Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

auditd_rules rework #400

Merged
merged 14 commits into from
Feb 9, 2016
Merged

auditd_rules rework #400

merged 14 commits into from
Feb 9, 2016

Conversation

srenatus
Copy link
Contributor

Fixes #312 and #309, without dropping support for the old syntax. (Also documents the old status method.)

The new features, however, you only get with an not-outdated version of the audit package.

Adds a utility class for chaining filter methods that could be useful in more places, I hope.

Note that I couldn't find a way to have MockLoader present the outdated format, so I've just dropped that test for now.

@srenatus srenatus added the Type: Enhancement Improves an existing feature label Jan 29, 2016
@srenatus srenatus added this to the 0.9.11 milestone Jan 29, 2016
@chris-rock chris-rock modified the milestones: 0.9.12, 0.9.11 Jan 29, 2016
@srenatus srenatus force-pushed the sr/auditd_rules-rework branch from 8fc449f to ff76342 Compare January 29, 2016 16:29
@srenatus srenatus force-pushed the sr/auditd_rules-rework branch from ff76342 to 765f058 Compare February 1, 2016 08:46
@srenatus srenatus force-pushed the sr/auditd_rules-rework branch from 765f058 to 698e4e6 Compare February 1, 2016 08:54
arlimus
arlimus reviewed Feb 5, 2016
View reviewed changes
docs/resources.rst
it { should cmp 0 }
end

**Query properties of rules targetting specific syscalls or files.**
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

targeting typo

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

thanks, fixed

@srenatus srenatus force-pushed the sr/auditd_rules-rework branch from 698e4e6 to 19296db Compare February 5, 2016 15:33
@chris-rock chris-rock modified the milestones: 0.9.13, 0.9.12 Feb 5, 2016
@srenatus srenatus force-pushed the sr/auditd_rules-rework branch from 7d39c2c to 8eaa98f Compare February 5, 2016 16:13
@arlimus arlimus force-pushed the sr/auditd_rules-rework branch from 8eaa98f to 5849b02 Compare February 8, 2016 23:18
@arlimus
Copy link
Contributor

arlimus commented Feb 8, 2016

this turned out to be an awesome improvement!! :)
rebased, just one more feedback from @srenatus on that last commit for semantics

@arlimus arlimus force-pushed the sr/auditd_rules-rework branch from 5849b02 to 2e6fbc1 Compare February 8, 2016 23:25
@arlimus
Copy link
Contributor

arlimus commented Feb 9, 2016

👍

@srenatus srenatus force-pushed the sr/auditd_rules-rework branch from 2e6fbc1 to bbec06e Compare February 9, 2016 08:07
@arlimus
Copy link
Contributor

arlimus commented Feb 9, 2016

blocked by unit tests failing after winrm update: #439

srenatus and others added 11 commits February 9, 2016 11:51
@arlimus arlimus force-pushed the sr/auditd_rules-rework branch from bbec06e to 971d651 Compare February 9, 2016 10:52
arlimus added a commit that referenced this pull request Feb 9, 2016
@arlimus
Merge pull request #400 from chef/sr/auditd_rules-rework
2cf3b7e 
auditd_rules rework
@arlimus arlimus merged commit 2cf3b7e into master Feb 9, 2016
@arlimus arlimus deleted the sr/auditd_rules-rework branch February 9, 2016 10:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@srenatus srenatus

Labels
Type: Enhancement Improves an existing feature
Projects
None yet
Milestone
0.11.0
Development

Successfully merging this pull request may close these issues.
4 participants
@srenatus @arlimus @chris-rock @chef-supermarket