content icon indicating copy to clipboard operation
content copied to clipboard

Add rules to support remote offload of journal logs

Open teacup-on-rockingchair opened this issue 1 year ago • 8 comments

Description:

  • Add rules to support remote offload of journal logs to Slmicro5 STIG

Rationale:

  • Add rules and remediations to configure remote url, tls certificate and key for connecting to remote journal
  • Add external variables: var_journal_upload_url, var_journal_upload_server_certificate_file,var_journal_upload_server_trusted_certificate_file, var_journal_upload_server_key_file, that user can configure relevant settings

teacup-on-rockingchair avatar Oct 08 '24 12:10 teacup-on-rockingchair

Skipping CI for Draft Pull Request. If you want CI signal for your change, please convert it to an actual PR. You can still manually trigger a test run with /test all

openshift-ci[bot] avatar Oct 08 '24 12:10 openshift-ci[bot]

Start a new ephemeral environment with changes proposed in this pull request:

slmicro5 (from CTF) Environment (using Fedora as testing environment) Open in Gitpod

Fedora Testing Environment Open in Gitpod

Oracle Linux 8 Environment Open in Gitpod

github-actions[bot] avatar Oct 08 '24 12:10 github-actions[bot]

This datastream diff is auto generated by the check Compare DS/Generate Diff

Click here to see the full diff
New data stream adds bash remediation for rule 'xccdf_org.ssgproject.content_rule_service_firewalld_enabled'.
New data stream adds bash remediation for rule 'xccdf_org.ssgproject.content_rule_service_sshd_enabled'.
New data stream adds bash remediation for rule 'xccdf_org.ssgproject.content_rule_service_auditd_enabled'.

github-actions[bot] avatar Oct 08 '24 12:10 github-actions[bot]

:robot: A k8s content image for this PR is available at: ghcr.io/complianceascode/k8scontent:12479 This image was built from commit: 187c15f1e96ded3a49504d0436e27f325339f0c5

Click here to see how to deploy it

If you alread have Compliance Operator deployed: utils/build_ds_container.py -i ghcr.io/complianceascode/k8scontent:12479

Otherwise deploy the content and operator together by checking out ComplianceAsCode/compliance-operator and: CONTENT_IMAGE=ghcr.io/complianceascode/k8scontent:12479 make deploy-local

github-actions[bot] avatar Oct 08 '24 13:10 github-actions[bot]

I'm waving the automatus failures as they are due to rule not being the data streams.

Mab879 avatar Oct 15 '24 15:10 Mab879

/packit build

Mab879 avatar Oct 16 '24 17:10 Mab879

Please rebase, looks like something is conflicting.

Done thanks :bow:

teacup-on-rockingchair avatar Oct 22 '24 06:10 teacup-on-rockingchair

Code Climate has analyzed commit 1d40a704 and detected 0 issues on this pull request.

The test coverage on the diff in this pull request is 100.0% (50% is the threshold).

This pull request will bring the total coverage in the repository to 61.0% (0.0% change).

View more on Code Climate.

qlty-cloud-legacy[bot] avatar Oct 22 '24 09:10 qlty-cloud-legacy[bot]