tests: Use journalctl -g to check for failed login
/var/log/audit/audit.log isn't always available (eg. tar liveimg install), but it is logged to the journal, which can be grepped with 'journalctl -g' so use that instead.
This commit is contained in:
parent
454af0c5d5
commit
89539a7bf4
@ -137,7 +137,7 @@ check_root_account() {
|
|||||||
0 "Can't ssh to '$SSH_MACHINE' as root using password-based auth"
|
0 "Can't ssh to '$SSH_MACHINE' as root using password-based auth"
|
||||||
rlRun -t -c "ssh $SSH_OPTS ${SSH_USER}@${SSH_MACHINE} \"$SUDO passwd --status root | grep -E '^root\s+LK?'\"" \
|
rlRun -t -c "ssh $SSH_OPTS ${SSH_USER}@${SSH_MACHINE} \"$SUDO passwd --status root | grep -E '^root\s+LK?'\"" \
|
||||||
0 "root account is disabled in /etc/shadow"
|
0 "root account is disabled in /etc/shadow"
|
||||||
rlRun -t -c "ssh $SSH_OPTS ${SSH_USER}@${SSH_MACHINE} \"$SUDO grep 'USER_LOGIN.*acct=\\\"root\\\".*terminal=ssh.*res=failed' /var/log/audit/audit.log\"" \
|
rlRun -t -c "ssh $SSH_OPTS ${SSH_USER}@${SSH_MACHINE} \"$SUDO journalctl -g 'USER_LOGIN.*acct=\\\"root\\\".*terminal=ssh.*res=failed'\"" \
|
||||||
0 "audit.log contains entry about unsuccessful root login"
|
0 "audit.log contains entry about unsuccessful root login"
|
||||||
# We modify the default sshd settings on live ISO, so we can only check the default empty password setting
|
# We modify the default sshd settings on live ISO, so we can only check the default empty password setting
|
||||||
# outside of live ISO
|
# outside of live ISO
|
||||||
|
Loading…
Reference in New Issue
Block a user