Major Hayden 6ce54e019c V-3863{3,4,6}: Audit log files
Implements: blueprint security-hardening

Change-Id: Iea8c03d78b81273d8373029c4d18115136d0abf1
2015-10-08 09:56:02 -05:00

420 B

Ubuntu's default action for max_log_file_action is to rotate the logs. This meets the STIG requirements and the Ansible task will ensure that the secure default is maintained.

Use caution when changing this option. Certain values, like SUSPEND will cause the audit daemon to lock the machine when the maximum size for a log file is reached. Review the audit documentation carefully before making adjustments.