Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update SRG-OS-000033-GPOS-00014 for RHEL 9 STIG #8682

Merged
merged 4 commits into from
May 3, 2022
Merged

Update SRG-OS-000033-GPOS-00014 for RHEL 9 STIG #8682

merged 4 commits into from
May 3, 2022

Conversation

jan-cerny
Copy link
Collaborator

Description:

Add fixtext, set variables explicitly.

Other rules are already updated in master.
The rule harden_ssh_client_crypto_policy will be changed by PR https://github.com/ComplianceAsCode/content/pull/8639/files.

Rationale:

RHEL 9 STIG

@jan-cerny
Add a fixtext to sshd_rekey_limit
ac756de
@jan-cerny
Set variables
d71f865 
These variables are used by rules ssh_client_rekey_limit and
sshd_rekey_limit.
@jan-cerny
Add a fixtext to configure_libreswan_crypto_policy
7d9fe99
@jan-cerny jan-cerny added RHEL9 Red Hat Enterprise Linux 9 product related. DISA RHEL9 STIG Alignment labels May 3, 2022
@jan-cerny jan-cerny added this to the 0.1.62 milestone May 3, 2022
@github-actions
Copy link

github-actions bot commented May 3, 2022

Start a new ephemeral environment with changes proposed in this pull request:

Open in Gitpod

jan-cerny added a commit to jan-cerny/scap-security-guide that referenced this pull request May 3, 2022
@jan-cerny
Fix variable substitution in SRG export
2e4cb4f 
There was a bug: If there were multiple different vairables used
in OCIL or fixtext, all were expanded to a value of the first
variable instead of the correct variable. Visible ie. in PR
ComplianceAsCode#8682 in rule
ssh_client_rekey_limit.
@jan-cerny jan-cerny mentioned this pull request May 3, 2022
Merged
@jan-cerny
Copy link
Collaborator Author

/retest

@openshift-ci
Copy link

openshift-ci bot commented May 3, 2022

@jan-cerny: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
ci/prow/e2e-aws-rhcos4-e8 eba776e link true /test e2e-aws-rhcos4-e8
ci/prow/e2e-aws-rhcos4-moderate eba776e link true /test e2e-aws-rhcos4-moderate
ci/prow/e2e-aws-rhcos4-high eba776e link true /test e2e-aws-rhcos4-high

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

@Mab879 Mab879 self-assigned this May 3, 2022
@Mab879 Mab879 merged commit 5cfde35 into ComplianceAsCode:master May 3, 2022
yuumasato pushed a commit to yuumasato/scap-security-guide that referenced this pull request May 4, 2022
@jan-cerny @yuumasato
Fix variable substitution in SRG export
e550ec5 
There was a bug: If there were multiple different vairables used
in OCIL or fixtext, all were expanded to a value of the first
variable instead of the correct variable. Visible ie. in PR
ComplianceAsCode#8682 in rule
ssh_client_rekey_limit.
lonicerae pushed a commit to lonicerae/content that referenced this pull request May 18, 2022
@jan-cerny @lonicerae
Fix variable substitution in SRG export
2096d7f 
There was a bug: If there were multiple different vairables used
in OCIL or fixtext, all were expanded to a value of the first
variable instead of the correct variable. Visible ie. in PR
ComplianceAsCode#8682 in rule
ssh_client_rekey_limit.
Vincent056 pushed a commit to Vincent056/cac-content-fork that referenced this pull request May 24, 2022
@jan-cerny @Vincent056
Fix variable substitution in SRG export
d62f9f3 
There was a bug: If there were multiple different vairables used
in OCIL or fixtext, all were expanded to a value of the first
variable instead of the correct variable. Visible ie. in PR
ComplianceAsCode#8682 in rule
ssh_client_rekey_limit.
@marcusburghardt marcusburghardt added the STIG STIG Benchmark related. label Jun 23, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Mab879 Mab879 Mab879 approved these changes

Assignees

@Mab879 Mab879

Labels
RHEL9 Red Hat Enterprise Linux 9 product related. STIG STIG Benchmark related.
Projects
None yet
Milestone
0.1.62
Development

Successfully merging this pull request may close these issues.
3 participants
@jan-cerny @Mab879 @marcusburghardt