Revision 1.4Oct 4, 2022
Functional Update
- 4.1.15 Ensure system administrator command executions (sudo) are collected
- 4.1.15 Ensure system administrator command executions (sudo) are collected - auditctl
Added
- 4.1.15 Ensure system administrator command executions (sudo) are collected - (64 bit)
- 4.1.15 Ensure system administrator command executions (sudo) are collected - auditctl (64 bit)
- 4.1.7 Ensure login and logout events are collected - /var/run/faillock
- 4.1.7 Ensure login and logout events are collected - auditctl /var/run/faillock
Removed
- 4.1.5 Ensure events that modify the system's network environment are collected - /etc/sysconfig/network-scripts
- 4.1.5 Ensure events that modify the system's network environment are collected - auditctl network-scripts
- 4.1.7 Ensure login and logout events are collected - /var/log/faillog
- 4.1.7 Ensure login and logout events are collected - /var/log/tallylog
- 4.1.7 Ensure login and logout events are collected - /var/run/faillock/
- 4.1.7 Ensure login and logout events are collected - auditctl /var/log/faillog
- 4.1.7 Ensure login and logout events are collected - auditctl /var/log/tallylog
- 4.1.7 Ensure login and logout events are collected - auditctl /var/run/faillock/
