scap-security-guide-0.1.66-2.el8.ML.1

The scap-security-guide project provides a guide for configuration of the system from the final system's security point of view. The guidance is specified in the
Security Content Automation Protocol (SCAP) format and constitutes a catalog of practical hardening advice, linked to government requirements where applicable.
The project bridges the gap between generalized policy requirements and specific implementation guidelines.

Bug Fix(es) and Enhancement(s):

* [SCAP] PCI-DSS Rsyslog log files related rules fails for Rsyslog 8 RainerScript syntax
* DISA STIG: SCAP kerberos related findings after realm join
* file_permissions_sshd_private_key is not aligned with DISA STIG benchmark
* audit_rules_usergroup_modification_shadow don't remediate existing audit rule
* Rules concerning audit check for content of specific files, and not /etc/audit/audit.rules ( ex xccdf_org.ssgproject.content_rule_audit_immutable_login_uids)
* The stig rule xccdf_org.ssgproject.content_rule_sudo_require_reauthentication fails due to space in in the "timestamp_timeout" value
* Some rules have proper STIG references but they are not part of STIG profile
* Two CIS Level 2 Benchmarks are listed in scap-security-guide under CIS Level 1 Profile
* Update ML8 DISA STIG profile to V1R9
* Rebase SSG to the latest upstream version in ML 8.6 Update