Open comps opened 1 year ago
This is an issue with DISA's SCAP that has been reported to them already.
The test needs to have its check_existence
changed to any_exist
, as it is failing if there is no user with UID >= 1000.
And, a colon needs to be added to avoid matching a substring of another user.
Example, adm
and admin
users.
This was first noted on disa-stig-rhel8-v1r5-xccdf-scap.xml
and as of disa-stig-rhel8-v1r8-xccdf-scap.xml
, has not been fixed yet.
This issue still exists in disa-stig-rhel8-v1r10-xccdf-scap.xml
.
Description of problem:
disa-content-alignment-remediations Ansible
disa-content-alignment-remediations Ansible (GUI)
disa-content-alignment-remediations Bash
disa-content-alignment-remediations Bash (GUI)
fail with
SCAP Security Guide Version:
master as of 2023-01-16
Operating System Version:
RHEL-8.8
Steps to Reproduce:
compare_results.py ssg-stig-viewer.xml disa-xccdf-arf-results.xml