From d6847723e76bcaeabd089912588176e792aae194 Mon Sep 17 00:00:00 2001
From: "YuQing.Yang" <yangyuqing6@qq.com>
Date: Tue, 19 Dec 2023 16:43:03 +0800
Subject: [PATCH] Add alinux2/alinux3 support for pci-dss compliance.

Signed-off-by: YuQing.Yang <yangyuqing6@qq.com>
Signed-off-by: YiLin.Li <YiLin.Li@linux.alibaba.com>
---
 products/alinux2/profiles/pci-dss.profile | 27 ++++++++++++++++++
 products/alinux3/profiles/pci-dss.profile | 34 +++++++++++++++++++++++
 2 files changed, 61 insertions(+)
 create mode 100644 products/alinux2/profiles/pci-dss.profile
 create mode 100644 products/alinux3/profiles/pci-dss.profile

diff --git a/products/alinux2/profiles/pci-dss.profile b/products/alinux2/profiles/pci-dss.profile
new file mode 100644
index 000000000000..81c3ac252c5c
--- /dev/null
+++ b/products/alinux2/profiles/pci-dss.profile
@@ -0,0 +1,27 @@
+documentation_complete: true
+
+metadata:
+    version: '4.0'
+    SMEs:
+        - YiLin.Li
+        - YuQing.Yang
+
+reference: https://docs-prv.pcisecuritystandards.org/PCI%20DSS/Standard/PCI-DSS-v4_0.pdf
+
+title: 'PCI-DSS v4.0 Control Baseline for Alibaba Cloud Linux 2'
+
+description: |-
+    Payment Card Industry - Data Security Standard (PCI-DSS) is a set of
+    security standards designed to ensure the secure handling of payment card
+    data, with the goal of preventing data breaches and protecting sensitive
+    financial information.
+
+selections:
+    - pcidss_4:all
+    - '!rpm_verify_permissions'
+    - '!package_audit-audispd-plugins_installed'
+    - '!service_ntp_enabled'
+    - '!set_ipv6_loopback_traffic'
+    - '!set_loopback_traffic'
+    - '!timer_logrotate_enabled'
+    - '!ensure_redhat_gpgkey_installed'
\ No newline at end of file
diff --git a/products/alinux3/profiles/pci-dss.profile b/products/alinux3/profiles/pci-dss.profile
new file mode 100644
index 000000000000..a5b2d425aa06
--- /dev/null
+++ b/products/alinux3/profiles/pci-dss.profile
@@ -0,0 +1,34 @@
+documentation_complete: true
+
+metadata:
+    version: '4.0'
+    SMEs:
+        - YiLin.Li
+        - YuQing.Yang
+
+reference: https://docs-prv.pcisecuritystandards.org/PCI%20DSS/Standard/PCI-DSS-v4_0.pdf
+
+title: 'PCI-DSS v4.0 Control Baseline for Alibaba Cloud Linux 3'
+
+description: |-
+    Payment Card Industry - Data Security Standard (PCI-DSS) is a set of
+    security standards designed to ensure the secure handling of payment card
+    data, with the goal of preventing data breaches and protecting sensitive
+    financial information.
+
+selections:
+    - pcidss_4:all
+    - '!rpm_verify_permissions'
+    - '!package_audit-audispd-plugins_installed'
+    - '!service_ntp_enabled'
+    - '!ntpd_specify_remote_server'
+    - '!ntpd_specify_multiple_servers'
+    - '!set_ipv6_loopback_traffic'
+    - '!set_loopback_traffic'
+    - '!service_ntpd_enabled'
+    - '!timer_logrotate_enabled'
+    - '!package_talk_removed'
+    - '!package_talk-server_removed'
+    - '!package_rsh_removed'
+    - '!package_rsh-server_removed'
+    - '!ensure_redhat_gpgkey_installed'