scap-security-guide-0.1.66-2.el8.ML.1
エラータID: AXBA:2023-5198:02
The scap-security-guide project provides a guide for configuration of the system from the final system's security point of view. The guidance is specified in the
Security Content Automation Protocol (SCAP) format and constitutes a catalog of practical hardening advice, linked to government requirements where applicable.
The project bridges the gap between generalized policy requirements and specific implementation guidelines.
Bug Fix(es) and Enhancement(s):
* [SCAP] PCI-DSS Rsyslog log files related rules fails for Rsyslog 8 RainerScript syntax
* DISA STIG: SCAP kerberos related findings after realm join
* file_permissions_sshd_private_key is not aligned with DISA STIG benchmark
* audit_rules_usergroup_modification_shadow don't remediate existing audit rule
* Rules concerning audit check for content of specific files, and not /etc/audit/audit.rules ( ex xccdf_org.ssgproject.content_rule_audit_immutable_login_uids)
* The stig rule xccdf_org.ssgproject.content_rule_sudo_require_reauthentication fails due to space in in the "timestamp_timeout" value
* Some rules have proper STIG references but they are not part of STIG profile
* Two CIS Level 2 Benchmarks are listed in scap-security-guide under CIS Level 1 Profile
* Update ML8 DISA STIG profile to V1R9
* Rebase SSG to the latest upstream version in ML 8.6 Update
Update packages.
N/A
SRPMS
- scap-security-guide-0.1.66-2.el8.ML.1.src.rpm
MD5: 2b631ebc02b551d2ed8821404d35baad
SHA-256: ccdb14bd06f976a206f1eb7fc4e125239102b4f7b5007e885344eaf36597140a
Size: 12.22 MB
Asianux Server 8 for x86_64
- scap-security-guide-0.1.66-2.el8.ML.1.noarch.rpm
MD5: 6b287c82ebc97fe5c8a99ecf53ab9d69
SHA-256: 4142a6000c02fc2a465277c776f464519ebdb39aba6526e30b3768b85d5d78de
Size: 2.90 MB - scap-security-guide-doc-0.1.66-2.el8.ML.1.noarch.rpm
MD5: 80d5e221b2404f8a9f837d5f6fe96609
SHA-256: 40d66a40afda0a9178b0ad0100601d625b4bcc39e6b7fbff261ff91f208c0951
Size: 3.05 MB