|
 |
fe0dde |
From b38f6629ee59b6531d8c4be1cb31e83b5dfde54c Mon Sep 17 00:00:00 2001
|
|
|
fe0dde |
From: Vojtech Polasek <vpolasek@redhat.com>
|
|
|
fe0dde |
Date: Fri, 11 Sep 2020 15:51:24 +0200
|
|
|
fe0dde |
Subject: [PATCH 1/2] add ocil
|
|
|
fe0dde |
|
|
|
fe0dde |
---
|
|
|
fe0dde |
.../rsyslog_nolisten/rule.yml | 13 +++++++++++++
|
|
|
fe0dde |
1 file changed, 13 insertions(+)
|
|
|
fe0dde |
|
|
|
fe0dde |
diff --git a/linux_os/guide/system/logging/rsyslog_accepting_remote_messages/rsyslog_nolisten/rule.yml b/linux_os/guide/system/logging/rsyslog_accepting_remote_messages/rsyslog_nolisten/rule.yml
|
|
|
fe0dde |
index 6785ebcc86..6a3495f80e 100644
|
|
|
fe0dde |
--- a/linux_os/guide/system/logging/rsyslog_accepting_remote_messages/rsyslog_nolisten/rule.yml
|
|
|
fe0dde |
+++ b/linux_os/guide/system/logging/rsyslog_accepting_remote_messages/rsyslog_nolisten/rule.yml
|
|
|
fe0dde |
@@ -41,3 +41,16 @@ references:
|
|
|
fe0dde |
cis-csc: 1,11,12,13,14,15,16,18,3,4,5,6,8,9
|
|
|
fe0dde |
stigid@rhel7: RHEL-07-031010
|
|
|
fe0dde |
cis@rhel8: 4.2.1.6
|
|
|
fe0dde |
+
|
|
|
fe0dde |
+ocil_clause: "rsyslog accepts remote messages"
|
|
|
fe0dde |
+
|
|
|
fe0dde |
+ocil: |-
|
|
|
fe0dde |
+ Display the contents of the configuration file:
|
|
|
fe0dde |
+ cat /etc/rsyslog.conf
|
|
|
fe0dde |
+ Make sure that following lines are not present in the configuration:
|
|
|
fe0dde |
+ $ModLoad imtcp
|
|
|
fe0dde |
+ $InputTCPServerRun port
|
|
|
fe0dde |
+ $ModLoad imudp
|
|
|
fe0dde |
+ $UDPServerRun port
|
|
|
fe0dde |
+ $ModLoad imrelp
|
|
|
fe0dde |
+ $InputRELPServerRun port
|
|
|
fe0dde |
|
|
|
fe0dde |
From 6959ddb2dbc12d4fa2ff7f6ee9e71820d5dde0f8 Mon Sep 17 00:00:00 2001
|
|
|
fe0dde |
From: =?UTF-8?q?Mat=C4=9Bj=20T=C3=BD=C4=8D?= <matej.tyc@gmail.com>
|
|
|
fe0dde |
Date: Wed, 16 Sep 2020 11:58:21 +0200
|
|
|
fe0dde |
Subject: [PATCH 2/2] Fix text according to review feedback
|
|
|
fe0dde |
MIME-Version: 1.0
|
|
|
fe0dde |
Content-Type: text/plain; charset=UTF-8
|
|
|
fe0dde |
Content-Transfer-Encoding: 8bit
|
|
|
fe0dde |
|
|
|
fe0dde |
Co-authored-by: Jan Černý <jcerny@redhat.com>
|
|
|
fe0dde |
---
|
|
|
fe0dde |
.../rsyslog_accepting_remote_messages/rsyslog_nolisten/rule.yml | 2 +-
|
|
|
fe0dde |
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
|
fe0dde |
|
|
|
fe0dde |
diff --git a/linux_os/guide/system/logging/rsyslog_accepting_remote_messages/rsyslog_nolisten/rule.yml b/linux_os/guide/system/logging/rsyslog_accepting_remote_messages/rsyslog_nolisten/rule.yml
|
|
|
fe0dde |
index 6a3495f80e..f529cbca89 100644
|
|
|
fe0dde |
--- a/linux_os/guide/system/logging/rsyslog_accepting_remote_messages/rsyslog_nolisten/rule.yml
|
|
|
fe0dde |
+++ b/linux_os/guide/system/logging/rsyslog_accepting_remote_messages/rsyslog_nolisten/rule.yml
|
|
|
fe0dde |
@@ -47,7 +47,7 @@ ocil_clause: "rsyslog accepts remote messages"
|
|
|
fe0dde |
ocil: |-
|
|
|
fe0dde |
Display the contents of the configuration file:
|
|
|
fe0dde |
cat /etc/rsyslog.conf
|
|
|
fe0dde |
- Make sure that following lines are not present in the configuration:
|
|
|
fe0dde |
+ Make sure that the following lines are not present in the output:
|
|
|
fe0dde |
$ModLoad imtcp
|
|
|
fe0dde |
$InputTCPServerRun port
|
|
|
fe0dde |
$ModLoad imudp
|