Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

scap-security-guide-0.1.63-5.el9 RPM for noarch

From CentOS Stream 9 AppStream for ppc64le

Name: scap-security-guide Distribution: CentOS
Version: 0.1.63 Vendor: CentOS
Release: 5.el9 Build date: Thu Aug 25 18:49:53 2022
Group: Unspecified Build host: x86-04.stream.rdu2.redhat.com
Size: 63153623 Source RPM: scap-security-guide-0.1.63-5.el9.src.rpm
Packager: builder@centos.org
Url: https://github.com/ComplianceAsCode/content/
Summary: Security guidance and baselines in SCAP formats
 
The scap-security-guide project provides a guide for configuration of the
system from the final system's security point of view. The guidance is specified
in the Security Content Automation Protocol (SCAP) format and constitutes
a catalog of practical hardening advice, linked to government requirements
where applicable. The project bridges the gap between generalized policy
requirements and specific implementation guidelines. The system
administrator can use the oscap CLI tool from openscap-scanner package, or the
scap-workbench GUI tool from scap-workbench package to verify that the system
conforms to provided guideline. Refer to scap-security-guide(8) manual page for
further information.

Provides

Requires

License

BSD-3-Clause

Changelog

* Thu Aug 25 2022 Gabriel Becker <ggasparb@redhat.com> - 0.1.63-5
  - OSPP: fix rule related to coredump (RHBZ#2081688)
* Tue Aug 23 2022 Vojtech Polasek <vpolasek@redhat.com> - 0.1.63-4
  - use sysctl_kernel_core_pattern rule again in RHEL9 OSPP (RHBZ#2081688)
* Thu Aug 11 2022 Matej Tyc <matyc@redhat.com> - 0.1.63-3
  - Readd rules to the benchmark to be compatible across all minor versions of RHEL9 (RHBZ#2117669)
* Wed Aug 10 2022 Vojtech Polasek <vpolasek@redhat.com> - 0.1.63-2
  - OSPP: utilize different audit rule set for different hardware platforms (RHBZ#1998583)
  - OSPP: update rules related to coredumps (RHBZ#2081688)
  - OSPP: update rules related to BPF (RHBZ#2081728)
  - fix description of require_singleuser_mode (RHBZ#2092799)
  - fix remediation of OpenSSL cryptopolicy (RHBZ#2108569)
  - OSPP: use minimal Authselect profile(RHBZ#2114979)
* Mon Aug 01 2022 Vojtech Polasek <vpolasek@redhat.com> - 0.1.63-1
  - Rebase to a new upstream release 0.1.63 (RHBZ#2070563)
* Mon Jul 18 2022 Vojtech Polasek <vpolasek@redhat.com> - 0.1.62-2
  - Remove sysctl_fs_protected_* rules from RHEL9 OSPP (RHBZ#2081719)
  - Make rule audit_access_success_ unenforcing in RHEL9 OSPP (RHBZ#2058154)
  - Drop zipl_vsyscall_argument rule from RHEL9 OSPP profile (RHBZ#2060049)
  - make sysctl_user_max_user_namespaces in RHEL9 OSPP (RHBZ#2083716)
  - Remove some sysctl rules  related to network from RHEL9 OSPP (RHBZ#2081708)
  - Add rule to check if Grub2 recovery is disabled to RHEL9 OSPP (RHBZ#2092809)
  - Add rule grub2_systemd_debug-shell_argument_absent (RHBZ#2092840)
  - Remove rule accounts_password_minlen_login_defs from all profiles (RHBZ#2073040)
  - Remove rules related to remove logging from RHEL9 OSPP (RHBZ#2105016)
  - Remove sshd_enable_strictmodes from OSPP (RHBZ#2105278)
  - Remove rules related to NIS services (RHBZ#2096602)
  - Make rule stricter when checking for FIPS crypto-policies (RHBZ#2057082)
* Wed Jun 01 2022 Matej Tyc <matyc@redhat.com> - 0.1.62-1
  - Rebase to a new upstream release (RHBZ#2070563)
* Mon Feb 21 2022 Gabriel Becker <ggasparb@redhat.com> - 0.1.60-5
  - Remove tmux process runinng check in configure_bashrc_exec_tmux (RHBZ#2056847)
  - Fix issue with getting STIG items in create_scap_delta_tailoring.py (RHBZ#2014561)
  - Update rule enable_fips_mode to check only for technical state (RHBZ#2057457)
* Tue Feb 15 2022 Watson Sato <wsato@redhat.com> - 0.1.60-4
  - Fix Ansible service disabled tasks (RHBZ#2014561)
  - Update description of OSPP profile (RHBZ#2045386)
  - Add page_aloc.shuffle rules for OSPP profile (RHBZ#2055118)
* Mon Feb 14 2022 Gabriel Becker <ggasparb@redhat.com> - 0.1.60-3
  - Update sudoers rules in RHEL8 STIG V1R5 (RHBZ#2045403)
  - Add missing SRG references in RHEL8 STIG V1R5 rules (RHBZ#2045403)
  - Update chronyd_or_ntpd_set_maxpoll to disregard server and poll directives (RHBZ#2045403)
  - Fix GRUB2 rule template to configure the module correctly on RHEL8 (RHBZ#2014561)
  - Update GRUB2 rule descriptions (RHBZ#2020623)
  - Make package_rear_installed not applicable on AARCH64 (RHBZ#2014561)
* Fri Feb 11 2022 Watson Sato <wsato@redhat.com> - 0.1.60-2
  - Update OSPP profile (RHBZ#2016038, RHBZ#2043036, RHBZ#2020670, RHBZ#2046289)
* Thu Jan 27 2022 Watson Sato <wsato@redhat.com> - 0.1.60-1
  - Rebase to a new upstream release (RHBZ#2014561)
* Wed Dec 08 2021 Gabriel Becker <ggasparb@redhat.com> - 0.1.59-1
  - Rebase to a new upstream release (RHBZ#2014561)
  - Enable Centos Stream 9 content (RHBZ#2021284)
* Fri Oct 15 2021 Matej Tyc <matyc@redhat.com> - 0.1.58-1
  - Rebase to a new upstream release (RHBZ#2014561)
  - Disable profiles that we disable in RHEL8
  - Add a VM wait handling to fix issues with tests.
* Wed Aug 25 2021 Matej Tyc <matyc@redhat.com> - 0.1.57-5
  - Fix remediations applicability of zipl rules
    Resolves: rhbz#1996847
* Tue Aug 24 2021 Matej Tyc <matyc@redhat.com> - 0.1.57-4
  - Fix a broken HTTP link
    Add CIS profile based on RHEL8 CIS, fix its Crypto Policy usage
    Resolves: rhbz#1962564
* Tue Aug 17 2021 Matej Tyc <matyc@redhat.com> - 0.1.57-3
  - Use SSHD directory-based configuration.
    Resolves: rhbz#1962564
  - Introduce ISM kickstarts
    Resolves: rhbz#1978290
  - Deliver numerous RHEL9 fixes to rules - see related BZs for details.
    TLDR: Enable remediations by means of platform metadata,
    enable the RHEL9 GPG rule, introduce the s390x platform,
    fix the ctrl-alt-del reboot disable, fix grub2 UEFI config file location,
    address the subscription-manager package merge, and
    enable and select more rules applicable to RHEL9.
    Resolves: rhbz#1987227
    Resolves: rhbz#1987226
    Resolves: rhbz#1987231
    Resolves: rhbz#1988289
* Tue Aug 10 2021 Mohan Boddu <mboddu@redhat.com> - 0.1.57-2
  - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
    Related: rhbz#1991688
* Wed Jul 28 2021 Matej Tyc <matyc@redhat.com> - 0.1.57-1
  - Upgrade to the latest upstream release
  - Introduce more complete RHEL9 content in terms of rules, profiles and kickstarts.
* Wed Jul 07 2021 Matej Tyc <matyc@redhat.com> - 0.1.56-3
  - Introduced the playbooks subpackage.
  - Enabled CentOS content on CentOS systems.
  - Solved missing CCEs problem by unselecting problematic rules by means of editing patches or by porting PRs that unselect them.
* Mon Jun 28 2021 Matej Tyc <matyc@redhat.com> - 0.1.56-2
  - Enable more RHEL9 rules and introduce RHEL9 profile stubs
* Wed May 19 2021 Jan Černý <jcerny@redhat.com> - 0.1.56-1
  - Upgrade to the latest upstream release
  - remove README.md and Contributors.md
  - remove SCAP component files
  - remove SCAP 1.2 source data streams
  - remove HTML guides for the virtual “(default)” profile
  - remove profile Bash remediation scripts
  - build only RHEL9 content
  - remove other products
  - use autosetup in %prep phase
* Fri Apr 16 2021 Mohan Boddu <mboddu@redhat.com> - 0.1.54-3
  - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937
* Fri Feb 12 2021 Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-2
  - fix definition of build directory
* Fri Feb 05 2021 Vojtech Polasek <vpolasek@redhat.com> - 0.1.54-1
  - Update to latest upstream SCAP-Security-Guide-0.1.54 release:
    https://github.com/ComplianceAsCode/content/releases/tag/v0.1.54
* Wed Jan 27 2021 Fedora Release Engineering <releng@fedoraproject.org> - 0.1.53-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Mon Nov 16 2020 Vojtech Polasek <vpolasek@redhat.com> - 0.1.53-1
  - Update to latest upstream SCAP-Security-Guide-0.1.53 release:
    https://github.com/ComplianceAsCode/content/releases/tag/v0.1.53
* Wed Sep 23 2020 Vojtech Polasek <vpolasek@redhat.com> - 0.1.52-3
  - revert previous rework, it did not solve the problem
* Wed Sep 23 2020 Vojtech Polasek <vpolasek@redhat.com> - 0.1.52-2
  - rewrite solution for CMake out of source builds
* Mon Sep 21 2020 Vojtech Polasek <vpolasek@redhat.com> - 0.1.52-1
  - Update to latest upstream SCAP-Security-Guide-0.1.52 release:
    https://github.com/ComplianceAsCode/content/releases/tag/v0.1.52

Files

/usr/share/doc/scap-security-guide/LICENSE
/usr/share/man/man8/scap-security-guide.8.gz
/usr/share/scap-security-guide/ansible/cs9-playbook-anssi_bp28_enhanced.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-anssi_bp28_high.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-anssi_bp28_intermediary.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-anssi_bp28_minimal.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-cis.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-cis_server_l1.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-cis_workstation_l1.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-cis_workstation_l2.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-cui.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-e8.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-hipaa.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-ism_o.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-ospp.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-pci-dss.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-stig.yml
/usr/share/scap-security-guide/ansible/cs9-playbook-stig_gui.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-anssi_bp28_enhanced.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-anssi_bp28_high.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-anssi_bp28_intermediary.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-anssi_bp28_minimal.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-cis.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-cis_server_l1.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-cis_workstation_l1.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-cis_workstation_l2.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-cui.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-e8.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-hipaa.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-ism_o.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-ospp.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-pci-dss.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-stig.yml
/usr/share/scap-security-guide/ansible/rhel9-playbook-stig_gui.yml
/usr/share/scap-security-guide/kickstart
/usr/share/scap-security-guide/kickstart/ssg-rhel9-anssi_bp28_enhanced-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-anssi_bp28_high-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-anssi_bp28_intermediary-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-anssi_bp28_minimal-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-cis-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-cis_server_l1-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-cis_workstation_l1-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-cis_workstation_l2-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-cui-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-e8-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-hipaa-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-ism_o-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-ospp-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-pci-dss-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-stig-ks.cfg
/usr/share/scap-security-guide/kickstart/ssg-rhel9-stig_gui-ks.cfg
/usr/share/xml/scap/ssg/content
/usr/share/xml/scap/ssg/content/ssg-cs9-ds.xml
/usr/share/xml/scap/ssg/content/ssg-rhel9-ds.xml

Generated by rpm2html 1.8.1

Fabrice Bellet, Wed Feb 28 03:25:11 2024