-
Notifications
You must be signed in to change notification settings - Fork 684
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Sle15 cis #5807
Sle15 cis #5807
Conversation
Hi @eradot4027. Thanks for your PR. I'm waiting for a ComplianceAsCode member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Commented out missing checks. Should compile now. I apologize |
Changes identified: Recommended tests to execute: |
Changes look good to me, but I haven't verified the alignment with SLE15 CIS. |
I have been working on this completely by myself and referencing the CIS Workbench STIG. I can see if I can get someone else to review. Seems like most people don't use SUSE. |
@eradot4027 We don't need to block this PR waiting for review on the alignment. |
I plan on using it in production so I am being meticulous as possible to ensure it is correct. Thanks again for allowing me to contribute to your project |
The reference to the CIS SLE benchmark is not correct. As far as I could track in history those references were added in PR ComplianceAsCode#5807, where the author stated that he has no access to enterprise linux benchmarks and used the distribution independant benchmark, in which context the references are more or less valid. BTW the rhel7 reference also looks incorrect to me, but if did not want to change it without feedback from RedHat's team member.
Description:
-Updated CIS profile is SLE15 to reflect changes in the profile
Rationale:
For evaluating systems with an up to date profile
None