content

content copied to clipboard

Updated rules based on template pam_options to support SLE Micro

4

#### Description: - _Some rules based on the template pam_options are updated to support SUSE SLE Micro STIG_ #### Rationale: - The next rules need this update: - cracklib_accounts_password_pam_ucredit -...

rumch-se

Updated packages related to openssh to support slem

4

#### Description: - _Package updated related to openssh to support new product SUSE SLEM_ #### Rationale: - The following packages are updated: - package_openssh-server_installed - service_sshd_enabled

rumch-se

CMP 2196 update ingress operator ciphers

32

The following ciphers are all supported with TLS v1.3, but we weren't checking for them in the OpenShift ingress controller configuration: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 This commit updates...

rhmdnd

Update ansible remediation to harden_sshd_ciphers_openssh_conf_crypto_policy rule

4

#### Description: Updated Ansible remediation Add 'variables' clause and OL9 platform in header of the following tests stig_correct.pass.sh stig_correct_commented.fail.sh stig_correct_followed_by_incorrect_commented.pass.sh stig_empty_file.fail.sh stig_empty_policy.fail.sh stig_incorrect_followed_by_correct_commented.fail.sh stig_incorrect_policy.fail.sh stig_missing_file.fail.sh #### Rationale: In the task...

mrkanon

"User Initialization Files Must Be Owned By the Primary User" failing on some Ubuntu 22.04 LTS

3

#### Description of problem: "User Initialization Files Must Be Owned By the Primary User" failing for no reason on Ubuntu 22.04 LTS. #### SCAP Security Guide Version: 0.1.74 #### Operating...

huornlmj

Audit rule contents are out of date compared to auditd examples

4

#### Description of problem: https://github.com/linux-audit/audit-userspace/commit/614f7d1f4755ec24927b2613c0919110fb7acc37 brought it new changes to the example watcher rules shipped in RHEL RPMs, we should probably update our contents in `linux_os/guide/auditing/**/rule.yml` to match the updated...

comps

Fix rule ubtu 20 010066

12

#### Description: - Fix UBTU-20-010066 - Add Ansible remediation for ubuntu - Fix OVAL Definition to regex check for a semicolon ; (smartcard_configure_crl) Original PR: https://github.com/ComplianceAsCode/content/pull/11078 #### Rationale: - Part...

yunimoo

Add Notes and Controls for BSI SYS.1.6.A5 - A9

4

#### Description: Notes / Rules for BSI APP4.4.A19 Rationale: #### Rationale: As we have multiple customers asking for a BSI profile to be included in the compliance-operator, we are contributing...

sluetze

Add ubuntu ansible remediation for dconf_gnome_banner_enabled

10

#### Description: - The remediation was modified to enable the banner also in `greeter.dconf-defaults` and not only in the dconf database, specifically for Ubuntu products. - This is to be...

yunimoo

Update Ubuntu 20.04 DISA Manual STIG to v1r12

9

#### Description: - This commit will update Ubuntu 20.04 DISA Manual STIG from v1r9 to v1r12. #### Rationale: - Part of Ubuntu 20.04 DISA STIG v1r12 profile upgrade #### Review...

yunimoo