Closed abenson closed 10 years ago
Example:
<ReportItem port="0" svc_name="general" protocol="tcp" severity="3" pluginID="21156" pluginName="Windows Compliance Checks" pluginFamily="Policy Compliance"> <compliance>true</compliance> <fname>compliance_check.nbin</fname> <plugin_modification_date>2014/02/26</plugin_modification_date> <plugin_name>Windows Compliance Checks</plugin_name> <plugin_publication_date>2007/11/21</plugin_publication_date> <plugin_type>local</plugin_type> <risk_factor>None</risk_factor> <script_version>$Revision: 1.78 $</script_version> <cm:compliance-result>FAILED</cm:compliance-result> <cm:compliance-actual-value> administrators: + Apply To: "this key only" |- Inheritance: "not inherited" |- Allow: "create link" | "create subkey" | "delete" | "enumerate subkeys" | "full control" | "notify" | "query value" | "read control" | "set value" | "write dac" | "write owner" + Apply To: "subkeys only" |- Inheritance: "inherited" |- Allow: "create link" | "create subkey" | "delete" | "enumerate subkeys" | "full control" | "notify" | "query value" | "read control" | "set value" | "write dac" | "write owner" </cm:compliance-actual-value> <cm:compliance-check-id>29b1d814ca87d4b558edc8059ccaeb98</cm:compliance-check-id> <cm:compliance-policy-value> administrators: + Apply To: "this key and subkeys" |- Inheritance: "not inherited" |- Allow: "full control" </cm:compliance-policy-value> <cm:compliance-audit-file>FSOWIN7_Analyze_only_v2.audit</cm:compliance-audit-file> <cm:compliance-check-name>HKLM\system\currentcontrolset\control\securepipeservers\winreg REGISTRY_PERMISSIONS audit</cm:compliance-check-name> <description>"HKLM\system\currentcontrolset\control\securepipeservers\winreg REGISTRY_PERMISSIONS audit": [FAILED] Remote value: administrators: + Apply To: "this key only" |- Inheritance: "not inherited" |- Allow: "create link" | "create subkey" | "delete" | "enumerate subkeys" | "full control" | "notify" | "query value" | "read control" | "set value" | "write dac" | "write owner" + Apply To: "subkeys only" |- Inheritance: "inherited" |- Allow: "create link" | "create subkey" | "delete" | "enumerate subkeys" | "full control" | "notify" | "query value" | "read control" | "set value" | "write dac" | "write owner" Policy value: administrators: + Apply To: "this key and subkeys" |- Inheritance: "not inherited" |- Allow: "full control" </description> </ReportItem>
Generated using ACAS audit files. Edited to protect the guilty.
This is fixed in 1.7.0-dev on my local box. It will be in the dev branch this evening.
Example:
Generated using ACAS audit files. Edited to protect the guilty.