Issued at: 2024-09-17
Updated at: 2024-09-17
Synopsis
scap-security-guide bug fix and enhancement update
Description
The scap-security-guide project provides a guide for configuration of the system from the final system's security point of view. The guidance is specified in the Security Content Automation Protocol (SCAP) format and constitutes a catalog of practical hardening advice, linked to government requirements where applicable. The project bridges the gap between generalized policy requirements and specific implementation guidelines.
Bug Fix(es) and Enhancement(s):
* [Rocky Linux8.7/SCAP/Rsyslog] Rainier syntax not valid for cron and netstreamdriver parameters (JIRA:Rocky Linux-1816)
* CIS Server Level 1 installation can be started with "Server with GUI" (JIRA:Rocky Linux-23852)
* Journald is not configured correctly after openscap remediation profile CIS Server Level 1 is applied (JIRA:Rocky Linux-38531)
* Authselect rules hardening wipes already active features (JIRA:Rocky Linux-39383)
* ANSSI-BP-028 (intermediary) breaks password changes (JIRA:Rocky Linux-44983)
* CIS Rocky Linux 9 Benchmark for Level 2 scan fails on "Ensure all users last password change date is in the past" rule (JIRA:Rocky Linux-47129)
* Rebase scap-security-guide to the 0.1.74 version (JIRA:Rocky Linux-53865)
* Rebase scap-security-guide to the 0.1.74 version [rhel-8.10.z] (JIRA:Rocky Linux-53913)
* ANSSI-BP-028 (intermediary) breaks password changes [rhel-8.10.z] (JIRA:Rocky Linux-54390)