Adds EL9 hardening-content per Issue 496

plus3it / ash-linux-formula

Automated System Hardening (ash-linux) is a Salt formula to apply SCAP benchmarks to Linux systems

Other

18 stars 14 forks source link

Adds EL9 hardening-content per Issue 496 #506

Closed ferricoxide closed 3 months ago

ferricoxide commented 5 months ago

Adds EL9 hardening-content per Issue #496

ferricoxide commented 5 months ago

Ok, I think we're to the point – at least with CaC content – where we're hardened-up such that the rest of the stuff needs to be a watchmaker FAQ: All of these are either "can't do this without breaking functionality", "can't do this for a global tool: you need to do this as a site-local modification" or "the scan-tests are not valid"

ferricoxide commented 5 months ago

I think the failing tests are because of CentOS Stream 8's discontinuance?

At any rate, this takes care of the technically-implementable remediations of oscap-identified findings (beyond what's mentioned in my prior comment). I'll do the scc content in a futher PR.

ferricoxide commented 5 months ago

w00t! Review, plz, @plus3it/watchmaker!

ferricoxide commented 5 months ago

@plus3it/watchmaker:

Bump.