-
Bug
-
Resolution: Done
-
Major
-
RH415 - RHEL9.2-en-1-20240215
-
None
Please fill in the following information:
| URL: | https://role.rhu.redhat.com/rol-rhu/app/courses/rh415-9.2/pages/ch06s08 |
| Reporter RHNID: | slauber@redhat.com |
| Section Title: | Guided Exercise: Enabling Prepackaged Audit Rule Sets |
Issue description
lab finish does not disable key stroke logging. (Same for the end of unit lab) The root of this problem is really a bug in course content step 3.1 we should not be creating the profile with the --symlink-pam option. As it is, the echo commands actually append to the original profile files and when we "finish" and remove the custom profile and return to minimal, pam_tty_audit is still enabled. --symlink-meta is good. Also --symlink-nsswitch and --symlink-dconf would be appropriate. If you wanted some of the other pam files linked, you can use --symlink=FILE for each of those but we do not want the system-auth and password-auth file linked. we want copies of those two. (also on formatting, one code block with 3 commands is always hard, 3.1 should just create the profile, 3.2 should edit the files, and 3.3 should select the profile.)
same way in ch06s09 : Step 6.1 - dont use --symlink-pam this causes the edits in 6.2. to update the base profile files and results in the finish scripts not able to cleanup and remove key stroke logging. .
Steps to reproduce:
Workaround:
Expected result:
