Fix description of rule

tallylog_t term was carbon copied from DISA spec, which later discovered had a mistake, and though DISA were contacted and opened a ticket on their side, we forgot to fix the rule sections involving the tallylog_t. Thanks @jan-cerny 🙇
ComplianceAsCode · Jul 29, 2024 · 9b94058 · 9b94058
1 parent 0ea87c2
commit 9b94058
Showing 1 changed file with 3 additions and 3 deletions.
diff --git a/...nts-pam/locking_out_password_attempts/accounts_passwords_pam_tally2_file_selinux/rule.yml b/...nts-pam/locking_out_password_attempts/accounts_passwords_pam_tally2_file_selinux/rule.yml
@@ -34,13 +34,13 @@ ocil: |-
 
     unconfined_u:object_r:faillog_t:s0 /var/log/faillock
 
-    If the security context type of the tally directory is not "tallylog_t", this is a finding.
+    If the security context type of the tally directory is not "faillog_t", this is a finding.
 
 fixtext: |-
-    Update the /etc/selinux/targeted/contexts/files/file_contexts.local with "tallylog_t" context
+    Update the /etc/selinux/targeted/contexts/files/file_contexts.local with "faillog_t" context
     type for the default pam_tally2 tally directory with the following command:
 
-    $ sudo semanage fcontext -a -t tallylog_t "/var/log/tallylog"
+    $ sudo semanage fcontext -a -t faillog_t "/var/log/tallylog"
 
     Next, update the context type of the default tallylog directory/subdirectories and files with the following command: