Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RHEL10 ISM O - Rules missing ism reference #12430

Open
mildas opened this issue Sep 26, 2024 · 2 comments
Open

RHEL10 ISM O - Rules missing ism reference #12430

mildas opened this issue Sep 26, 2024 · 2 comments
Labels
RHEL10 Red Hat Enterprise Linux 10 product related.

Comments

@mildas
Copy link
Contributor

mildas commented Sep 26, 2024

Description of problem:

A lot of ISM O rules doesn't have ism reference. The list of affected rules:

  • audit_rules_login_events_tallylog
  • sshd_disable_x11_forwarding
  • service_fapolicyd_enabled
  • service_telnet_disabled
  • sshd_set_loglevel_info
  • dir_perms_world_writable_sticky_bits
  • audit_rules_login_events
  • auditd_data_retention_flush
  • sshd_do_not_permit_user_env
  • audit_rules_execution_setsebool
  • rpm_verify_hashes
  • package_quagga_removed
  • selinux_policytype
  • network_sniffer_disabled
  • accounts_no_uid_except_zero
  • sshd_disable_root_login
  • audit_rules_time_clock_settime
  • sshd_disable_rhosts
  • configure_ssh_crypto_policy
  • audit_rules_time_settimeofday
  • audit_rules_execution_setfiles
  • audit_rules_login_events_lastlog
  • file_permissions_sshd_private_key
  • package_squid_removed
  • service_rsyslog_enabled
  • sudo_remove_nopasswd
  • audit_rules_time_stime
  • dnf-automatic_security_updates_only
  • sysctl_kernel_exec_shield
  • audit_rules_dac_modification_chown
  • audit_rules_time_watch_localtime
  • auditd_write_logs
  • file_permissions_unauthorized_world_writable
  • file_ownership_library_dirs
  • audit_rules_execution_semanage
  • sudo_require_authentication
  • sshd_enable_warning_banner
  • auditd_freq
  • service_avahi-daemon_disabled
  • audit_rules_execution_restorecon
  • sysctl_kernel_yama_ptrace_scope
  • sysctl_kernel_unprivileged_bpf_disabled
  • audit_rules_dac_modification_chmod
  • service_auditd_enabled
  • file_permissions_library_dirs
  • mount_option_dev_shm_noexec
  • sysctl_kernel_kexec_load_disabled
  • mount_option_dev_shm_nodev
  • mount_option_dev_shm_nosuid
  • file_ownership_binary_dirs
  • ensure_gpgcheck_globally_activated
  • sysctl_kernel_randomize_va_space
  • package_fapolicyd_installed
  • file_permissions_binary_dirs
  • audit_rules_sysadmin_actions
  • audit_rules_execution_chcon
  • sudo_remove_no_authenticate
  • no_empty_passwords
  • file_permissions_unauthorized_suid
  • audit_rules_networkconfig_modification
  • sshd_print_last_log
  • enable_authselect
  • sysctl_kernel_dmesg_restrict
  • service_squid_disabled
  • selinux_state
  • sshd_disable_user_known_hosts
  • package_rsyslog_installed
  • file_permissions_unauthorized_sgid
  • package_rear_installed
  • sshd_disable_empty_passwords
  • sysctl_kernel_kptr_restrict
  • auditd_name_format
  • audit_rules_kernel_module_loading
  • package_telnet-server_removed
  • service_firewalld_enabled
  • package_telnet_removed
  • sshd_enable_strictmodes
  • ensure_gpgcheck_local_packages
  • package_firewalld_installed
  • audit_rules_login_events_faillock
  • audit_rules_time_adjtimex
  • audit_rules_execution_seunshare
  • auditd_local_events
  • sshd_use_directory_configuration
  • ensure_gpgcheck_never_disabled
  • ensure_redhat_gpgkey_installed
  • auditd_log_format
  • sysctl_net_core_bpf_jit_harden

SCAP Security Guide Version:

master

Operating System Version:

RHEL 10
@mildas mildas added the RHEL10 Red Hat Enterprise Linux 10 product related. label Sep 26, 2024
@Mab879
Copy link
Member

Mab879 commented Sep 30, 2024

With this many missing should move to using the control generated references for ISM?

@mildas
Copy link
Contributor Author

mildas commented Oct 1, 2024

Yes, that would be best to have it in controls file

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
RHEL10 Red Hat Enterprise Linux 10 product related.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Mab879 @mildas