Remove VMM SRG References #10336

Mab879 · 2023-03-15T12:49:38Z

Description:

This PR removed the Virtual Machine Manager SRG (VMM SRG) references from the project.

Rationale:

According to the STIG library the Virtual Machine Manager SRG (VMM SRG) was withdrawn in January 2015.

This SRG was removed in 2015.

github-actions · 2023-03-15T12:51:32Z

Start a new ephemeral environment with changes proposed in this pull request:

rhel8 (from CTF) Environment (using Fedora as testing environment)

Fedora Testing Environment

Oracle Linux 8 Environment

github-actions · 2023-03-15T12:54:01Z

This datastream diff is auto generated by the check Compare DS/Generate Diff.
Due to the excessive size of the diff, it has been trimmed to fit the 65535-character limit.

Click here to see the trimmed diff

New content has different text for rule 'xccdf_org.ssgproject.content_rule_enable_dracut_fips_module'.
--- xccdf_org.ssgproject.content_rule_enable_dracut_fips_module
+++ xccdf_org.ssgproject.content_rule_enable_dracut_fips_module
@@ -69,15 +69,6 @@
 SRG-OS-000478-GPOS-00223
 
 [reference]:
-SRG-OS-000120-VMM-000600
-
-[reference]:
-SRG-OS-000478-VMM-001980
-
-[reference]:
-SRG-OS-000396-VMM-001590
-
-[reference]:
 RHEL-08-010020
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_enable_fips_mode'.
--- xccdf_org.ssgproject.content_rule_enable_fips_mode
+++ xccdf_org.ssgproject.content_rule_enable_fips_mode
@@ -89,15 +89,6 @@
 SRG-OS-000396-GPOS-00176
 
 [reference]:
-SRG-OS-000120-VMM-000600
-
-[reference]:
-SRG-OS-000478-VMM-001980
-
-[reference]:
-SRG-OS-000396-VMM-001590
-
-[reference]:
 RHEL-08-010020
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_etc_system_fips_exists'.
--- xccdf_org.ssgproject.content_rule_etc_system_fips_exists
+++ xccdf_org.ssgproject.content_rule_etc_system_fips_exists
@@ -61,15 +61,6 @@
 [reference]:
 SC-12
 
-[reference]:
-SRG-OS-000120-VMM-000600
-
-[reference]:
-SRG-OS-000478-VMM-001980
-
-[reference]:
-SRG-OS-000396-VMM-001590
-
 [rationale]:
 Use of weak or untested encryption algorithms undermines the purposes of utilizing encryption to
 protect data. The operating system must implement cryptographic modules adhering to the higher

New content has different text for rule 'xccdf_org.ssgproject.content_rule_sysctl_crypto_fips_enabled'.
--- xccdf_org.ssgproject.content_rule_sysctl_crypto_fips_enabled
+++ xccdf_org.ssgproject.content_rule_sysctl_crypto_fips_enabled
@@ -103,15 +103,6 @@
 SRG-OS-000478-GPOS-00223
 
 [reference]:
-SRG-OS-000120-VMM-000600
-
-[reference]:
-SRG-OS-000478-VMM-001980
-
-[reference]:
-SRG-OS-000396-VMM-001590
-
-[reference]:
 RHEL-08-010020
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_installed_OS_is_FIPS_certified'.
--- xccdf_org.ssgproject.content_rule_installed_OS_is_FIPS_certified
+++ xccdf_org.ssgproject.content_rule_installed_OS_is_FIPS_certified
@@ -58,15 +58,6 @@
 [reference]:
 SC-12
 
-[reference]:
-SRG-OS-000120-VMM-000600
-
-[reference]:
-SRG-OS-000478-VMM-001980
-
-[reference]:
-SRG-OS-000396-VMM-001590
-
 [rationale]:
 The Federal Information Processing Standard (FIPS) Publication 140-2, (FIPS
 PUB 140-2) is a computer security standard. The standard specifies security

New content has different text for rule 'xccdf_org.ssgproject.content_rule_encrypt_partitions'.
--- xccdf_org.ssgproject.content_rule_encrypt_partitions
+++ xccdf_org.ssgproject.content_rule_encrypt_partitions
@@ -224,12 +224,6 @@
 SRG-OS-000404-GPOS-00183
 
 [reference]:
-SRG-OS-000404-VMM-001650
-
-[reference]:
-SRG-OS-000405-VMM-001660
-
-[reference]:
 RHEL-08-010030
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_partition_for_var'.
--- xccdf_org.ssgproject.content_rule_partition_for_var
+++ xccdf_org.ssgproject.content_rule_partition_for_var
@@ -80,9 +80,6 @@
 SRG-OS-000480-GPOS-00227
 
 [reference]:
-SRG-OS-000341-VMM-001220
-
-[reference]:
 RHEL-08-010540
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_partition_for_var_log_audit'.
--- xccdf_org.ssgproject.content_rule_partition_for_var_log_audit
+++ xccdf_org.ssgproject.content_rule_partition_for_var_log_audit
@@ -204,9 +204,6 @@
 
 [reference]:
 SRG-OS-000480-GPOS-00227
-
-[reference]:
-SRG-OS-000341-VMM-001220
 
 [reference]:
 RHEL-08-010542

New content has different text for rule 'xccdf_org.ssgproject.content_rule_sudo_remove_no_authenticate'.
--- xccdf_org.ssgproject.content_rule_sudo_remove_no_authenticate
+++ xccdf_org.ssgproject.content_rule_sudo_remove_no_authenticate
@@ -150,15 +150,6 @@
 SRG-OS-000373-GPOS-00158
 
 [reference]:
-SRG-OS-000373-VMM-001470
-
-[reference]:
-SRG-OS-000373-VMM-001480
-
-[reference]:
-SRG-OS-000373-VMM-001490
-
-[reference]:
 RHEL-08-010381
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_sudo_remove_nopasswd'.
--- xccdf_org.ssgproject.content_rule_sudo_remove_nopasswd
+++ xccdf_org.ssgproject.content_rule_sudo_remove_nopasswd
@@ -155,15 +155,6 @@
 SRG-OS-000373-GPOS-00158
 
 [reference]:
-SRG-OS-000373-VMM-001470
-
-[reference]:
-SRG-OS-000373-VMM-001480
-
-[reference]:
-SRG-OS-000373-VMM-001490
-
-[reference]:
 RHEL-08-010380
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_clean_components_post_updating'.
--- xccdf_org.ssgproject.content_rule_clean_components_post_updating
+++ xccdf_org.ssgproject.content_rule_clean_components_post_updating
@@ -96,9 +96,6 @@
 SRG-OS-000437-GPOS-00194
 
 [reference]:
-SRG-OS-000437-VMM-001760
-
-[reference]:
 RHEL-08-010440
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_ensure_gpgcheck_globally_activated'.
--- xccdf_org.ssgproject.content_rule_ensure_gpgcheck_globally_activated
+++ xccdf_org.ssgproject.content_rule_ensure_gpgcheck_globally_activated
@@ -174,15 +174,6 @@
 
 [reference]:
 SRG-OS-000366-GPOS-00153
-
-[reference]:
-SRG-OS-000366-VMM-001430
-
-[reference]:
-SRG-OS-000370-VMM-001460
-
-[reference]:
-SRG-OS-000404-VMM-001650
 
 [reference]:
 RHEL-08-010370

New content has different text for rule 'xccdf_org.ssgproject.content_rule_ensure_gpgcheck_local_packages'.
--- xccdf_org.ssgproject.content_rule_ensure_gpgcheck_local_packages
+++ xccdf_org.ssgproject.content_rule_ensure_gpgcheck_local_packages
@@ -110,15 +110,6 @@
 SRG-OS-000366-GPOS-00153
 
 [reference]:
-SRG-OS-000366-VMM-001430
-
-[reference]:
-SRG-OS-000370-VMM-001460
-
-[reference]:
-SRG-OS-000404-VMM-001650
-
-[reference]:
 RHEL-08-010371
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_ensure_gpgcheck_never_disabled'.
--- xccdf_org.ssgproject.content_rule_ensure_gpgcheck_never_disabled
+++ xccdf_org.ssgproject.content_rule_ensure_gpgcheck_never_disabled
@@ -173,15 +173,6 @@
 SRG-OS-000366-GPOS-00153
 
 [reference]:
-SRG-OS-000366-VMM-001430
-
-[reference]:
-SRG-OS-000370-VMM-001460
-
-[reference]:
-SRG-OS-000404-VMM-001650
-
-[reference]:
 RHEL-08-010370
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_ensure_redhat_gpgkey_installed'.
--- xccdf_org.ssgproject.content_rule_ensure_redhat_gpgkey_installed
+++ xccdf_org.ssgproject.content_rule_ensure_redhat_gpgkey_installed
@@ -192,15 +192,6 @@
 SRG-OS-000366-GPOS-00153
 
 [reference]:
-SRG-OS-000366-VMM-001430
-
-[reference]:
-SRG-OS-000370-VMM-001460
-
-[reference]:
-SRG-OS-000404-VMM-001650
-
-[reference]:
 1.2.2
 
 [rationale]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_security_patches_up_to_date'.
--- xccdf_org.ssgproject.content_rule_security_patches_up_to_date
+++ xccdf_org.ssgproject.content_rule_security_patches_up_to_date
@@ -110,9 +110,6 @@
 SRG-OS-000480-GPOS-00227
 
 [reference]:
-SRG-OS-000480-VMM-002000
-
-[reference]:
 RHEL-08-010010
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_banner_etc_issue'.
--- xccdf_org.ssgproject.content_rule_banner_etc_issue
+++ xccdf_org.ssgproject.content_rule_banner_etc_issue
@@ -165,12 +165,6 @@
 SRG-OS-000228-GPOS-00088
 
 [reference]:
-SRG-OS-000023-VMM-000060
-
-[reference]:
-SRG-OS-000024-VMM-000070
-
-[reference]:
 RHEL-08-010060
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_password_pam_pwhistory_remember_password_auth'.
--- xccdf_org.ssgproject.content_rule_accounts_password_pam_pwhistory_remember_password_auth
+++ xccdf_org.ssgproject.content_rule_accounts_password_pam_pwhistory_remember_password_auth
@@ -205,9 +205,6 @@
 SRG-OS-000077-GPOS-00045
 
 [reference]:
-SRG-OS-000077-VMM-000440
-
-[reference]:
 RHEL-08-020220
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_password_pam_pwhistory_remember_system_auth'.
--- xccdf_org.ssgproject.content_rule_accounts_password_pam_pwhistory_remember_system_auth
+++ xccdf_org.ssgproject.content_rule_accounts_password_pam_pwhistory_remember_system_auth
@@ -201,9 +201,6 @@
 SRG-OS-000077-GPOS-00045
 
 [reference]:
-SRG-OS-000077-VMM-000440
-
-[reference]:
 RHEL-08-020221
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_password_pam_unix_remember'.
--- xccdf_org.ssgproject.content_rule_accounts_password_pam_unix_remember
+++ xccdf_org.ssgproject.content_rule_accounts_password_pam_unix_remember
@@ -187,9 +187,6 @@
 SRG-OS-000077-GPOS-00045
 
 [reference]:
-SRG-OS-000077-VMM-000440
-
-[reference]:
 5.4.3
 
 [rationale]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_deny'.
--- xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_deny
+++ xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_deny
@@ -194,9 +194,6 @@
 SRG-OS-000021-GPOS-00005
 
 [reference]:
-SRG-OS-000021-VMM-000050
-
-[reference]:
 RHEL-08-020011
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_interval'.
--- xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_interval
+++ xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_interval
@@ -179,9 +179,6 @@
 SRG-OS-000021-GPOS-00005
 
 [reference]:
-SRG-OS-000021-VMM-000050
-
-[reference]:
 RHEL-08-020012
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_unlock_time'.
--- xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_unlock_time
+++ xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_unlock_time
@@ -203,9 +203,6 @@
 SRG-OS-000021-GPOS-00005
 
 [reference]:
-SRG-OS-000329-VMM-001180
-
-[reference]:
 RHEL-08-020016
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_password_pam_dcredit'.
--- xccdf_org.ssgproject.content_rule_accounts_password_pam_dcredit
+++ xccdf_org.ssgproject.content_rule_accounts_password_pam_dcredit
@@ -223,9 +223,6 @@
 SRG-OS-000071-GPOS-00039
 
 [reference]:
-SRG-OS-000071-VMM-000380
-
-[reference]:
 RHEL-08-020130
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_password_pam_difok'.
--- xccdf_org.ssgproject.content_rule_accounts_password_pam_difok
+++ xccdf_org.ssgproject.content_rule_accounts_password_pam_difok
@@ -174,9 +174,6 @@
 
 [reference]:
 SRG-OS-000072-GPOS-00040
-
-[reference]:
-SRG-OS-000072-VMM-000390
 
 [reference]:
 RHEL-08-020170

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_password_pam_lcredit'.
--- xccdf_org.ssgproject.content_rule_accounts_password_pam_lcredit
+++ xccdf_org.ssgproject.content_rule_accounts_password_pam_lcredit
@@ -223,9 +223,6 @@
 SRG-OS-000070-GPOS-00038
 
 [reference]:
-SRG-OS-000070-VMM-000370
-
-[reference]:
 RHEL-08-020120
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_password_pam_minlen'.
--- xccdf_org.ssgproject.content_rule_accounts_password_pam_minlen
+++ xccdf_org.ssgproject.content_rule_accounts_password_pam_minlen
@@ -222,12 +222,6 @@
 
 [reference]:
 SRG-OS-000078-GPOS-00046
-
-[reference]:
-SRG-OS-000072-VMM-000390
-
-[reference]:
-SRG-OS-000078-VMM-000450
 
 [reference]:
 RHEL-08-020230

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_password_pam_ocredit'.
--- xccdf_org.ssgproject.content_rule_accounts_password_pam_ocredit
+++ xccdf_org.ssgproject.content_rule_accounts_password_pam_ocredit
@@ -222,9 +222,6 @@
 SRG-OS-000266-GPOS-00101
 
 [reference]:
-SRG-OS-000266-VMM-000940
-
-[reference]:
 RHEL-08-020280
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_password_pam_ucredit'.
--- xccdf_org.ssgproject.content_rule_accounts_password_pam_ucredit
+++ xccdf_org.ssgproject.content_rule_accounts_password_pam_ucredit
@@ -229,9 +229,6 @@
 SRG-OS-000070-GPOS-00038
 
 [reference]:
-SRG-OS-000069-VMM-000360
-
-[reference]:
 RHEL-08-020110
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_libuserconf'.
--- xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_libuserconf
+++ xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_libuserconf
@@ -184,9 +184,6 @@
 
 [reference]:
 SRG-OS-000073-GPOS-00041
-
-[reference]:
-SRG-OS-000480-VMM-002000
 
 [rationale]:
 Passwords need to be protected at all times, and encryption is the standard

New content has different text for rule 'xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_passwordauth'.
--- xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_passwordauth
+++ xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_passwordauth
@@ -205,9 +205,6 @@
 SRG-OS-000120-GPOS-00061
 
 [reference]:
-SRG-OS-000480-VMM-002000
-
-[reference]:
 RHEL-08-010160
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_systemauth'.
--- xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_systemauth
+++ xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_systemauth
@@ -205,9 +205,6 @@
 SRG-OS-000120-GPOS-00061
 
 [reference]:
-SRG-OS-000480-VMM-002000
-
-[reference]:
 RHEL-08-010159
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_logind_session_timeout'.
--- xccdf_org.ssgproject.content_rule_logind_session_timeout
+++ xccdf_org.ssgproject.content_rule_logind_session_timeout
@@ -297,9 +297,6 @@
 [reference]:
 Req-8.1.8
 
-[reference]:
-SRG-OS-000480-VMM-002000
-
 [rationale]:
 Terminating an idle session within a short time period reduces the window of
 opportunity for unauthorized personnel to take control of a management

New content has different text for rule 'xccdf_org.ssgproject.content_rule_package_tmux_installed'.
--- xccdf_org.ssgproject.content_rule_package_tmux_installed
+++ xccdf_org.ssgproject.content_rule_package_tmux_installed
@@ -130,9 +130,6 @@
 SRG-OS-000028-GPOS-00009
 
 [reference]:
-SRG-OS-000030-VMM-000110
-
-[reference]:
 RHEL-08-020039
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_configure_tmux_lock_command'.
--- xccdf_org.ssgproject.content_rule_configure_tmux_lock_command
+++ xccdf_org.ssgproject.content_rule_configure_tmux_lock_command
@@ -42,12 +42,6 @@
 SRG-OS-000030-GPOS-00011
 
 [reference]:
-SRG-OS-000028-VMM-000090
-
-[reference]:
-SRG-OS-000030-VMM-000110
-
-[reference]:
 RHEL-08-020040
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_package_opensc_installed'.
--- xccdf_org.ssgproject.content_rule_package_opensc_installed
+++ xccdf_org.ssgproject.content_rule_package_opensc_installed
@@ -32,9 +32,6 @@
 SRG-OS-000376-GPOS-00161
 
 [reference]:
-SRG-OS-000376-VMM-001520
-
-[reference]:
 RHEL-08-010410
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_package_pcsc-lite_installed'.
--- xccdf_org.ssgproject.content_rule_package_pcsc-lite_installed
+++ xccdf_org.ssgproject.content_rule_package_pcsc-lite_installed
@@ -25,9 +25,6 @@
 [reference]:
 SRG-OS-000375-GPOS-00160
 
-[reference]:
-SRG-OS-000377-VMM-001530
-
 [rationale]:
 The pcsc-lite package must be installed if it is to be available for
 multifactor authentication using smartcards.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_service_pcscd_enabled'.
--- xccdf_org.ssgproject.content_rule_service_pcscd_enabled
+++ xccdf_org.ssgproject.content_rule_service_pcscd_enabled
@@ -48,9 +48,6 @@
 [reference]:
 SRG-OS-000375-GPOS-00160
 
-[reference]:
-SRG-OS-000377-VMM-001530
-
 [rationale]:
 Using an authentication device, such as a CAC or token that is separate from
 the information system, ensures that even if the information system is

New content has different text for rule 'xccdf_org.ssgproject.content_rule_configure_opensc_card_drivers'.
--- xccdf_org.ssgproject.content_rule_configure_opensc_card_drivers
+++ xccdf_org.ssgproject.content_rule_configure_opensc_card_drivers
@@ -239,9 +239,6 @@
 [reference]:
 SRG-OS-000108-GPOS-00058
 
-[reference]:
-SRG-OS-000376-VMM-001520
-
 [rationale]:
 Smart card login provides two-factor authentication stronger than
 that provided by a username and password combination. Smart cards leverage PKI

New content has different text for rule 'xccdf_org.ssgproject.content_rule_force_opensc_card_drivers'.
--- xccdf_org.ssgproject.content_rule_force_opensc_card_drivers
+++ xccdf_org.ssgproject.content_rule_force_opensc_card_drivers
@@ -236,9 +236,6 @@
 [reference]:
 SRG-OS-000108-GPOS-00058
 
-[reference]:
-SRG-OS-000376-VMM-001520
-
 [rationale]:
 Smart card login provides two-factor authentication stronger than
 that provided by a username and password combination. Smart cards leverage PKI

New content has different text for rule 'xccdf_org.ssgproject.content_rule_account_disable_post_pw_expiration'.
--- xccdf_org.ssgproject.content_rule_account_disable_post_pw_expiration
+++ xccdf_org.ssgproject.content_rule_account_disable_post_pw_expiration
@@ -271,12 +271,6 @@
 SRG-OS-000118-GPOS-00060
 
 [reference]:
-SRG-OS-000003-VMM-000030
-
-[reference]:
-SRG-OS-000118-VMM-000590
-
-[reference]:
 RHEL-08-020260
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_account_emergency_expire_date'.
--- xccdf_org.ssgproject.content_rule_account_emergency_expire_date
+++ xccdf_org.ssgproject.content_rule_account_emergency_expire_date
@@ -204,12 +204,6 @@
 SRG-OS-000002-GPOS-00002
 
 [reference]:
-SRG-OS-000002-VMM-000020
-
-[reference]:
-SRG-OS-000123-VMM-000620
-
-[reference]:
 RHEL-08-020270
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_account_temp_expire_date'.
--- xccdf_org.ssgproject.content_rule_account_temp_expire_date
+++ xccdf_org.ssgproject.content_rule_account_temp_expire_date
@@ -199,12 +199,6 @@
 SRG-OS-000002-GPOS-00002
 
 [reference]:
-SRG-OS-000002-VMM-000020
-
-[reference]:
-SRG-OS-000123-VMM-000620
-
-[reference]:
 RHEL-08-020000
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_password_set_max_life_existing'.
--- xccdf_org.ssgproject.content_rule_accounts_password_set_max_life_existing
+++ xccdf_org.ssgproject.content_rule_accounts_password_set_max_life_existing
@@ -23,9 +23,6 @@
 SRG-OS-000076-GPOS-00044
 
 [reference]:
-SRG-OS-000076-VMM-000430
-
-[reference]:
 RHEL-08-020210
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_password_set_min_life_existing'.
--- xccdf_org.ssgproject.content_rule_accounts_password_set_min_life_existing
+++ xccdf_org.ssgproject.content_rule_accounts_password_set_min_life_existing
@@ -23,9 +23,6 @@
 SRG-OS-000075-GPOS-00043
 
 [reference]:
-SRG-OS-000075-VMM000420
-
-[reference]:
 RHEL-08-020180
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_max_concurrent_login_sessions'.
--- xccdf_org.ssgproject.content_rule_accounts_max_concurrent_login_sessions
+++ xccdf_org.ssgproject.content_rule_accounts_max_concurrent_login_sessions
@@ -77,9 +77,6 @@
 SRG-OS-000027-GPOS-00008
 
 [reference]:
-SRG-OS-000027-VMM-000080
-
-[reference]:
 RHEL-08-020024
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_accounts_tmout'.
--- xccdf_org.ssgproject.content_rule_accounts_tmout
+++ xccdf_org.ssgproject.content_rule_accounts_tmout
@@ -160,12 +160,6 @@
 SRG-OS-000029-GPOS-00010
 
 [reference]:
-SRG-OS-000163-VMM-000700
-
-[reference]:
-SRG-OS-000279-VMM-001010
-
-[reference]:
 5.6.3
 
 [rationale]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_service_auditd_enabled'.
--- xccdf_org.ssgproject.content_rule_service_auditd_enabled
+++ xccdf_org.ssgproject.content_rule_service_auditd_enabled
@@ -531,24 +531,6 @@
 
 [reference]:
 SRG-OS-000475-GPOS-00220
-
-[reference]:
-SRG-OS-000037-VMM-000150
-
-[reference]:
-SRG-OS-000063-VMM-000310
-
-[reference]:
-SRG-OS-000038-VMM-000160
-
-[reference]:
-SRG-OS-000039-VMM-000170
-
-[reference]:
-SRG-OS-000040-VMM-000180
-
-[reference]:
-SRG-OS-000041-VMM-000190
 
 [reference]:
 RHEL-08-030181

New content has different text for rule 'xccdf_org.ssgproject.content_rule_grub2_audit_argument'.
--- xccdf_org.ssgproject.content_rule_grub2_audit_argument
+++ xccdf_org.ssgproject.content_rule_grub2_audit_argument
@@ -374,9 +374,6 @@
 SRG-OS-000254-GPOS-00095
 
 [reference]:
-SRG-OS-000254-VMM-000880
-
-[reference]:
 RHEL-08-030601
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_sysadmin_actions'.
--- xccdf_org.ssgproject.content_rule_audit_rules_sysadmin_actions
+++ xccdf_org.ssgproject.content_rule_audit_rules_sysadmin_actions
@@ -545,12 +545,6 @@
 SRG-OS-000476-GPOS-00221
 
 [reference]:
-SRG-OS-000462-VMM-001840
-
-[reference]:
-SRG-OS-000471-VMM-001910
-
-[reference]:
 4.1.3.1
 
 [rationale]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_system_shutdown'.
--- xccdf_org.ssgproject.content_rule_audit_rules_system_shutdown
+++ xccdf_org.ssgproject.content_rule_audit_rules_system_shutdown
@@ -148,9 +148,6 @@
 [reference]:
 SRG-OS-000047-GPOS-00023
 
-[reference]:
-SRG-OS-000047-VMM-000220
-
 [rationale]:
 It is critical for the appropriate personnel to be aware if a system
 is at risk of failing to process audit logs as required. Without this

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_group'.
--- xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_group
+++ xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_group
@@ -589,39 +589,6 @@
 SRG-OS-000476-GPOS-00221
 
 [reference]:
-SRG-OS-000004-VMM-000040
-
-[reference]:
-SRG-OS-000239-VMM-000810
-
-[reference]:
-SRG-OS-000240-VMM-000820
-
-[reference]:
-SRG-OS-000241-VMM-000830
-
-[reference]:
-SRG-OS-000274-VMM-000960
-
-[reference]:
-SRG-OS-000275-VMM-000970
-
-[reference]:
-SRG-OS-000276-VMM-000980
-
-[reference]:
-SRG-OS-000277-VMM-000990
-
-[reference]:
-SRG-OS-000303-VMM-001090
-
-[reference]:
-SRG-OS-000304-VMM-001100
-
-[reference]:
-SRG-OS-000476-VMM-001960
-
-[reference]:
 RHEL-08-030170
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_gshadow'.
--- xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_gshadow
+++ xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_gshadow
@@ -589,39 +589,6 @@
 SRG-OS-000476-GPOS-00221
 
 [reference]:
-SRG-OS-000004-VMM-000040
-
-[reference]:
-SRG-OS-000239-VMM-000810
-
-[reference]:
-SRG-OS-000240-VMM-000820
-
-[reference]:
-SRG-OS-000241-VMM-000830
-
-[reference]:
-SRG-OS-000274-VMM-000960
-
-[reference]:
-SRG-OS-000275-VMM-000970
-
-[reference]:
-SRG-OS-000276-VMM-000980
-
-[reference]:
-SRG-OS-000277-VMM-000990
-
-[reference]:
-SRG-OS-000303-VMM-001090
-
-[reference]:
-SRG-OS-000304-VMM-001100
-
-[reference]:
-SRG-OS-000476-VMM-001960
-
-[reference]:
 RHEL-08-030160
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_opasswd'.
--- xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_opasswd
+++ xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_opasswd
@@ -589,39 +589,6 @@
 SRG-OS-000476-GPOS-00221
 
 [reference]:
-SRG-OS-000004-VMM-000040
-
-[reference]:
-SRG-OS-000239-VMM-000810
-
-[reference]:
-SRG-OS-000240-VMM-000820
-
-[reference]:
-SRG-OS-000241-VMM-000830
-
-[reference]:
-SRG-OS-000274-VMM-000960
-
-[reference]:
-SRG-OS-000275-VMM-000970
-
-[reference]:
-SRG-OS-000276-VMM-000980
-
-[reference]:
-SRG-OS-000277-VMM-000990
-
-[reference]:
-SRG-OS-000303-VMM-001090
-
-[reference]:
-SRG-OS-000304-VMM-001100
-
-[reference]:
-SRG-OS-000476-VMM-001960
-
-[reference]:
 RHEL-08-030140
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_passwd'.
--- xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_passwd
+++ xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_passwd
@@ -604,39 +604,6 @@
 SRG-OS-000277-GPOS-00107
 
 [reference]:
-SRG-OS-000004-VMM-000040
-
-[reference]:
-SRG-OS-000239-VMM-000810
-
-[reference]:
-SRG-OS-000240-VMM-000820
-
-[reference]:
-SRG-OS-000241-VMM-000830
-
-[reference]:
-SRG-OS-000274-VMM-000960
-
-[reference]:
-SRG-OS-000275-VMM-000970
-
-[reference]:
-SRG-OS-000276-VMM-000980
-
-[reference]:
-SRG-OS-000277-VMM-000990
-
-[reference]:
-SRG-OS-000303-VMM-001090
-
-[reference]:
-SRG-OS-000304-VMM-001100
-
-[reference]:
-SRG-OS-000476-VMM-001960
-
-[reference]:
 RHEL-08-030150
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_shadow'.
--- xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_shadow
+++ xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_shadow
@@ -589,39 +589,6 @@
 SRG-OS-000476-GPOS-00221
 
 [reference]:
-SRG-OS-000004-VMM-000040
-
-[reference]:
-SRG-OS-000239-VMM-000810
-
-[reference]:
-SRG-OS-000240-VMM-000820
-
-[reference]:
-SRG-OS-000241-VMM-000830
-
-[reference]:
-SRG-OS-000274-VMM-000960
-
-[reference]:
-SRG-OS-000275-VMM-000970
-
-[reference]:
-SRG-OS-000276-VMM-000980
-
-[reference]:
-SRG-OS-000277-VMM-000990
-
-[reference]:
-SRG-OS-000303-VMM-001090
-
-[reference]:
-SRG-OS-000304-VMM-001100
-
-[reference]:
-SRG-OS-000476-VMM-001960
-
-[reference]:
 RHEL-08-030130
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_chmod'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_chmod
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_chmod
@@ -418,12 +418,6 @@
 SRG-OS-000458-GPOS-00203
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030490
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_chown'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_chown
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_chown
@@ -421,12 +421,6 @@
 SRG-OS-000474-GPOS-00219
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030480
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchmod'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchmod
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchmod
@@ -418,12 +418,6 @@
 SRG-OS-000458-GPOS-00203
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030490
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchmodat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchmodat
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchmodat
@@ -418,12 +418,6 @@
 SRG-OS-000458-GPOS-00203
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030490
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchown'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchown
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchown
@@ -424,12 +424,6 @@
 SRG-OS-000474-GPOS-00219
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030480
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchownat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchownat
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchownat
@@ -421,12 +421,6 @@
 SRG-OS-000474-GPOS-00219
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030480
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fremovexattr'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fremovexattr
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fremovexattr
@@ -433,12 +433,6 @@
 SRG-OS-000064-GPOS-00033
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030200
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fsetxattr'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fsetxattr
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fsetxattr
@@ -431,12 +431,6 @@
 SRG-OS-000064-GPOS-00033
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030200
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_lchown'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_lchown
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_lchown
@@ -421,12 +421,6 @@
 SRG-OS-000474-GPOS-00219
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030480
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_lremovexattr'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_lremovexattr
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_lremovexattr
@@ -433,12 +433,6 @@
 SRG-OS-000064-GPOS-00033
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030200
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_lsetxattr'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_lsetxattr
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_lsetxattr
@@ -431,12 +431,6 @@
 SRG-OS-000064-GPOS-00033
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030200
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_removexattr'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_removexattr
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_removexattr
@@ -432,12 +432,6 @@
 SRG-OS-000064-GPOS-00033
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030200
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_setxattr'.
--- xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_setxattr
+++ xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_setxattr
@@ -422,12 +422,6 @@
 SRG-OS-000458-GPOS-00203
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000474-VMM-001940
-
-[reference]:
 RHEL-08-030200
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_execution_chcon'.
--- xccdf_org.ssgproject.content_rule_audit_rules_execution_chcon
+++ xccdf_org.ssgproject.content_rule_audit_rules_execution_chcon
@@ -270,9 +270,6 @@
 SRG-OS-000465-GPOS-00209
 
 [reference]:
-SRG-OS-000463-VMM-001850
-
-[reference]:
 RHEL-08-030260
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_execution_restorecon'.
--- xccdf_org.ssgproject.content_rule_audit_rules_execution_restorecon
+++ xccdf_org.ssgproject.content_rule_audit_rules_execution_restorecon
@@ -242,9 +242,6 @@
 [reference]:
 SRG-OS-000465-GPOS-00209
 
-[reference]:
-SRG-OS-000463-VMM-001850
-
 [rationale]:
 Misuse of privileged functions, either intentionally or unintentionally by
 authorized users, or by unauthorized external entities that have compromised system accounts,

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_execution_semanage'.
--- xccdf_org.ssgproject.content_rule_audit_rules_execution_semanage
+++ xccdf_org.ssgproject.content_rule_audit_rules_execution_semanage
@@ -288,9 +288,6 @@
 SRG-OS-000465-GPOS-00209
 
 [reference]:
-SRG-OS-000463-VMM-001850
-
-[reference]:
 RHEL-08-030313
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_execution_setfiles'.
--- xccdf_org.ssgproject.content_rule_audit_rules_execution_setfiles
+++ xccdf_org.ssgproject.content_rule_audit_rules_execution_setfiles
@@ -60,9 +60,6 @@
 SRG-OS-000465-GPOS-00209
 
 [reference]:
-SRG-OS-000463-VMM-001850
-
-[reference]:
 RHEL-08-030314
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_execution_setsebool'.
--- xccdf_org.ssgproject.content_rule_audit_rules_execution_setsebool
+++ xccdf_org.ssgproject.content_rule_audit_rules_execution_setsebool
@@ -267,9 +267,6 @@
 SRG-OS-000465-GPOS-00209
 
 [reference]:
-SRG-OS-000463-VMM-001850
-
-[reference]:
 RHEL-08-030316
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_execution_seunshare'.
--- xccdf_org.ssgproject.content_rule_audit_rules_execution_seunshare
+++ xccdf_org.ssgproject.content_rule_audit_rules_execution_seunshare
@@ -32,9 +32,6 @@
 [reference]:
 FAU_GEN.1.1.c
 
-[reference]:
-SRG-OS-000463-VMM-001850
-
 [rationale]:
 Misuse of privileged functions, either intentionally or unintentionally by
 authorized users, or by unauthorized external entities that have compromised system accounts,

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_rename'.
--- xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_rename
+++ xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_rename
@@ -425,12 +425,6 @@
 SRG-OS-000468-GPOS-00212
 
 [reference]:
-SRG-OS-000466-VMM-001870
-
-[reference]:
-SRG-OS-000468-VMM-001890
-
-[reference]:
 RHEL-08-030361
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_renameat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_renameat
+++ xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_renameat
@@ -425,12 +425,6 @@
 SRG-OS-000468-GPOS-00212
 
 [reference]:
-SRG-OS-000466-VMM-001870
-
-[reference]:
-SRG-OS-000468-VMM-001890
-
-[reference]:
 RHEL-08-030361
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_rmdir'.
--- xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_rmdir
+++ xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_rmdir
@@ -425,12 +425,6 @@
 SRG-OS-000468-GPOS-00212
 
 [reference]:
-SRG-OS-000466-VMM-001870
-
-[reference]:
-SRG-OS-000468-VMM-001890
-
-[reference]:
 RHEL-08-030361
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_unlink'.
--- xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_unlink
+++ xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_unlink
@@ -425,12 +425,6 @@
 SRG-OS-000468-GPOS-00212
 
 [reference]:
-SRG-OS-000466-VMM-001870
-
-[reference]:
-SRG-OS-000468-VMM-001890
-
-[reference]:
 RHEL-08-030361
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_unlinkat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_unlinkat
+++ xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_unlinkat
@@ -425,12 +425,6 @@
 SRG-OS-000468-GPOS-00212
 
 [reference]:
-SRG-OS-000466-VMM-001870
-
-[reference]:
-SRG-OS-000468-VMM-001890
-
-[reference]:
 RHEL-08-030361
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_chmod'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_chmod
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_chmod
@@ -37,12 +37,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change permissions of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_chown'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_chown
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_chown
@@ -37,12 +37,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change ownership of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_creat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_creat
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_creat
@@ -421,12 +421,6 @@
 SRG-OS-000461-GPOS-00205
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
-[reference]:
 RHEL-08-030420
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchmod'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchmod
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchmod
@@ -37,12 +37,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change permissions of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchmodat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchmodat
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchmodat
@@ -37,12 +37,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change permissions of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchown'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchown
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchown
@@ -37,12 +37,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change ownership of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchownat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchownat
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchownat
@@ -37,12 +37,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change ownership of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fremovexattr'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fremovexattr
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fremovexattr
@@ -37,12 +37,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change permissions of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fsetxattr'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fsetxattr
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fsetxattr
@@ -37,12 +37,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change permissions of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_ftruncate'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_ftruncate
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_ftruncate
@@ -424,12 +424,6 @@
 SRG-OS-000461-GPOS-00205
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
-[reference]:
 RHEL-08-030420
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_lchown'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_lchown
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_lchown
@@ -41,12 +41,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change ownership of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_lremovexattr'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_lremovexattr
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_lremovexattr
@@ -37,12 +37,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change permissions of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_lsetxattr'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_lsetxattr
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_lsetxattr
@@ -37,12 +37,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change permissions of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open
@@ -424,12 +424,6 @@
 SRG-OS-000461-GPOS-00205
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
-[reference]:
 RHEL-08-030420
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at
@@ -421,12 +421,6 @@
 SRG-OS-000461-GPOS-00205
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
-[reference]:
 RHEL-08-030420
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at_o_creat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at_o_creat
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at_o_creat
@@ -401,12 +401,6 @@
 [reference]:
 SRG-OS-000392-GPOS-00172
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to access files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at_o_trunc_write'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at_o_trunc_write
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at_o_trunc_write
@@ -401,12 +401,6 @@
 [reference]:
 SRG-OS-000392-GPOS-00172
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to access files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at_rule_order'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at_rule_order
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at_rule_order
@@ -401,12 +401,6 @@
 [reference]:
 SRG-OS-000392-GPOS-00172
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 The more specific rules cover a subset of events covered by the less specific rules.
 By ordering them from more specific to less specific, it is assured that the less specific

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_o_creat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_o_creat
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_o_creat
@@ -401,12 +401,6 @@
 [reference]:
 SRG-OS-000392-GPOS-00172
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to access files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_o_trunc_write'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_o_trunc_write
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_o_trunc_write
@@ -397,12 +397,6 @@
 [reference]:
 SRG-OS-000392-GPOS-00172
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to access files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_rule_order'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_rule_order
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_rule_order
@@ -401,12 +401,6 @@
 [reference]:
 SRG-OS-000392-GPOS-00172
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 The more specific rules cover a subset of events covered by the less specific rules.
 By ordering them from more specific to less specific, it is assured that the less specific

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat
@@ -424,12 +424,6 @@
 SRG-OS-000461-GPOS-00205
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
-[reference]:
 RHEL-08-030420
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat_o_creat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat_o_creat
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat_o_creat
@@ -401,12 +401,6 @@
 [reference]:
 SRG-OS-000392-GPOS-00172
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to access files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat_o_trunc_write'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat_o_trunc_write
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat_o_trunc_write
@@ -401,12 +401,6 @@
 [reference]:
 SRG-OS-000392-GPOS-00172
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to access files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat_rule_order'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat_rule_order
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat_rule_order
@@ -401,12 +401,6 @@
 [reference]:
 SRG-OS-000392-GPOS-00172
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 The more specific rules cover a subset of events covered by the less specific rules.
 By ordering them from more specific to less specific, it is assured that the less specific

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_removexattr'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_removexattr
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_removexattr
@@ -37,12 +37,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change permissions of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_rename'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_rename
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_rename
@@ -394,12 +394,6 @@
 [reference]:
 SRG-OS-000468-GPOS-00212
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to delete files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_renameat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_renameat
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_renameat
@@ -395,12 +395,6 @@
 [reference]:
 SRG-OS-000468-GPOS-00212
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to delete files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_setxattr'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_setxattr
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_setxattr
@@ -37,12 +37,6 @@
 [reference]:
 CM-6(a)
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to change permissions of files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_truncate'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_truncate
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_truncate
@@ -424,12 +424,6 @@
 SRG-OS-000461-GPOS-00205
 
 [reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
-[reference]:
 RHEL-08-030420
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_unlink'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_unlink
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_unlink
@@ -397,12 +397,6 @@
 [reference]:
 SRG-OS-000468-GPOS-00212
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to delete files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_unlinkat'.
--- xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_unlinkat
+++ xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_unlinkat
@@ -397,12 +397,6 @@
 [reference]:
 SRG-OS-000468-GPOS-00212
 
-[reference]:
-SRG-OS-000458-VMM-001810
-
-[reference]:
-SRG-OS-000461-VMM-001830
-
 [rationale]:
 Unsuccessful attempts to delete files could be an indicator of malicious activity on a system. Auditing
 these events could serve as evidence of potential system compromise.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading_delete'.
--- xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading_delete
+++ xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading_delete
@@ -402,9 +402,6 @@
 
 [reference]:
 SRG-OS-000477-GPOS-00222
-
-[reference]:
-SRG-OS-000477-VMM-001970
 
 [reference]:
 RHEL-08-030390

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading_finit'.
--- xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading_finit
+++ xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading_finit
@@ -404,9 +404,6 @@
 SRG-OS-000477-GPOS-00222
 
 [reference]:
-SRG-OS-000477-VMM-001970
-
-[reference]:
 RHEL-08-030360
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading_init'.
--- xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading_init
+++ xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading_init
@@ -402,9 +402,6 @@
 
 [reference]:
 SRG-OS-000477-GPOS-00222
-
-[reference]:
-SRG-OS-000477-VMM-001970
 
 [reference]:
 RHEL-08-030360

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_login_events_faillock'.
--- xccdf_org.ssgproject.content_rule_audit_rules_login_events_faillock
+++ xccdf_org.ssgproject.content_rule_audit_rules_login_events_faillock
@@ -383,12 +383,6 @@
 SRG-OS-000473-GPOS-00218
 
 [reference]:
-SRG-OS-000473-VMM-001930
-
-[reference]:
-SRG-OS-000470-VMM-001900
-
-[reference]:
 RHEL-08-030590
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_login_events_lastlog'.
--- xccdf_org.ssgproject.content_rule_audit_rules_login_events_lastlog
+++ xccdf_org.ssgproject.content_rule_audit_rules_login_events_lastlog
@@ -407,12 +407,6 @@
 SRG-OS-000470-GPOS-00214
 
 [reference]:
-SRG-OS-000473-VMM-001930
-
-[reference]:
-SRG-OS-000470-VMM-001900
-
-[reference]:
 RHEL-08-030600
 
 [reference]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_login_events_tallylog'.
--- xccdf_org.ssgproject.content_rule_audit_rules_login_events_tallylog
+++ xccdf_org.ssgproject.content_rule_audit_rules_login_events_tallylog
@@ -382,12 +382,6 @@
 [reference]:
 SRG-OS-000473-GPOS-00218
 
-[reference]:
-SRG-OS-000473-VMM-001930
-
-[reference]:
-SRG-OS-000470-VMM-001900
-
 [rationale]:
 Manual editing of these files may indicate nefarious activity, such
 as an attacker attempting to remove evidence of an intrusion.

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands'.
--- xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands
+++ xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands
@@ -443,9 +443,6 @@
 SRG-OS-000327-GPOS-00127
 
 [reference]:
-SRG-OS-000471-VMM-001910
-
-[reference]:
 4.1.13
 
 [rationale]:

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_at'.
--- xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_at
+++ xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_at
@@ -32,9 +32,6 @@
 [reference]:
 FAU_GEN.1.1.c
 
-[reference]:
-SRG-OS-000471-VMM-001910
-
 [rationale]:
 Misuse of privileged functions, either intentionally or unintentionally by
 authorized users, or by unauthorized external entities that have compromised system accounts,

New content has different text for rule 'xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_chage'.
--- xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_chage
+++ xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_chage
@@ -288,9 +288,6 @@
 SRG-OS-000471-GPOS-00215
 
 [reference]:
-SRG-OS-000471-VMM-001910
-
-[reference]:
 RHEL-08-030250
 
 [reference]

... The diff is trimmed here ...

jan-cerny

The changes look OK, but the CI fail on Fedora Latest (Container) is legit, you will need to change test data.

codeclimate · 2023-03-15T16:10:21Z

Code Climate has analyzed commit 3a68d3c and detected 0 issues on this pull request.

The test coverage on the diff in this pull request is 100.0% (50% is the threshold).

This pull request will bring the total coverage in the repository to 51.7% (0.0% change).

View more on Code Climate.

openshift-ci · 2023-03-15T17:39:33Z

@Mab879: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/e2e-aws-rhcos4-moderate	`3a68d3c`	link	true	`/test e2e-aws-rhcos4-moderate`
ci/prow/e2e-aws-rhcos4-e8	`3a68d3c`	link	true	`/test e2e-aws-rhcos4-e8`
ci/prow/e2e-aws-rhcos4-high	`3a68d3c`	link	true	`/test e2e-aws-rhcos4-high`

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

jan-cerny · 2023-03-17T15:19:01Z

Skipping CentOS farm on testing Stream 8 because of ongoing disruption that is urelated to the contents of thi PR. See https://status.testing-farm.io/issues/2023-03-16-centos-stream-8/

Mab879 added 3 commits March 14, 2023 16:13

Remove vmmsrg references from rules

5ae4bfd

This SRG was removed in 2015.

From vmmsrg from documentation and test data

dae3653

Remove vsrg reference from rules

973eafe

Mab879 added Documentation Update in project documentation. Update Rule Issues or pull requests related to Rules updates. labels Mar 15, 2023

Mab879 added this to the 0.1.67 milestone Mar 15, 2023

jan-cerny self-assigned this Mar 15, 2023

jan-cerny requested changes Mar 15, 2023

View reviewed changes

Remove VMM reference from unit tests

3a68d3c

Mab879 mentioned this pull request Mar 15, 2023

Results XCCDF has reference element with empty href violating specification #10332

Closed

jan-cerny approved these changes Mar 17, 2023

View reviewed changes

jan-cerny merged commit 169b17b into ComplianceAsCode:master Mar 17, 2023

Mab879 deleted the vmmsrg_removal branch March 17, 2023 15:40

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Remove VMM SRG References #10336

Remove VMM SRG References #10336

Mab879 commented Mar 15, 2023

github-actions bot commented Mar 15, 2023

github-actions bot commented Mar 15, 2023

jan-cerny left a comment

codeclimate bot commented Mar 15, 2023

openshift-ci bot commented Mar 15, 2023

jan-cerny commented Mar 17, 2023

Remove VMM SRG References #10336

Remove VMM SRG References #10336

Conversation

Mab879 commented Mar 15, 2023

Description:

Rationale:

github-actions bot commented Mar 15, 2023

github-actions bot commented Mar 15, 2023

jan-cerny left a comment

Choose a reason for hiding this comment

codeclimate bot commented Mar 15, 2023

openshift-ci bot commented Mar 15, 2023

jan-cerny commented Mar 17, 2023