stig-fix-1.7.9-el6.noarch.rpm

[lmeinecke]

I just ran this version on a fresh RHEL6 system and first thing I noticed was the banner in gnome was messed up. It's the same way for ssh. Looks like the /opt/stig-fix/config/issue file is stock and doesn't have the DoD banner.

Also when doing an rpm -e on stig-fix I noticed it gives an error but does erase the files in /opt/stig-fix. The banner in gnome still seemed to be a little off.

I downloaded 1.7.8 and then ran that against the system. It seems to apply the correct files.

I don't have 1.7.9 running anymore but I think the krb5.conf file wasn't correct either. I noticed the encryption lines weren't there for some reason.

Has anyone else run the 1.7.9 rpm?

[fcaviggia]

I've tested the script several times when installing systems using the stig-fix-el6-kickstart - I'll try to test it some more this weekend.

[lmeinecke]

I just applied this to a fresh RHEL6.6 workstation install and noticed that /etc/pam.d/system-auth-local is not 644. This causes the gnome lock screen to flicker when it sees input from keyboard/mouse and become unresponsive.

[lmeinecke]

This was my second test of this RPM and the issue, krb5.conf , and login.defs aren't correct. Perhaps this release should be pulled? It's not working properly like the others.

[fcaviggia]

Sorry for the delayed response, I'll check it again tonight.