From 592ab471f0fa7c9975f27b31e1b1f8db5e44b3ce Mon Sep 17 00:00:00 2001 From: Watson Sato Date: Wed, 14 Apr 2021 08:20:25 +0200 Subject: [PATCH] Add CCEs for RHEL9 rsyslog rules --- .../rsyslog_files_groupownership/rule.yml | 1 + .../rsyslog_files_ownership/rule.yml | 1 + .../rsyslog_files_permissions/rule.yml | 1 + .../guide/system/logging/package_rsyslog_installed/rule.yml | 1 + shared/references/cce-redhat-avail.txt | 4 ---- 5 files changed, 4 insertions(+), 4 deletions(-) diff --git a/linux_os/guide/system/logging/ensure_rsyslog_log_file_configuration/rsyslog_files_groupownership/rule.yml b/linux_os/guide/system/logging/ensure_rsyslog_log_file_configuration/rsyslog_files_groupownership/rule.yml index cd8694e0b28..03c255d197f 100644 --- a/linux_os/guide/system/logging/ensure_rsyslog_log_file_configuration/rsyslog_files_groupownership/rule.yml +++ b/linux_os/guide/system/logging/ensure_rsyslog_log_file_configuration/rsyslog_files_groupownership/rule.yml @@ -24,6 +24,7 @@ severity: medium identifiers: cce@rhel7: CCE-80190-2 cce@rhel8: CCE-80860-0 + cce@rhel9: CCE-83834-2 references: anssi: BP28(R46),BP28(R5) diff --git a/linux_os/guide/system/logging/ensure_rsyslog_log_file_configuration/rsyslog_files_ownership/rule.yml b/linux_os/guide/system/logging/ensure_rsyslog_log_file_configuration/rsyslog_files_ownership/rule.yml index a4ec94444d1..b0386a5ece4 100644 --- a/linux_os/guide/system/logging/ensure_rsyslog_log_file_configuration/rsyslog_files_ownership/rule.yml +++ b/linux_os/guide/system/logging/ensure_rsyslog_log_file_configuration/rsyslog_files_ownership/rule.yml @@ -24,6 +24,7 @@ severity: medium identifiers: cce@rhel7: CCE-80189-4 cce@rhel8: CCE-80861-8 + cce@rhel9: CCE-83946-4 references: anssi: BP28(R46),BP28(R5) diff --git a/linux_os/guide/system/logging/ensure_rsyslog_log_file_configuration/rsyslog_files_permissions/rule.yml b/linux_os/guide/system/logging/ensure_rsyslog_log_file_configuration/rsyslog_files_permissions/rule.yml index f5cc765140a..e11833232fb 100644 --- a/linux_os/guide/system/logging/ensure_rsyslog_log_file_configuration/rsyslog_files_permissions/rule.yml +++ b/linux_os/guide/system/logging/ensure_rsyslog_log_file_configuration/rsyslog_files_permissions/rule.yml @@ -24,6 +24,7 @@ severity: medium identifiers: cce@rhel7: CCE-80191-0 cce@rhel8: CCE-80862-6 + cce@rhel9: CCE-83689-0 references: anssi: BP28(R36) diff --git a/linux_os/guide/system/logging/package_rsyslog_installed/rule.yml b/linux_os/guide/system/logging/package_rsyslog_installed/rule.yml index 9a97c41290b..4afe8c74c77 100644 --- a/linux_os/guide/system/logging/package_rsyslog_installed/rule.yml +++ b/linux_os/guide/system/logging/package_rsyslog_installed/rule.yml @@ -13,6 +13,7 @@ severity: medium identifiers: cce@rhel7: CCE-80187-8 cce@rhel8: CCE-80847-7 + cce@rhel9: CCE-84063-7 references: anssi: BP28(R5),NT28(R46) diff --git a/shared/references/cce-redhat-avail.txt b/shared/references/cce-redhat-avail.txt index e16cec27577..764b1c7c82c 100644 --- a/shared/references/cce-redhat-avail.txt +++ b/shared/references/cce-redhat-avail.txt @@ -175,7 +175,6 @@ CCE-83684-1 CCE-83685-8 CCE-83686-6 CCE-83688-2 -CCE-83689-0 CCE-83690-8 CCE-83695-7 CCE-83696-5 @@ -262,7 +261,6 @@ CCE-83830-0 CCE-83831-8 CCE-83832-6 CCE-83833-4 -CCE-83834-2 CCE-83835-9 CCE-83836-7 CCE-83837-5 @@ -349,7 +347,6 @@ CCE-83942-3 CCE-83943-1 CCE-83944-9 CCE-83945-6 -CCE-83946-4 CCE-83947-2 CCE-83948-0 CCE-83949-8 @@ -436,7 +433,6 @@ CCE-84056-1 CCE-84058-7 CCE-84059-5 CCE-84060-3 -CCE-84063-7 CCE-84064-5 CCE-84065-2 CCE-84066-0