a

ATAPAuditor/Helpers/ShellScripts/common/6.3.3.15.sh

@@ -0,0 +1,16 @@
+#!/usr/bin/env bash
+
+UID_MIN=$(awk '/^\s*UID_MIN/{print $2}' /etc/login.defs)
+
+if [ -n "$UID_MIN" ]; then
+	on_disk=$(awk "/^ *-a *always,exit/ &&(/ -F *auid!=unset/||/ -F *auid!=-1/||/ -F *auid!=4294967295/) &&/ -F *auid>=${UID_MIN}/ &&/ -F *perm=x/ &&/ -F *path=\/usr\/bin\/chcon/ &&(/ key= *[!-~]* *$/||/ -k *[!-~]* *$/)" /etc/audit/rules.d/*.rules)
+
+	if [[ -n "$on_disk" ]]; then
+		exit 0
+	else
+		exit 1
+	fi
+else
+	echo "ERROR: Variable 'UID_MIN' is unset.\n"
+	exit 1
+fi