If the rule “Defaults logfile=” is specified in the /etc/sudoers.d/logging file instead of /etc/sudoers as recommended => [FAIL] Sudo Logging - Sudo commands are not being logged - reduces audit capability
Tested on Ubuntu 20.04 and 24.04
|
if grep -q "^Defaults.*logfile" /etc/sudoers; then |
If the rule “Defaults logfile=” is specified in the /etc/sudoers.d/logging file instead of /etc/sudoers as recommended => [FAIL] Sudo Logging - Sudo commands are not being logged - reduces audit capability
Tested on Ubuntu 20.04 and 24.04
vps-audit/vps-audit.sh
Line 367 in 88c987a