-
Bug
-
Resolution: Done
-
Major
-
RH415 - RHEL9.2-en-1-20240215
-
None
Please fill in the following information:
| URL: | https://role.rhu.redhat.com/rol-rhu/app/courses/rh415-9.2/pages/ch07s05 |
| Reporter RHNID: | slauber |
| Section Title: | Lab: Monitoring File-system Changes |
Issue description
Description: Step 6 criteria and solution do not appear to match. "whenever there is an attempt to read, write, execute, or change an attribute" the solution only set write and attribute permissions -p wa
=============================================
Steps to reproduce:
Workaround:
Expected result:
The instruction states that the Audit watch rule should generate log entries for attempts to read, write, execute, or change attributes of the /etc/ssh directory. However, the provided solution only specifies -p wa, which stands for "write" and "attribute" changes.
To meet the criteria fully, the Audit watch rule should include permissions for reading (r) and executing (x) changes as well.
