Align OL8 STIG profile with OL8 DISA STIG V2R7

[mrkanon]

Description:

SITG ID's to remove

• OL08-00-010660 - accounts_user_dot_no_world_writable_programs
• OL08-00-020340 - display_login_attempts

STIG ID's to update

• OL08-00-010291 - harden_sshd_ciphers_opensshserver_conf_crypto_policy
  • Updated SSH server crypto-policies ciphers.
• OL08-00-020035 - logind_session_timeout
  • Changed StopIdleSessionSec to 10 minutes of inactivity.
• OL08-00-030000 - audit_rules_suid_privilege_function
  • Added “-F euid=0” filter to audit rule.
• OL08-00-020060 - dconf_gnome_screensaver_idle_delay
  • Updated GNOME session lock to 10 minutes of inactivity with 'idle-delay'.

STIG ID's to add

• OL08-00-020040 - accounts_tmout

OL8 references updated to V2R7

Rationale:

Be aligned with OL8 DISA STIG

[github-actions]

This datastream diff is auto generated by the check Compare DS/Generate Diff

Click here to see the full diff

bash remediation for rule 'xccdf_org.ssgproject.content_rule_audit_rules_suid_privilege_function' differs.
--- xccdf_org.ssgproject.content_rule_audit_rules_suid_privilege_function
+++ xccdf_org.ssgproject.content_rule_audit_rules_suid_privilege_function
@@ -8,9 +8,7 @@
 for ARCH in "${RULE_ARCHS[@]}"
 do
 	ACTION_ARCH_FILTERS="-a always,exit -F arch=$ARCH"
-    
 	OTHER_FILTERS="-C uid!=euid -F euid=0"
-	
 	AUID_FILTERS=""
 	SYSCALL="execve"
     
@@ -328,9 +326,7 @@
 for ARCH in "${RULE_ARCHS[@]}"
 do
 	ACTION_ARCH_FILTERS="-a always,exit -F arch=$ARCH"
-    
 	OTHER_FILTERS="-C gid!=egid -F egid=0"
-	
 	AUID_FILTERS=""
 	SYSCALL="execve"
     

[mrkanon]

/retest

[Mab879]

Overriding CODEOWNERS as @mrkanon cannot approve his own PRs.