Skip to content

Commit

Permalink
Merge pull request #534 from Vincent056/aide
Browse files Browse the repository at this point in the history 
OCPBUGS-31257: Exclude additional files in default aide conf
  • Loading branch information
@openshift-merge-bot
openshift-merge-bot[bot] committed May 30, 2024
2 parents 2aac359 + 2c72839 commit 0c758a9
Show file tree
Hide file tree
Showing 2 changed files with 6 additions and 0 deletions.
3 changes: 3 additions & 0 deletions pkg/controller/fileintegrity/config_defaults.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -52,6 +52,9 @@ CONTENT_EX = sha512+ftype+p+u+g+n+acl+selinux+xattrs
!/hostroot/etc/machine-config-daemon/node-annotation.json*
!/hostroot/etc/pki/ca-trust/extracted/java/cacerts$
!/hostroot/etc/cvo/updatepayloads
!/hostroot/etc/cni/multus/certs
!/hostroot/etc/kubernetes/compliance-operator
!/hostroot/etc/kubernetes/node-feature-discovery
# Catch everything else in /etc
/hostroot/etc/ CONTENT_EX`
3 changes: 3 additions & 0 deletions tests/e2e/helpers.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -130,6 +130,9 @@ CONTENT_EX = sha512+ftype+p+u+g+n+acl+selinux+xattrs
!/hostroot/etc/machine-config-daemon/currentconfig$
!/hostroot/etc/pki/ca-trust/extracted/java/cacerts$
!/hostroot/etc/cvo/updatepayloads
!/hostroot/etc/cni/multus/certs
!/hostroot/etc/kubernetes/compliance-operator
!/hostroot/etc/kubernetes/node-feature-discovery
# Catch everything else in /etc
/hostroot/etc/ CONTENT_EX`
Expand Down

0 comments on commit 0c758a9

Please sign in to comment.