-
Hi OVH,
Thank you soo much for this repo and your work! We need to harden down Debian an as there are no STIGs this repo is one of my main resources. We prefer CIS anyway. Also openscap has not man…
-
[Building STIG-compliant amis for EKS](https://aws.amazon.com/blogs/containers/building-stig-compliant-amis-for-amazon-eks/)
- Consider using [Amazon Linux 2 CIS STIG](https://www.cisecurity.org/cis-…
-
[Hi there, is there any way to see if these settings marry with CIS controls?]
---
#### Document Details
⚠ *Do not edit this section. It is required for learn.microsoft.com ➟ GitHub issue l…
-
**Describe the Issue**
The rule gets a "FAIL" result from CIS.
**Expected Behavior**
The task from this rule needs to make sure that the following files: `/etc/login.defs`, `/etc/profile` and `/…
-
**Describe the Issue**
Wrong implementation of the settings required by CIS
**Expected Behavior**
CIS clearly states in its assessments that for this rule ("Ensure password reuse is limited") th…
-
#### Description of problem:
Check for rule `xccdf_org.ssgproject.content_rule_no_shelllogin_for_systemaccounts` always fail.
#### SCAP Security Guide Version:
master branch
#### Operating…
-
Hi,
According to the [following doc](https://learn.microsoft.com/en-us/azure/aks/cis-kubernetes), AKS worker nodes are compliant with the `Ensure that the RotateKubeletServerCertificate argument is s…
-
## Feature Request
BLUF: Support for kata containers (qemu and firecracker vm varents), as default or configurable runtime class.
Ideally in a way that can support nested virtualization. (Example: t…
-
We have a lot of great reference docs, which is good if you know exactly what you are looking for, but it would be good to also have more concept and narrative types of docs that are great for learnin…
-
Provide some guarantees, guidelines and a process keeping out of tree users operational while the zephyr project code advances with new technologies, code cleanups and other major code and API changes…