ANSSI BP28 - R28 Misalignments in RHEL 9 Profile - Githubissues

ComplianceAsCode / content

Security automation content in SCAP, Bash, Ansible, and other formats

https://complianceascode.readthedocs.io/en/latest/

Other

2.17k stars 685 forks source link

ANSSI BP28 - R28 Misalignments in RHEL 9 Profile #12289

Open jlemangarin opened 1 month ago

jlemangarin commented 1 month ago

Description of problem:

ANSSI BP28 - R28 Misalignments in RHEL 9 Profile

Details:

This content is not aligned with content from CONFIGURATION RECOMMENDATIONS OF A GNU/LINUX SYSTEM

The misalignment affects these profiles:

anssi_bp28_intermediary
anssi_bp28_enhanced
anssi_bp28_high

There are partitioning checks exclusions that shouldn't be excluded :

partition_for_opt
partition_for_boot
partition_for_usr

There are partitioning checks that should be excluded :

partition_for_var_log_audit

There are partitioning checks that should be created and included :

partition_for_proc

Outcome:

[ ] This project's content can be improved:
[x] Check needs to be improved.
[ ] Remediation needs to be improved.
[ ] The external content's check is faulty - the other party needs to be notified, they have work to do.

SCAP Security Guide Version:

0.1.75 - Guide to the Secure Configuration of Red Hat Enterprise Linux 9

External Content's Version:

2 - CONFIGURATION RECOMMENDATIONS OF A GNU/LINUX SYSTEM

marcusburghardt commented 1 week ago

Probably related PR: https://github.com/ComplianceAsCode/content/pull/12351