Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Rule file_groupownership_sshd_private_key fails after remediation #10592

Closed
cortesana opened this issue May 19, 2023 · 2 comments
Closed

Rule file_groupownership_sshd_private_key fails after remediation #10592

cortesana opened this issue May 19, 2023 · 2 comments
Assignees
@ggbecker
Labels
CIS CIS Benchmark related. productization-issue Issue found in upstream stabilization process.

Comments

@cortesana
Copy link
Contributor

cortesana commented May 19, 2023
edited
Loading

Description of problem:

The file_groupownership_sshd_private_key rule is failing after remediation when checking the following profiles:

  • CIS Workstation Level 2 with GUI.

SCAP Security Guide Version:

Operating System Version:

RHEL 9.2, RHEL 8.8, RHEL 7.9

Steps to Reproduce:

  1. Build RHEL9 datastream (you may also build RHEL7 or RHEL8)
  2. Run
oscap xccdf eval         --profile xccdf_org.ssgproject.content_profile_cis_workstation_l2 --report  xccdf_org.ssgproject.content_profile_cis_workstation_l2.html         --results-arf xccdf_org.ssgproject.content_profile_cis_workstation_l2-xccdf-arf-results.xml         --results xccdf_org.ssgproject.content_profile_cis_workstation_l2-xccdf-results.xml --oval-results         /tmp/ssg-rhel9-ds.xml 2>/tmp/stderr.txt
  1. Evaluate the results.

Actual Results:

xccdf_org.ssgproject.content_rule_file_groupownership_sshd_private_key - fail

Expected Results:

xccdf_org.ssgproject.content_rule_file_groupownership_sshd_private_key - pass

Additional Information/Debugging Steps:
@mildas mildas added the productization-issue Issue found in upstream stabilization process. label May 19, 2023
@cortesana cortesana added the CIS CIS Benchmark related. label May 20, 2023
@mildas mildas mentioned this issue May 22, 2023
Merged
@cortesana
Copy link
Contributor Author

This issue is related to #10594

This was referenced May 23, 2023
Merged
Merged
@ggbecker ggbecker self-assigned this May 23, 2023
@ggbecker ggbecker mentioned this issue May 23, 2023
Merged
@mildas
Copy link
Contributor

mildas commented May 31, 2023

Passed in last productization. Closing

@mildas mildas closed this as completed May 31, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ggbecker ggbecker

Labels
CIS CIS Benchmark related. productization-issue Issue found in upstream stabilization process.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@mildas @ggbecker @cortesana