content icon indicating copy to clipboard operation
content copied to clipboard

Published 20 hours ago verified publisher icon ComplianceAsCode

Rule ensure_gpgcheck_globally_activated is not aligned with DISA STIG benchmark

Open vojtapolasek opened this issue 3 years ago • 3 comments

Description of problem:

After kickstart installation (GUI or non GUI), the rule ensure_gpgcheck_globally_activated is reported as passing where its DISA's counterpart (SV-230264r627750_rule) is reported as fail.

SCAP Security Guide Version:

Master as of Sat Sep 17, 2022

Operating System Version:

RHEL8

Steps to Reproduce:

  1. Perform installation from a kickstart file with stig / stig_gui profile selected
  2. Evaluate STIG profile from this repo
  3. evaluate DISA benchmark

Actual Results:

The rule xccdf_org.ssgproject.content_rule_ensure_gpgcheck_globally_activated passes The DISA rule xccdf_mil.disa.stig_rule_SV-230264r627750_rule fails.

Expected Results:

Both rules pass.

Additional Information/Debugging Steps:

vojtapolasek avatar Sep 20 '22 07:09 vojtapolasek

https://bugzilla.redhat.com/show_bug.cgi?id=2115352

ggbecker avatar Sep 22 '22 14:09 ggbecker

@ggbecker are you ok in assigning this issue to you?

marcusburghardt avatar Nov 24 '22 14:11 marcusburghardt

The bug has been migrated to https://issues.redhat.com/browse/RHEL-1806

vojtapolasek avatar Nov 30 '23 12:11 vojtapolasek