validations-common/yum.yaml at d00778f1cdcd2965c005acdfec808e909139e9a7 - validations-common - OpenDev: Free Software Needs Free Tools

openstack/validations-common

Jiri Podivin 9b2bddbab8 New validation for checking presence of running rsyslog service.

Necessity of proper logging is described in depth by NIST SP 800-171
as well as by the Red Hat Openstack Security and Hardening Guide.

New validation group `security` consists only of check-rsyslog and
check-selinux-mode validations at this time.

Further security related validations should be included
in this group, in addition to other groups as needed.

Signed-off-by: Jiri Podivin <jpodivin@redhat.com>
Change-Id: I53f31f6fd30a15698328cada54c96d7d902e0155

2022-01-25 11:28:39 +01:00

12 lines

297 B

YAML

Raw Blame History

 ---
 - name: Get installed package from yum
   package_facts:
     manager: "auto"
 - name: Fails if we don't find the rsyslog installed
   assert:
     that:
       - "'rsyslog' in ansible_facts.packages"
     fail_msg: "rsyslog package is not installed"
     success_msg: "rsyslog package is installed"