary policy changes like removing gcc and make from the build root which
>then causes specfile updates. If you want to submit a patch, feel free. I
>would apply it as an example to others.

Thanks. We also have some modifications to the specfile.

So what I'm getting from your reply is it's up to the OS vendor to provide,
or not, such modification -- i.e. it's more of a general OS problem than audit's
problem. Is that correct?

>Best Regards,
>-Steve


Cheers,

Enzo

--
Linux-audit mailing list
Linux-audit@redhat.com
https://www.redhat.com/mailman/listinfo/linux-audit


  reply	other threads:[~2021-01-20 21:41 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2021-01-20 17:52 [RFC] audit.spec: create audit group for log read access Enzo Matsumiya
2021-01-20 18:16 ` Steve Grubb
2021-01-20 21:39   ` Enzo Matsumiya [this message]
2021-01-20 23:15     ` Steve Grubb

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20210120213911.32v27lqeqhrdm53i@hyori \
    --to=ematsumiya@suse.de \
    --cc=linux-audit@redhat.com \
    --cc=sgrubb@redhat.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).