content

content copied to clipboard

RHEL 10 HIPAA Profile Updates

3

#### Description: * Update RHEL 10 HIPAA Profile * Add variables to HIPAA control file #### Rationale: RHEL 10 is coming. #### Review Hints: ``` ./build_product rhel10 cd tests ./ds_unselect_rules.sh...

Mab879

Proposed solution for RHEL8 and RHEL9 in system detection to avoid false positives

6

#### Description: Updated installed_OS_is_rhel9 installed_OS_is_rhel8 #### Rationale: We have a false positive from RHEL9 to OL9, we also have a false positive from RHEL8 to OL8, this is because OL9...

mrkanon

OCPBUGS-304: exclude rhacs-operator namespace from resource limit rules

12

Added three new variables to be able to exclude namespaces: `var_daemonset_limit_namespaces_exempt_regex` for rule `resource_requests_limits_in_daemonset` `var_deployment_limit_namespaces_exempt_regex` for rule `resource_requests_limits_in_deployment` `var_statefulset_limit_namespaces_exempt_regex` for rule `resource_requests_limits_in_statefulset` `rhacs-operator` namespace has also been excluded by default....

Vincent056

Add Ism profile to OL9

3

#### Description: - Add ISM profile for OL9 - Update ism_o control with rules already present in RHEL9 #### Rationale: - OL9 didn't have this profile

Xeicker

Add ocp4 pci dss references

10

#### Description: - Removes `ocp4` rule from `pcidss_4.yml`. Rule `audit_profile_set` is an OCP4, and it was breaking auto referencing in `pcidss_4_ocp4.yml` - Adds auto referencing to `pcidss_4_ocp4.yml`. - Add capability...

yuumasato

Add OCP STIG V2R1 profiles

4

#### Description: - Add new profiles for OCP4 STIG V2R1. - Note: Aiming for a better alignment with the STIG Benchmark rules from `SRG-APP-000516-CTR-001325` are not selected anymore. - Update...

yuumasato

Update of the rule encrypt_partitions to support SLEM

4

#### Description: - _Update of the rule encrypt_partitions _ #### Rationale: - The update is necessary, because DISA STIG has specific requirements for SUSE SLE Micro product

rumch-se

Updated 6 rules 2 for sle micro

5

#### Description: - _The PR includes updates of 6 rules to support new SUSE product sle micro according to DISA STIG_ #### Rationale: - The list of the rules is...

rumch-se

Updated rules based on template service_disabled to support slem

4

#### Description: - _Updated rules based on service_disabled template to support new product SUSE SLEM_ #### Rationale: - The following rules are updated - service_autofs_disabled - service_kdump_disabled

rumch-se

Slmicro5 stig add accounts and permissions rules support

4

#### Description: - _Add accounts and permissions rules to SLE Micro 5 STIG profile_ #### Rationale: - _According to DISA SLE Micro 5 STIG Version 1, Release: 1 Benchmark Date:...

svet-se