content icon indicating copy to clipboard operation
content copied to clipboard

Published 20 hours ago verified publisher icon ComplianceAsCode

RHEL 8 CIS 3.4.4.1.5 Ensure iptables is enabled and active (Automated)

Open alexhaydock opened this issue 4 years ago • 4 comments

Needs rule.

alexhaydock avatar Jul 02 '21 10:07 alexhaydock

Hi @yuumasato - can we add this to the "CIS for RHEL 8" project please? Thanks!

alexhaydock avatar Jul 05 '21 13:07 alexhaydock

There is a rule: service_iptables_enabled

marcusburghardt avatar Jul 14 '22 20:07 marcusburghardt

Shouldn't this be added to the controls file before we can mark it as resolved?

https://github.com/ComplianceAsCode/content/blob/44c76e17547956494e4426d22801e67bd20d21d2/controls/cis_rhel8.yml#L1128-L1135

I think it needs to stay as non-automated, since otherwise it will conflict with control 3.4.2.1 and 3.4.2.2 which relate to firewalld.

alexhaydock avatar Jul 14 '22 20:07 alexhaydock

Hi @alexhaydock , I just sent a PR (https://github.com/ComplianceAsCode/content/pull/9154) to update the CIS RHEL8 to v2.0.0. The requirements were updated or reordered to keep alignment to v2.0.0. The next step would be to review the gaps and treat them. I saw you are providing great contributions to the CIS related rules. You are more than welcome to contribute reviewing the CIS RHEL8 coverage after this update.

marcusburghardt avatar Jul 15 '22 10:07 marcusburghardt

#9154 is merged.

marcusburghardt avatar Sep 06 '22 15:09 marcusburghardt