| What | Removed | Added |
|---|---|---|
| Summary | AUDIT-0: aaa_base: sysctl.d/52-yama.conf | AUDIT-WHITELIST: aaa_base: sysctl.d/52-yama.conf |
It seems to be all right after all. The default setting of the YAMA security module for ptrace_scope is 1, and always has been. Thus dropping the sysctl file from aaa_base is okay, and only installing the new sub-package will change the scope to 0. This detail was not clear to me from looking at the commit that changed this. I will initiate the process for adjusting the whitelistings.