content icon indicating copy to clipboard operation
content copied to clipboard
verified publisher icon ComplianceAsCode

directory_permissions_sshd_config_d misaligned with STIG

Open vojtapolasek opened this issue 11 months ago • 1 comments

Description of problem:

The problem lies in the DISA STIG SCAP content not being aligned with the prose. The following STIG is important: https://stigaview.com/products/rhel9/v2r3/RHEL-09-255115/ Note that in the "Check" part, the directory has permissions of 700, e.g. RWX. It needs the X permissions so that it can be entered. However, the SCAP check provided by DISA fails in this case, it passes if permissions are 600 (RW-) for the directory. This needs to be fixed in the SCAP content.

SCAP Security Guide Version:

master as of 2025-02-10

External Content's Version:

v2r3

vojtapolasek avatar Feb 11 '25 10:02 vojtapolasek

This problem has also manifested in daily productization today. current upstream master HEAD as of 2025-02-11 as of https://github.com/ComplianceAsCode/content/commit/8ec16c5e9a9decd56499263e4120e5fa2c494e81

jan-cerny avatar Feb 11 '25 10:02 jan-cerny

This is no longer appearing in our productization tests. Closing.

vojtapolasek avatar Oct 09 '25 08:10 vojtapolasek