-
Hello,
When hardening Octavia units on Ubuntu to CIS Level 1, the hardening prevents execution on the /tmp directory with the following configuration:
tmpfs /tmp tmpfs defaults,rw,nosuid,nodev,n…
-
After we get our first cut done, I would like to see if we could add support in the treemap to also support the CIS control mappings as well.
Our cis profiles will need some tag standardization bu…
-
### Motivation
In the past we have done some CIS Benchmark tests in order to see how "secure" our platform is compared to that benchmark. In order to get a continuous picture about this benchmark we h…
-
**Describe the bug**
In the security config if you try to disable CIS controls using the syntax specified in the best practice files the control will not be disabled. The "AWS Security Best Practice"…
ghost updated
4 months ago
-
### Describe the bug
Triton OOB performance of 16384x8192x4096 only get ~247 [latest nightly run](https://github.com/intel/intel-xpu-backend-for-triton/actions/runs/11882989210/job/33109154713#step:1…
-
Wazuh currently breaks the rules defined in CIS recommendations, and can't achieve a perfect score when installed normally.
CIS requires /var to be its own partition, set to noexec, while wazuh w…
-
Hi there,
less of a feature request and more of a question - or, at most, a documentation request.
I am trying to understand whether or why _stratified_ bootstrapping is a valid method to obtain…
-
Their benchmarks tend to be rather distro-specific, so their particular tests won't work on NixOS, but many of their higher-level guidelines can still apply if you step back a bit.
It would be nice t…
-
A test failed on a tracked branch
```
TimeoutError: Waiting for element to be located By(css selector, [data-test-subj="confirmCloudFormationModalConfirmButton"])
Wait timed out after 104037ms
at…
-
We're currently deploying the plain [MetalLB / ECO charts](https://github.com/suse-edge/edge-image-builder/blob/main/pkg/combustion/helm.go#L25) when a virtual IP address is specified. This is not wor…