-
Greetings,
It seems like there may be a few copy/paste mistakes in this file:
https://github.com/ansible-lockdown/RHEL8-CIS/blob/a4d11fafbdb6e1c7c7292013636d69c4f13d0e0c/tasks/section_2/cis_2.2.x.ym…
-
#### Description of Problem:
When i use "--fetch-remote-resources" option, at the end the process is killed
#### OpenSCAP Version:
jumpgm:~ # oscap -V
OpenSCAP command line tool (oscap) 1.3…
-
|Wazuh version| Component | Action type |
|---| --- | --- |
| 4.2.5 | SCA| Improve |
## Description
Hello, I need to improve SCA policy to ignore some rule on CIS policy
the reason is i n…
-
Good afternoon!
For various reasons, we (and I'm sure we're not alone in this) would need "officially" maintained RPM sources of LinOTP upstream in order to properly use it. Even though I can succe…
-
**Describe the error**
I carry out testing as described in this repository:
https://github.com/ansible-lockdown/RHEL8-CIS-Audit
When using version 0.3.23, the report turns out good:
"expected…
-
The XCCDF specification should require that identifiers stay valid for the complete lifetime of a rule and
must not depend on chapter-section-subsection structures which are bound to change from revi…
-
An idea by @mildas - we could significantly reduce our testing matrix if we tested only
* `anssi_bp28_enhanced`
* instead of all of `enhanced` , `high` , `intermediary` , `minimal`
* `ccn_advance…
comps updated
3 months ago
-
**Describe the Issue**
The regex in the task "2.1.2 Ensure chrony is configured | modify /etc/sysconfig/chronyd" is supposed to add the parameter "-u chrony" and keep all other parameters. But the ta…
-
# Description
Testing the 4.8.1 -> 4.9.0 AIX upgrade, I found a possible error in the ossec.conf file generated, as it is duplicating the `ca_store` tag of the `active_response` block
The rpmnew…
-
**Describe the Issue**
The hardening guide requires to disable X11 forwarding unless there is an operational requirement. The [task 5.2.12](https://github.com/ansible-lockdown/RHEL8-CIS/blob/bc4cdf88…