Bug #15431: Guard against non-audit mode on node - Rudder - Issue Tracker

Actions

Copy link

Bug #15431

closed

Guard against non-audit mode on node

Added by Nicolas CHARLES over 5 years ago. Updated about 5 years ago.

Status:

Released

Priority:

N/A

Assignee:

François ARMAND

Category:

Security

Target version:

6.0.0~beta1

Pull Request:

https://github.com/Normation/rudder/p...

Severity:

UX impact:

User visibility:

Effort required:

Priority:

Name check:

To do

Fix check:

To do

Regression:

Description

We want to have a node local file that tells "this node must be on audit". Suggested file name: /opt/rudder/etc/force-audit-agent

If the policies downloaded from the server is not "audit", then stop execution and report error.

File can be set and unset with
rudder agent set-force-audit
rudder agent unset-force-audit

Subtasks 2 (0 open — 2 closed)

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Rudder

Custom queries

Bug #15431

Guard against non-audit mode on node

Updated by Nicolas CHARLES over 5 years ago

Updated by Nicolas CHARLES over 5 years ago

Updated by Nicolas CHARLES over 5 years ago

Updated by Vincent MEMBRÉ about 5 years ago

	Bug #15458: Adapt techniques to stop agent if it's not in audit and the audit is enforced	Released	Alexis Mousset				Actions
	Bug #15459: add a rudder agent command to force/unforce audit mode	Released	Alexis Mousset				Actions