11 lines
279 B
Bash
11 lines
279 B
Bash
#!/usr/bin/env bash
|
|
|
|
on_disk=$(awk '/^ *-w/ &&(/\/etc\/selinux/ ||/\/usr\/share\/selinux/) &&/ +-p *wa/ &&(/ key= *[!-~]* *$/||/ -k *[!-~]* *$/)' /etc/audit/rules.d/*.rules)
|
|
|
|
if [[ -n "$on_disk" ]]; then
|
|
exit 0
|
|
else
|
|
echo "ERROR: Audit rules are NOT correctly set."
|
|
exit 1
|
|
fi
|