Bug 1670997 - Amend the user lifecycle auditing
Summary: Amend the user lifecycle auditing
Alias: None
Product: Red Hat Enterprise Linux 8
Classification: Red Hat
Component: libuser
Version: 8.0
Hardware: Unspecified
OS: Unspecified
Target Milestone: rc
: 8.1
Assignee: Jakub Hrozek
QA Contact: Filip Dvorak
Depends On: 1682287
TreeView+ depends on / blocked
Reported: 2019-01-30 13:44 UTC by Jakub Hrozek
Modified: 2019-11-05 22:35 UTC (History)
3 users (show)

Fixed In Version: libuser-0.62-23.el8
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Last Closed: 2019-11-05 22:35:12 UTC
Type: Bug
Target Upstream Version:

Attachments (Terms of Use)
Patch to log group password change (1.15 KB, patch)
2019-04-14 12:40 UTC, Steve Grubb
no flags Details | Diff

System ID Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2019:3653 None None None 2019-11-05 22:35:13 UTC

Description Jakub Hrozek 2019-01-30 13:44:15 UTC
Description of problem:
RHEL-8.0 added audit support for libuser, but according to https://bugzilla.redhat.com/show_bug.cgi?id=1558151#c16 the support is incomplete.

This bug tracks adding whatever was missed from the initial implementation.

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:

Actual results:

Expected results:

Additional info:

Comment 3 Steve Grubb 2019-04-14 12:40:57 UTC
Created attachment 1555040 [details]
Patch to log group password change

This patch should fix the issue. Should look something like:

type=GRP_CHAUTHTOK msg=audit(04/14/2019 08:36:59.602:2440) : pid=5821 uid=root auid=sgrubb ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=changing-group-passwd acct=testgroup2 exe=/home/sgrubb/working/BUILD/libuser-0.62/apps/.libs/lt-lgroupmod hostname=localhost addr=? terminal=pts/2 res=success'

Comment 8 Jakub Hrozek 2019-06-05 20:19:51 UTC
* master: c6a4e9f596c976f71894269e3168567e6118236c

Comment 16 errata-xmlrpc 2019-11-05 22:35:12 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.


Note You need to log in before you can comment on or make changes to this bug.