Merge pull request #12676 from vojtapolasek/remove_stig_from_audit_im…

…mutable_login_uids audit_immutable_login_uids: remove stig-specific content
ComplianceAsCode · Dec 10, 2024 · f816785 · f816785
2 parents b3b1560 + 9ce6379
commit f816785
Show file tree

Hide file tree

Showing 6 changed files with 0 additions and 37 deletions.
diff --git a/controls/srg_gpos/SRG-OS-000057-GPOS-00027.yml b/controls/srg_gpos/SRG-OS-000057-GPOS-00027.yml
@@ -11,5 +11,4 @@ controls:
             - file_group_ownership_var_log_audit
             - file_ownership_var_log_audit_stig
             - file_permissions_var_log_audit
-            - audit_immutable_login_uids
         status: automated
diff --git a/controls/srg_gpos/SRG-OS-000058-GPOS-00028.yml b/controls/srg_gpos/SRG-OS-000058-GPOS-00028.yml
@@ -10,5 +10,4 @@ controls:
             - file_group_ownership_var_log_audit
             - file_ownership_var_log_audit_stig
             - file_permissions_var_log_audit
-            - audit_immutable_login_uids
         status: automated
diff --git a/controls/srg_gpos/SRG-OS-000059-GPOS-00029.yml b/controls/srg_gpos/SRG-OS-000059-GPOS-00029.yml
@@ -11,5 +11,4 @@ controls:
             - file_group_ownership_var_log_audit
             - file_ownership_var_log_audit_stig
             - file_permissions_var_log_audit
-            - audit_immutable_login_uids
         status: automated
diff --git a/controls/srg_gpos/SRG-OS-000462-GPOS-00206.yml b/controls/srg_gpos/SRG-OS-000462-GPOS-00206.yml
@@ -69,5 +69,4 @@ controls:
             - audit_rules_usergroup_modification_passwd
             - audit_rules_usergroup_modification_shadow
             - grub2_audit_argument
-            - audit_immutable_login_uids
         status: automated
diff --git a/linux_os/guide/auditing/policy_rules/audit_immutable_login_uids/policy/stig/shared.yml b/linux_os/guide/auditing/policy_rules/audit_immutable_login_uids/policy/stig/shared.yml
diff --git a/linux_os/guide/auditing/policy_rules/audit_immutable_login_uids/rule.yml b/linux_os/guide/auditing/policy_rules/audit_immutable_login_uids/rule.yml
@@ -58,17 +58,7 @@ fixtext: |-
 
     <pre>--loginuid-immutable</pre>
 
-    If the file doesn't exist, it can be copied from <tt>/usr/share/audit/sample-rules</tt>
-    using the next command
-
-    <pre>
-    cp /usr/share/audit/sample-rules/11-loginuid.rules /etc/audit/rules.d/
-    </pre>
-
     Then, run the following commands:
 
     $ sudo chmod o-rwx "/etc/audit/rules.d/11-loginuid.rules"
     $ sudo augenrules --load
-
-srg_requirement: |-
-    {{{ full_name }}} audit system must protect logon UIDs from unauthorized change.