Ubuntu1804-CIS icon indicating copy to clipboard operation
Ubuntu1804-CIS copied to clipboard

Published 20 hours ago verified publisher icon florianutz

The NX||XD eventually fails on an active system

Open tdewitt opened this issue 5 years ago • 1 comments

https://github.com/florianutz/Ubuntu1804-CIS/blob/dc95662250817f1fb6fef05a9361ca4cc0094cc0/tasks/section1.yml#L677

dmesg will eventually roll over and this check will fail. Using journalctl -b is slowed but will work for longer. Example from a rather vanilla install of 18.04 server:

$ dmesg | wc -l
4070

$ journalctl -b | wc -l
549487

tdewitt avatar Jan 16 '20 04:01 tdewitt

According to official CIS Benchmark documents the command should be

journalctl | grep 'protection: active'

umarizulkifli avatar Nov 06 '20 08:11 umarizulkifli