Squashed commit of the following:

commit 8619434 Merge: 6f38f8c c76dfe1 Author: Earl Sampson <ESampson@suse.com> Date: Tue Dec 15 08:27:48 2020 -0600 Merge pull request ComplianceAsCode#39 from SUSE/SLES-12-030200 add rules for SLES-12-030200 commit 6f38f8c Merge: 5c02236 8c16494 Author: Earl Sampson <ESampson@suse.com> Date: Tue Dec 15 08:24:43 2020 -0600 Merge pull request ComplianceAsCode#38 from SUSE/SLES-12-010440 Add rules for SLES-12-010440 STIG commit 5c02236 Merge: 0cb378e 242f9fc Author: Earl Sampson <ESampson@suse.com> Date: Tue Dec 15 08:23:29 2020 -0600 Merge pull request ComplianceAsCode#37 from SUSE/SLES-12-030030 add rules for SLES-12-030030 commit 242f9fc Author: Earl Sampson <ESampson@suse.com> Date: Tue Dec 15 08:23:01 2020 -0600 Update stig.profile commit 910c97e Merge: 9857ac4 0cb378e Author: Earl Sampson <ESampson@suse.com> Date: Tue Dec 15 08:20:25 2020 -0600 Merge branch 'development' into SLES-12-030030 commit 9857ac4 Author: Earl Sampson <ESampson@suse.com> Date: Tue Dec 15 08:15:02 2020 -0600 Update rule.yml commit 0cb378e Merge: 5e7b685 2dd02c9 Author: Earl Sampson <ESampson@suse.com> Date: Tue Dec 15 08:08:22 2020 -0600 Merge pull request ComplianceAsCode#35 from SUSE/SLES-12-030191_works Add rules and remediation for SLES-12-030191 STIG commit c76dfe1 Author: yarunachalam <yarunachalam@suse.com> Date: Mon Dec 14 17:06:51 2020 -0600 add rules for SLES-12-030200 commit 2dd02c9 Author: sampsone <esampson@suse.com> Date: Thu Dec 10 16:04:02 2020 -0600 Add rules and remediation for SLES-12-030191 STIG commit 8c16494 Author: guangyee <gyee@suse.com> Date: Mon Dec 14 23:48:14 2020 +0100 Add rules for SLES-12-010440 STIG commit 5e7b685 Merge: e1103c4 113a02a Author: Earl Sampson <ESampson@suse.com> Date: Mon Dec 14 16:42:35 2020 -0600 Merge pull request ComplianceAsCode#36 from SUSE/SLES-12-010430 Add rules for SLES-12-010430 STIG commit d417b6b Author: yarunachalam <yarunachalam@suse.com> Date: Mon Dec 14 15:58:34 2020 -0600 add rules for SLES-12-030030 commit 113a02a Author: guangyee <gyee@suse.com> Date: Mon Dec 14 22:50:42 2020 +0100 Add rules for SLES-12-010430 STIG commit e1103c4 Merge: 9d75b87 9eb1374 Author: Earl Sampson <ESampson@suse.com> Date: Mon Dec 14 15:24:27 2020 -0600 Merge pull request ComplianceAsCode#34 from SUSE/SLES-12-030020 add rules for SLES-12-030020 commit 9d75b87 Merge: 2d57b35 d70053a Author: Earl Sampson <ESampson@suse.com> Date: Mon Dec 14 15:19:07 2020 -0600 Merge pull request ComplianceAsCode#33 from SUSE/SLES-12-010720 Add SLES-12-010720 commit 9eb1374 Author: yarunachalam <yarunachalam@suse.com> Date: Mon Dec 14 14:59:50 2020 -0600 add rules for SLES-12-030020 commit d70053a Author: mbelur <mbelur@suse.com> Date: Mon Dec 14 21:36:47 2020 +0100 Add SLES-12-010720 commit 2d57b35 Merge: af47528 0121e67 Author: Earl Sampson <ESampson@suse.com> Date: Mon Dec 14 11:25:18 2020 -0600 Merge pull request ComplianceAsCode#31 from SUSE/SLES-12-010360 Add rules for SLES-12-010360 STIG commit 0121e67 Author: Earl Sampson <ESampson@suse.com> Date: Mon Dec 14 11:22:24 2020 -0600 Update stig.profile commit 72563e5 Merge: 1cfc5f6 af47528 Author: Earl Sampson <ESampson@suse.com> Date: Mon Dec 14 11:21:19 2020 -0600 Merge branch 'development' into SLES-12-010360 commit af47528 Merge: 5cea7d3 903223d Author: Earl Sampson <ESampson@suse.com> Date: Mon Dec 14 11:19:46 2020 -0600 Merge pull request ComplianceAsCode#30 from SUSE/SLES-12-010290 Add rules for SLES-12-010290 STIG commit 903223d Merge: 5ccda09 5cea7d3 Author: Earl Sampson <ESampson@suse.com> Date: Mon Dec 14 11:18:32 2020 -0600 Merge branch 'development' into SLES-12-010290 commit 5cea7d3 Merge: e24f6ac 23d048e Author: Earl Sampson <ESampson@suse.com> Date: Mon Dec 14 11:16:32 2020 -0600 Merge pull request ComplianceAsCode#29 from SUSE/SLES-12-010620 Add rules for SLES-12-010620 commit 23d048e Merge: e941db6 e24f6ac Author: Earl Sampson <ESampson@suse.com> Date: Mon Dec 14 11:15:39 2020 -0600 Merge branch 'development' into SLES-12-010620 commit e24f6ac Merge: b4eee96 122ec88 Author: Earl Sampson <ESampson@suse.com> Date: Mon Dec 14 11:13:08 2020 -0600 Merge pull request ComplianceAsCode#28 from SUSE/SLES-12-010260 Add SLES-12-010260 STIG commit 1cfc5f6 Author: guangyee <gyee@suse.com> Date: Sat Dec 12 05:57:56 2020 +0100 Add rules for SLES-12-010360 STIG commit 122ec88 Author: guangyee <gyee@suse.com> Date: Sat Dec 12 00:36:38 2020 +0100 Add SLES-12-010260 STIG commit 5ccda09 Author: guangyee <gyee@suse.com> Date: Sat Dec 12 01:26:12 2020 +0100 Add rules for SLES-12-010290 STIG commit e941db6 Author: mbelur <mbelur@suse.com> Date: Sat Dec 12 01:22:37 2020 +0100 Add rules for SLES-12-010620 commit b4eee96 Merge: 17e111a 1f0433f Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Fri Dec 11 10:19:05 2020 -0500 Merge pull request ComplianceAsCode#21 from SUSE/SLES-12-020070 commit 1f0433f Merge: 85dab91 17e111a Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Fri Dec 11 10:17:54 2020 -0500 Merge branch 'development' into SLES-12-020070 commit 17e111a Merge: 558d1e3 38b01d4 Author: Earl Sampson <ESampson@suse.com> Date: Thu Dec 10 20:36:21 2020 -0600 Merge pull request ComplianceAsCode#27 from SUSE/SLES-12-010231 Add rules for SLES-12-010231 STIG commit 38b01d4 Merge: 9d0dae9 558d1e3 Author: Earl Sampson <ESampson@suse.com> Date: Thu Dec 10 20:35:14 2020 -0600 Merge branch 'development' into SLES-12-010231 commit 558d1e3 Merge: ca312c2 c384142 Author: Earl Sampson <ESampson@suse.com> Date: Thu Dec 10 20:34:27 2020 -0600 Merge pull request ComplianceAsCode#26 from SUSE/SLES-12-010340 Add rules for SLES-12-010340 commit c384142 Merge: 54bd2d1 ca312c2 Author: Earl Sampson <ESampson@suse.com> Date: Thu Dec 10 20:33:37 2020 -0600 Merge branch 'development' into SLES-12-010340 commit ca312c2 Merge: d638701 d83d6c8 Author: Earl Sampson <ESampson@suse.com> Date: Thu Dec 10 20:32:44 2020 -0600 Merge pull request ComplianceAsCode#25 from SUSE/SLES-12-010280 Add rules for SLES-12-010280 commit d83d6c8 Merge: 2b5c3ee d638701 Author: Earl Sampson <ESampson@suse.com> Date: Thu Dec 10 20:31:28 2020 -0600 Merge branch 'development' into SLES-12-010280 commit d638701 Merge: 0d4bb4b be53999 Author: Earl Sampson <ESampson@suse.com> Date: Thu Dec 10 20:30:04 2020 -0600 Merge pull request ComplianceAsCode#24 from SUSE/SLES-12-010270 Add rules for SLES-12-010270 commit 0d4bb4b Merge: d26d46d a178afe Author: Earl Sampson <ESampson@suse.com> Date: Thu Dec 10 20:29:25 2020 -0600 Merge pull request ComplianceAsCode#23 from SUSE/SLES-12-030190 Add rules for SLES-12-030190 STIG commit 9d0dae9 Author: guangyee <gyee@suse.com> Date: Fri Dec 11 01:22:43 2020 +0100 Add rules for SLES-12-010231 STIG commit 54bd2d1 Author: mbelur <mbelur@suse.com> Date: Fri Dec 11 00:46:39 2020 +0100 Add rules for SLES-12-010340 commit 2b5c3ee Author: mbelur <mbelur@suse.com> Date: Thu Dec 10 23:34:17 2020 +0100 Add rules for SLES-12-010280 commit be53999 Author: mbelur <mbelur@suse.com> Date: Thu Dec 10 22:10:36 2020 +0100 Add rules for SLES-12-010270 commit a178afe Author: sampsone <esampson@suse.com> Date: Thu Dec 10 11:49:38 2020 -0600 Add rules for SLES-12-030190 STIG commit d26d46d Merge: 99aa16e f28e22a Author: Earl Sampson <ESampson@suse.com> Date: Thu Dec 10 13:53:49 2020 -0600 Merge pull request ComplianceAsCode#22 from SUSE/SLES-12-010210 Add rules for SLES-12-010210 STIG commit f28e22a Author: guangyee <gyee@suse.com> Date: Thu Dec 10 18:51:33 2020 +0100 Add rules for SLES-12-010210 STIG commit 85dab91 Author: Alexander Bergmann <abergmann@suse.com> Date: Thu Dec 10 15:18:32 2020 +0000 SLES-12-020070 package_audit-audispd-plugins_installed commit 99aa16e Merge: 7cc973e 21d24cd Author: Jeremy Moffitt <jmoffitt@suse.com> Date: Thu Dec 10 06:07:56 2020 -0800 Merge pull request ComplianceAsCode#20 from rtamalin/fix_merge_resolution_errors Fix merge conflict resolution errors commit 21d24cd Author: Fergal Mc Carthy <fergal.mc.carthy@suse.com> Date: Thu Dec 10 08:49:34 2020 -0500 Fix merge conflict resolution errors commit 7cc973e Merge: 0a02e6b aeca62f Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:27:18 2020 -0500 Merge pull request ComplianceAsCode#19 from SUSE/SLES-12-020060 commit aeca62f Merge: 4c21dda 0a02e6b Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:26:45 2020 -0500 Merge branch 'development' into SLES-12-020060 commit 0a02e6b Merge: bdc7519 cd915fb Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:26:12 2020 -0500 Merge pull request ComplianceAsCode#18 from SUSE/SLES-12-020050 commit cd915fb Merge: 7d1aa40 bdc7519 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:25:38 2020 -0500 Merge branch 'development' into SLES-12-020050 commit bdc7519 Merge: 47cb753 23b97d8 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:24:37 2020 -0500 Merge pull request ComplianceAsCode#17 from SUSE/SLES-12-020040 commit 23b97d8 Merge: a1e5218 47cb753 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:23:39 2020 -0500 Merge branch 'development' into SLES-12-020040 commit 47cb753 Merge: f97b7c1 47f336c Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:22:59 2020 -0500 Merge pull request ComplianceAsCode#16 from SUSE/SLES-12-010140 commit 47f336c Merge: 10e5e9b f97b7c1 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:22:01 2020 -0500 Merge branch 'development' into SLES-12-010140 commit f97b7c1 Merge: 44382d5 185e04b Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:21:21 2020 -0500 Merge pull request ComplianceAsCode#15 from SUSE/SLES-12-010410 commit 185e04b Merge: ce59911 44382d5 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:20:48 2020 -0500 Merge branch 'development' into SLES-12-010410 commit 44382d5 Merge: c4d8374 179b5e7 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:20:09 2020 -0500 Merge pull request ComplianceAsCode#13 from SUSE/SLES-12-010030 commit 179b5e7 Merge: 46f6e01 c4d8374 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:19:48 2020 -0500 Merge branch 'development' into SLES-12-010030 commit c4d8374 Merge: 145ff67 7392de0 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:19:00 2020 -0500 Merge pull request ComplianceAsCode#6 from SUSE/SLES-12-010650 commit 7392de0 Merge: d98c1b5 145ff67 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:18:35 2020 -0500 Merge branch 'development' into SLES-12-010650 commit 145ff67 Merge: 412845c bddcefa Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:17:51 2020 -0500 Merge pull request ComplianceAsCode#9 from SUSE/SLES-12-010610 commit bddcefa Merge: 03d1336 412845c Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:16:44 2020 -0500 Merge branch 'development' into SLES-12-010610 commit 412845c Merge: dfbfb26 7de7e10 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:15:47 2020 -0500 Merge pull request ComplianceAsCode#14 from SUSE/SLES-12-020030 commit 7de7e10 Merge: 13a3607 dfbfb26 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:15:06 2020 -0500 Merge branch 'development' into SLES-12-020030 commit dfbfb26 Merge: ba3384b deade29 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:14:16 2020 -0500 Merge pull request ComplianceAsCode#12 from SUSE/enable_bash_service_templates Add SLE for bash service enable/disable commit ba3384b Merge: 857df44 b885701 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:13:33 2020 -0500 Merge pull request ComplianceAsCode#11 from SUSE/SLES-12-020010 commit b885701 Merge: b9965fb 857df44 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:12:56 2020 -0500 Merge branch 'development' into SLES-12-020010 commit 857df44 Merge: 2272211 60d665f Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:12:10 2020 -0500 Merge pull request ComplianceAsCode#8 from SUSE/SLES-12-020000 commit 60d665f Merge: edc56a7 2272211 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Thu Dec 10 08:11:24 2020 -0500 Merge branch 'development' into SLES-12-020000 commit 4c21dda Author: Alexander Bergmann <abergmann@suse.com> Date: Thu Dec 10 13:08:06 2020 +0000 SLES-12-020060: auditd_data_disk_full_action commit 7d1aa40 Author: Alexander Bergmann <abergmann@suse.com> Date: Thu Dec 10 09:57:19 2020 +0000 SLES-12-020050: postfix_client_configure_mail_alias commit a1e5218 Author: Alexander Bergmann <abergmann@suse.com> Date: Thu Dec 10 08:42:48 2020 +0000 SLES-12-020040: auditd_data_retention_action_mail_acct commit 10e5e9b Author: guangyee <gyee@suse.com> Date: Thu Dec 10 07:56:24 2020 +0100 Add rules for SLES-12-010140 STIG commit 03d1336 Merge: 565afd7 2272211 Author: Guang Yee <codefol@gmail.com> Date: Wed Dec 9 22:05:22 2020 -0800 Merge branch 'development' into SLES-12-010610 commit d98c1b5 Merge: bf69194 2272211 Author: Guang Yee <codefol@gmail.com> Date: Wed Dec 9 22:04:20 2020 -0800 Merge branch 'development' into SLES-12-010650 commit 46f6e01 Author: guangyee <gyee@suse.com> Date: Wed Dec 9 23:57:20 2020 +0100 Add rules for SLES-12-010030 STIG commit ce59911 Author: mbelur <mbelur@suse.com> Date: Thu Dec 10 01:18:50 2020 +0100 Add rules for SLES-12-010410 commit 13a3607 Author: Alexander Bergmann <abergmann@suse.com> Date: Thu Dec 10 00:07:56 2020 +0000 SLES-12-020030 auditd_data_retention_space_left commit deade29 Author: Alexander Bergmann <abergmann@suse.com> Date: Wed Dec 9 22:41:16 2020 +0000 Add SLE for bash service enable/disable commit b9965fb Author: Alexander Bergmann <abergmann@suse.com> Date: Wed Dec 9 22:14:59 2020 +0000 SLES-12-020010: Enable auditd Service commit 2272211 Merge: 2b6cd4c 3a58be0 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Wed Dec 9 17:08:57 2020 -0500 Merge pull request ComplianceAsCode#7 from SUSE/SLES-12-010400 commit 3a58be0 Merge: d95aae0 2b6cd4c Author: mbelur <mbelur@suse.com> Date: Wed Dec 9 22:45:14 2020 +0100 Merge branch 'development' into SLES-13-010400 commit 2b6cd4c Merge: c85a0a4 d87a9e7 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Wed Dec 9 16:34:38 2020 -0500 Merge pull request ComplianceAsCode#10 from SUSE/package_installed commit d87a9e7 Author: Alexander Bergmann <abergmann@suse.com> Date: Wed Dec 9 21:25:38 2020 +0000 Add zypper install/remove to bash macros commit 565afd7 Author: guangyee <gyee@suse.com> Date: Wed Dec 9 00:06:21 2020 +0100 Add rules for SLES-12-010610 and SLES-12-010611 commit 19fd9e5 Author: Alexander Bergmann <abergmann@suse.com> Date: Wed Dec 9 11:46:30 2020 +0000 Enable package_installed bash remediation for sle commit edc56a7 Author: Alexander Bergmann <abergmann@suse.com> Date: Wed Dec 9 10:47:11 2020 +0000 SLES-12-020000: audit package must be installed commit d95aae0 Merge: 7b50408 c85a0a4 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Wed Dec 9 04:41:43 2020 -0500 Merge branch 'development' into SLES-12-010400 commit 7b50408 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Wed Dec 9 04:40:46 2020 -0500 Update linux_os/guide/services/obsolete/r_services/no_user_host_based_files/ansible/shared.yml commit bf69194 Merge: 60e5be2 c85a0a4 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Wed Dec 9 04:30:46 2020 -0500 Merge branch 'development' into SLES-12-010650 commit c85a0a4 Merge: e9ff6b3 3f04dd2 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Wed Dec 9 04:28:39 2020 -0500 Merge pull request ComplianceAsCode#5 from SUSE/SLES-12-030260 commit 3f04dd2 Merge: c0d143d e9ff6b3 Author: Alexander Bergmann <abergmann@suse.com> Date: Wed Dec 9 09:04:33 2020 +0100 Merge branch 'development' into SLES-12-030260 commit e9ff6b3 Merge: 1aba6c7 aa136c9 Author: Alexander Bergmann <abergmann@suse.com> Date: Wed Dec 9 09:03:52 2020 +0100 Merge pull request ComplianceAsCode#4 from SUSE/SLES-12-010380 Add rules for SLES-12-010380 commit 7834598 Author: mbelur <mbelur@suse.com> Date: Wed Dec 9 02:29:07 2020 +0100 Add ansible based remediation for rule SLES-14-010400 commit 60e5be2 Author: guangyee <gyee@suse.com> Date: Wed Dec 9 01:19:54 2020 +0100 Add rules for SLES-12-010650 STIG commit c0d143d Author: mbelur <mbelur@suse.com> Date: Tue Dec 8 20:50:38 2020 +0100 Add rules for SLES-12-030260 commit aa136c9 Author: guangyee <gyee@suse.com> Date: Tue Dec 8 18:48:31 2020 +0100 Add rules for SLES-12-010380 commit 1aba6c7 Merge: 0ab49ad 47a11b2 Author: Alexander Bergmann <abergmann@suse.com> Date: Tue Dec 8 12:37:54 2020 +0100 Merge pull request ComplianceAsCode#2 from SUSE/SLES-12-010110 Add rules for SLES-12-010110 commit 47a11b2 Merge: 823ce0e 0ab49ad Author: Alexander Bergmann <abergmann@suse.com> Date: Tue Dec 8 12:37:03 2020 +0100 Merge branch 'development' into SLES-12-010110 commit 0ab49ad Merge: 531107e afd2e65 Author: Alexander Bergmann <abergmann@suse.com> Date: Tue Dec 8 12:34:48 2020 +0100 Merge pull request ComplianceAsCode#3 from SUSE/SLES-12-030150 Add rules for SLES-12-030150 commit afd2e65 Author: mbelur <mbelur@suse.com> Date: Mon Dec 7 22:54:43 2020 +0100 Add rules for SLES-12-030150 commit 823ce0e Author: guangyee <gyee@suse.com> Date: Mon Dec 7 07:00:36 2020 +0100 Add rules for SLES-12-010110 commit 531107e Merge: 06913d7 cc4fc23 Author: Fergal Mc Carthy <rahn.tamalin@gmail.com> Date: Fri Dec 4 06:55:28 2020 -0500 Merge pull request ComplianceAsCode#1 from SUSE/tumbleweed_container Add Dockerfile for the Tumbleweed build container commit cc4fc23 Author: guangyee <gyee@suse.com> Date: Thu Dec 3 23:21:56 2020 +0100 Add Dockerfile for the Tumbleweed build container Per upstream documentation, to create the image: docker build --no-cache --file Dockerfiles/tumbleweed --tag oscap:$(date -u +%Y%m%d%H%M) --tag oscap:latest . To run the build: docker run --cap-drop=all --name oscap-content oscap:latest
guangyee · Jan 4, 2021 · 178a9dd · 178a9dd
1 parent d427422
commit 178a9dd
Show file tree

Hide file tree

Showing 31 changed files with 217 additions and 34 deletions.
diff --git a/Dockerfiles/tumbleweed b/Dockerfiles/tumbleweed
@@ -0,0 +1,29 @@
+FROM opensuse/tumbleweed
+
+ENV OSCAP_USERNAME oscap
+ENV OSCAP_DIR content
+ENV BUILD_JOBS 4
+
+RUN true \
+	&& zypper --non-interactive in cmake ninja expat openscap-utils libxml2-tools libxslt-tools python3-PyYAML python3-Jinja2 python3-pytest python3-pytest-cov python3-Sphinx python3-sphinx_rtd_theme python3-pip python3-recommonmark \
+        && pip install pip --upgrade \
+        && pip install json2html sphinxcontrib.jinjadomain \
+	&& mkdir -p /home/$OSCAP_USERNAME \
+	&& rm -rf /usr/share/doc /usr/share/doc-base \
+		/usr/share/man /usr/share/locale /usr/share/zoneinfo \
+	&& true
+
+WORKDIR /home/$OSCAP_USERNAME
+
+COPY . $OSCAP_DIR/
+
+# clean the build dir in case the user is also building SSG locally
+RUN rm -rf $OSCAP_DIR/build/*
+
+WORKDIR /home/$OSCAP_USERNAME/$OSCAP_DIR/build
+
+CMD true \
+	&& cmake -G Ninja .. \
+	&& ninja -j $BUILD_JOBS \
+	&& ctest --output-on-failure -j $BUILD_JOBS \
+	&& true
diff --git a/linux_os/guide/services/ssh/ssh_server/sshd_disable_user_known_hosts/rule.yml b/linux_os/guide/services/ssh/ssh_server/sshd_disable_user_known_hosts/rule.yml
@@ -20,6 +20,7 @@ severity: medium
 identifiers:
     cce@rhel7: CCE-80372-6
     cce@rhel8: CCE-80902-0
+    cce@sle12: CCE-83056-2 
 
 references:
     stigid@ol7: OL07-00-040380

diff --git a/linux_os/guide/services/ssh/ssh_server/sshd_set_idle_timeout/ansible/shared.yml b/linux_os/guide/services/ssh/ssh_server/sshd_set_idle_timeout/ansible/shared.yml
@@ -1,4 +1,4 @@
-# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_rhv
+# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_rhv,multi_platform_sle
 # reboot = false
 # strategy = restrict
 # complexity = low

diff --git a/linux_os/guide/services/ssh/ssh_server/sshd_set_idle_timeout/rule.yml b/linux_os/guide/services/ssh/ssh_server/sshd_set_idle_timeout/rule.yml
@@ -28,6 +28,7 @@ identifiers:
     cce@rhel7: CCE-27433-2
     cce@rhel8: CCE-80906-1
     cce@rhcos4: CCE-82549-7
+    cce@sle12: CCE-83027-3
 
 references:
     stigid@ol7: OL07-00-040320

diff --git a/linux_os/guide/services/ssh/ssh_server/sshd_set_keepalive/ansible/shared.yml b/linux_os/guide/services/ssh/ssh_server/sshd_set_keepalive/ansible/shared.yml
@@ -0,0 +1,7 @@
+# platform = multi_platform_sle
+# reboot = false
+# strategy = restrict
+# complexity = low
+# disruption = low
+
+{{{ ansible_sshd_set(parameter="ClientAliveCountMax", value="0") }}}
diff --git a/linux_os/guide/services/ssh/ssh_server/sshd_set_keepalive/rule.yml b/linux_os/guide/services/ssh/ssh_server/sshd_set_keepalive/rule.yml
@@ -24,6 +24,7 @@ identifiers:
     cce@rhel7: CCE-27082-7
     cce@rhel8: CCE-80907-9
     cce@rhcos4: CCE-82464-9
+    cce@sle12: CCE-83034-9
 
 references:
     stigid@ol7: OL07-00-040340

diff --git a/linux_os/guide/system/accounts/accounts-banners/banner_etc_issue/ansible/shared.yml b/linux_os/guide/system/accounts/accounts-banners/banner_etc_issue/ansible/shared.yml
@@ -1,4 +1,4 @@
-# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol
+# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_sle
 # reboot = false
 # strategy = unknown
 # complexity = low

diff --git a/linux_os/guide/system/accounts/accounts-banners/banner_etc_issue/rule.yml b/linux_os/guide/system/accounts/accounts-banners/banner_etc_issue/rule.yml
@@ -1,6 +1,6 @@
 documentation_complete: true
 
-prodtype: fedora,rhcos4,ol7,ol8,rhel7,rhel8,rhv4,sle15,wrlinux1019
+prodtype: fedora,rhcos4,ol7,ol8,rhel7,rhel8,rhv4,sle15,wrlinux1019,sle12
 
 title: 'Modify the System Login Banner'
 
@@ -52,6 +52,7 @@ identifiers:
     cce@rhel7: CCE-27303-7
     cce@rhel8: CCE-80763-6
     cce@rhcos4: CCE-82555-4
+    cce@sle12: CCE-83054-7
 
 references:
     stigid@ol7: OL07-00-010050

diff --git a/...et_password_hashing_algorithm/set_password_hashing_algorithm_logindefs/ansible/shared.yml b/...et_password_hashing_algorithm/set_password_hashing_algorithm_logindefs/ansible/shared.yml
@@ -1,4 +1,4 @@
-# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_rhv
+# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_rhv,multi_platform_sle
 # reboot = false
 # strategy = restrict
 # complexity = low

diff --git a/...unts-pam/set_password_hashing_algorithm/set_password_hashing_algorithm_logindefs/rule.yml b/...unts-pam/set_password_hashing_algorithm/set_password_hashing_algorithm_logindefs/rule.yml
@@ -1,6 +1,6 @@
 documentation_complete: true
 
-prodtype: fedora,ol7,ol8,rhel7,rhel8,rhv4,wrlinux1019
+prodtype: fedora,ol7,ol8,rhel7,rhel8,rhv4,wrlinux1019,sle12
 
 title: 'Set Password Hashing Algorithm in /etc/login.defs'
 
@@ -21,6 +21,7 @@ severity: medium
 identifiers:
     cce@rhel7: CCE-82050-6
     cce@rhel8: CCE-80892-3
+    cce@sle12: CCE-83029-9
 
 references:
     stigid@ol7: OL07-00-010210
@@ -33,6 +34,7 @@ references:
     pcidss: Req-8.2.1
     srg: SRG-OS-000073-GPOS-00041
     stigid@rhel7: RHEL-07-010210
+    stigid@sle12: SLES-12-010210
     isa-62443-2013: 'SR 1.1,SR 1.10,SR 1.2,SR 1.3,SR 1.4,SR 1.5,SR 1.7,SR 1.8,SR 1.9,SR 2.1'
     isa-62443-2009: 4.3.3.2.2,4.3.3.5.1,4.3.3.5.2,4.3.3.6.1,4.3.3.6.2,4.3.3.6.3,4.3.3.6.4,4.3.3.6.5,4.3.3.6.6,4.3.3.6.7,4.3.3.6.8,4.3.3.6.9,4.3.3.7.2,4.3.3.7.4
     cobit5: DSS05.04,DSS05.05,DSS05.07,DSS05.10,DSS06.03,DSS06.10

diff --git a/...nts-restrictions/account_expiration/account_disable_post_pw_expiration/ansible/shared.yml b/...nts-restrictions/account_expiration/account_disable_post_pw_expiration/ansible/shared.yml
@@ -1,4 +1,4 @@
-# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_rhv
+# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_rhv,multi_platform_sle
 # reboot = false
 # strategy = restrict
 # complexity = low

diff --git a/...unts/accounts-restrictions/account_expiration/account_disable_post_pw_expiration/rule.yml b/...unts/accounts-restrictions/account_expiration/account_disable_post_pw_expiration/rule.yml
@@ -1,6 +1,6 @@
 documentation_complete: true
 
-prodtype: fedora,rhcos4,ol7,ol8,rhel7,rhel8,rhv4,wrlinux1019
+prodtype: fedora,rhcos4,ol7,ol8,rhel7,rhel8,rhv4,wrlinux1019,sle12
 
 title: 'Set Account Expiration Following Inactivity'
 
@@ -28,6 +28,7 @@ identifiers:
     cce@rhel7: CCE-27355-7
     cce@rhel8: CCE-80954-1
     cce@rhcos4: CCE-82695-8
+    cce@sle12: CCE-83051-3
 
 references:
     stigid@ol7: OL07-00-010310
@@ -40,6 +41,7 @@ references:
     srg: SRG-OS-000118-GPOS-00060
     vmmsrg: SRG-OS-000003-VMM-000030,SRG-OS-000118-VMM-000590
     stigid@rhel7: RHEL-07-010310
+    stigid@sle12: SLES-12-010340
     isa-62443-2013: 'SR 1.1,SR 1.10,SR 1.2,SR 1.3,SR 1.4,SR 1.5,SR 1.7,SR 1.8,SR 1.9,SR 2.1,SR 6.2'
     isa-62443-2009: 4.3.3.2.2,4.3.3.5.1,4.3.3.5.2,4.3.3.6.1,4.3.3.6.2,4.3.3.6.3,4.3.3.6.4,4.3.3.6.5,4.3.3.6.6,4.3.3.6.7,4.3.3.6.8,4.3.3.6.9,4.3.3.7.2,4.3.3.7.3,4.3.3.7.4
     cobit5: DSS01.03,DSS03.05,DSS05.04,DSS05.05,DSS05.07,DSS05.10,DSS06.03,DSS06.10

diff --git a/...ystem/accounts/accounts-restrictions/account_expiration/account_temp_expire_date/rule.yml b/...ystem/accounts/accounts-restrictions/account_expiration/account_temp_expire_date/rule.yml
@@ -1,6 +1,6 @@
 documentation_complete: true
 
-prodtype: fedora,rhel7,rhel8,rhv4
+prodtype: fedora,rhel7,rhel8,rhv4,sle12
 
 title: 'Assign Expiration Date to Temporary Accounts'
 
@@ -30,6 +30,7 @@ severity: unknown
 identifiers:
     cce@rhel7: CCE-81000-2
     cce@rhel8: CCE-82474-8
+    cce@sle12: CCE-83043-0
 
 references:
     disa: CCI-000016,CCI-001682
@@ -42,6 +43,7 @@ references:
     cobit5: DSS01.03,DSS03.05,DSS05.04,DSS05.05,DSS05.07,DSS06.03
     iso27001-2013: A.12.4.1,A.12.4.3,A.6.1.2,A.7.1.1,A.9.1.2,A.9.2.1,A.9.2.2,A.9.2.3,A.9.2.4,A.9.2.6,A.9.3.1,A.9.4.1,A.9.4.2,A.9.4.3,A.9.4.4,A.9.4.5
     cis-csc: 1,12,13,14,15,16,18,3,5,7,8
+    stigid@sle12: SLES-12-010360
 
 ocil_clause: 'any temporary or emergency accounts have no expiration date set or do not expire within a documented time frame'
 

diff --git a/...ounts-restrictions/password_expiration/accounts_maximum_age_login_defs/ansible/shared.yml b/...ounts-restrictions/password_expiration/accounts_maximum_age_login_defs/ansible/shared.yml
@@ -1,4 +1,4 @@
-# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_rhv
+# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_rhv,multi_platform_sle
 # reboot = false
 # strategy = restrict
 # complexity = low

diff --git a/...counts/accounts-restrictions/password_expiration/accounts_maximum_age_login_defs/rule.yml b/...counts/accounts-restrictions/password_expiration/accounts_maximum_age_login_defs/rule.yml
@@ -27,6 +27,7 @@ severity: medium
 identifiers:
     cce@rhel7: CCE-27051-2
     cce@rhel8: CCE-80647-1
+    cce@sle12: CCE-83050-5
 
 references:
     stigid@ol7: OL07-00-010250
@@ -39,6 +40,7 @@ references:
     pcidss: Req-8.2.4
     srg: SRG-OS-000076-GPOS-00044
     stigid@rhel7: RHEL-07-010250
+    stigid@sle12: SLES-12-010280
     isa-62443-2013: 'SR 1.1,SR 1.10,SR 1.2,SR 1.3,SR 1.4,SR 1.5,SR 1.7,SR 1.8,SR 1.9,SR 2.1'
     isa-62443-2009: 4.3.3.2.2,4.3.3.5.1,4.3.3.5.2,4.3.3.6.1,4.3.3.6.2,4.3.3.6.3,4.3.3.6.4,4.3.3.6.5,4.3.3.6.6,4.3.3.6.7,4.3.3.6.8,4.3.3.6.9,4.3.3.7.2,4.3.3.7.4
     cobit5: DSS05.04,DSS05.05,DSS05.07,DSS05.10,DSS06.03,DSS06.10

diff --git a/...ounts-restrictions/password_expiration/accounts_minimum_age_login_defs/ansible/shared.yml b/...ounts-restrictions/password_expiration/accounts_minimum_age_login_defs/ansible/shared.yml
@@ -1,4 +1,4 @@
-# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_rhv
+# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_rhv,multi_platform_sle
 # reboot = false
 # strategy = restrict
 # complexity = low

diff --git a/...counts/accounts-restrictions/password_expiration/accounts_minimum_age_login_defs/rule.yml b/...counts/accounts-restrictions/password_expiration/accounts_minimum_age_login_defs/rule.yml
@@ -26,6 +26,7 @@ severity: medium
 identifiers:
     cce@rhel7: CCE-82036-5
     cce@rhel8: CCE-80648-9
+    cce@sle12: CCE-83049-7
 
 references:
     stigid@ol7: OL07-00-010230
@@ -36,6 +37,7 @@ references:
     nist-csf: PR.AC-1,PR.AC-6,PR.AC-7
     srg: SRG-OS-000075-GPOS-00043
     stigid@rhel7: RHEL-07-010230
+    stigid@sle12: SLES-12-010270
     isa-62443-2013: 'SR 1.1,SR 1.10,SR 1.2,SR 1.3,SR 1.4,SR 1.5,SR 1.7,SR 1.8,SR 1.9,SR 2.1'
     isa-62443-2009: 4.3.3.2.2,4.3.3.5.1,4.3.3.5.2,4.3.3.6.1,4.3.3.6.2,4.3.3.6.3,4.3.3.6.4,4.3.3.6.5,4.3.3.6.6,4.3.3.6.7,4.3.3.6.8,4.3.3.6.9,4.3.3.7.2,4.3.3.7.4
     cobit5: DSS05.04,DSS05.05,DSS05.07,DSS05.10,DSS06.03,DSS06.10

diff --git a/...ccounts-restrictions/password_expiration/accounts_password_set_max_life_existing/rule.yml b/...ccounts-restrictions/password_expiration/accounts_password_set_max_life_existing/rule.yml
@@ -1,6 +1,6 @@
 documentation_complete: true
 
-prodtype: ol7,ol8,rhel7,rhel8,rhv4,wrlinux1019
+prodtype: ol7,ol8,rhel7,rhel8,rhv4,wrlinux1019,sle12
 
 title: 'Set Existing Passwords Maximum Age'
 
@@ -21,6 +21,7 @@ severity: medium
 identifiers:
     cce@rhel7: CCE-80522-6
     cce@rhel8: CCE-82473-0
+    cce@sle12: CCE-83041-4
 
 references:
     stigid@ol7: OL07-00-010260
@@ -29,6 +30,7 @@ references:
     srg: SRG-OS-000076-GPOS-00044
     vmmsrg: SRG-OS-000076-VMM-000430
     stigid@rhel7: RHEL-07-010260
+    stigid@sle12: SLES-12-010290
 
 ocil_clause: 'existing passwords are not configured correctly'
 

diff --git a/...ccounts-restrictions/password_expiration/accounts_password_set_min_life_existing/rule.yml b/...ccounts-restrictions/password_expiration/accounts_password_set_min_life_existing/rule.yml
@@ -1,6 +1,6 @@
 documentation_complete: true
 
-prodtype: ol7,ol8,rhel7,rhel8,rhv4,wrlinux1019
+prodtype: ol7,ol8,rhel7,rhel8,rhv4,wrlinux1019,sle12
 
 title: 'Set Existing Passwords Minimum Age'
 
@@ -21,6 +21,7 @@ severity: medium
 identifiers:
     cce@rhel7: CCE-80521-8
     cce@rhel8: CCE-82472-2
+    cce@sle12: CCE-83042-2
 
 references:
     stigid@ol7: OL07-00-010240
@@ -29,6 +30,7 @@ references:
     srg: SRG-OS-000075-GPOS-00043
     vmmsrg: SRG-OS-000075-VMM000420
     stigid@rhel7: RHEL-07-010240
+    stigid@sle12: SLES-12-010260
 
 ocil_clause: 'existing passwords are not configured correctly'
 

diff --git a/...stem/accounts/accounts-restrictions/password_storage/no_empty_passwords/ansible/sle12.yml b/...stem/accounts/accounts-restrictions/password_storage/no_empty_passwords/ansible/sle12.yml
@@ -0,0 +1,17 @@
+# platform = multi_platform_sle
+# reboot = false
+# strategy = configure
+# complexity = low
+# disruption = medium
+- name: Find files in /etc/pam.d/ with password auth
+  find:
+    paths: /etc/pam.d
+    contains: ".*pam_unix\\.so.*nullok.*"
+    recurse: yes
+  register: find_pam_conf_files_result
+
+- name: Prevent Log In to Accounts with Empty Password
+  replace:
+    dest: "{{ item.path }}"
+    regexp: nullok
+  with_items: "{{ find_pam_conf_files_result.files }}"
diff --git a/...system/accounts/accounts-restrictions/password_storage/no_empty_passwords/oval/shared.xml b/...system/accounts/accounts-restrictions/password_storage/no_empty_passwords/oval/shared.xml
@@ -9,7 +9,11 @@
     <ind:object object_ref="object_no_empty_passwords" />
   </ind:textfilecontent54_test>
   <ind:textfilecontent54_object id="object_no_empty_passwords" version="1">
+{{% if product == "sle12" %}}
+    <ind:filepath operation="pattern match">^/etc/pam.d/.*$</ind:filepath>
+{{% else %}}
     <ind:filepath>/etc/pam.d/system-auth</ind:filepath>
+{{% endif %}}
     <ind:pattern operation="pattern match">^[^#]*\bnullok\b.*$</ind:pattern>
     <ind:instance datatype="int">1</ind:instance>
   </ind:textfilecontent54_object>

diff --git a/.../guide/system/accounts/accounts-restrictions/password_storage/no_empty_passwords/rule.yml b/.../guide/system/accounts/accounts-restrictions/password_storage/no_empty_passwords/rule.yml
@@ -20,6 +20,7 @@ identifiers:
     cce@rhel7: CCE-27286-4
     cce@rhel8: CCE-80841-0
     cce@rhcos4: CCE-82553-9
+    cce@sle12: CCE-83039-8
 
 references:
     stigid@ol7: OL07-00-010290
@@ -33,6 +34,7 @@ references:
     pcidss: Req-8.2.3
     srg: SRG-OS-000480-GPOS-00227
     stigid@rhel7: RHEL-07-010290
+    stigid@sle12: SLES-12-010231
     isa-62443-2013: 'SR 1.1,SR 1.10,SR 1.2,SR 1.3,SR 1.4,SR 1.5,SR 1.7,SR 1.8,SR 1.9,SR 2.1,SR 5.2'
     isa-62443-2009: 4.3.3.2.2,4.3.3.5.1,4.3.3.5.2,4.3.3.6.1,4.3.3.6.2,4.3.3.6.3,4.3.3.6.4,4.3.3.6.5,4.3.3.6.6,4.3.3.6.7,4.3.3.6.8,4.3.3.6.9,4.3.3.7.2,4.3.3.7.3,4.3.3.7.4
     cobit5: APO01.06,DSS05.04,DSS05.05,DSS05.07,DSS05.10,DSS06.02,DSS06.03,DSS06.10

diff --git a/linux_os/guide/system/accounts/accounts-session/accounts_have_homedir_login_defs/rule.yml b/linux_os/guide/system/accounts/accounts-session/accounts_have_homedir_login_defs/rule.yml
@@ -1,6 +1,6 @@
 documentation_complete: true
 
-prodtype: ol7,ol8,rhel7,rhel8,rhv4,sle15,wrlinux1019,fedora
+prodtype: ol7,ol8,rhel7,rhel8,rhv4,sle12,sle15,wrlinux1019,fedora
 
 title: 'Ensure Home Directories are Created for New Users'
 
@@ -21,12 +21,14 @@ severity: medium
 identifiers:
     cce@rhel7: CCE-80434-4
     cce@rhel8: CCE-83789-8
+    cce@sle12: CCE-83053-9
 
 references:
     stigid@ol7: OL07-00-020610
     disa: CCI-000366
     srg: SRG-OS-000480-GPOS-00227
     stigid@rhel7: RHEL-07-020610
+    stigid@sle12: SLES-12-010720
 
 ocil_clause: 'the value of CREATE_HOME is not set to yes, is missing, or the line is commented out'
 

diff --git a/...tem/accounts/accounts-session/user_umask/accounts_umask_etc_login_defs/ansible/shared.yml b/...tem/accounts/accounts-session/user_umask/accounts_umask_etc_login_defs/ansible/shared.yml
@@ -1,4 +1,4 @@
-# platform = Red Hat Virtualization 4,multi_platform_fedora,multi_platform_rhel,multi_platform_ol
+# platform = Red Hat Virtualization 4,multi_platform_fedora,multi_platform_rhel,multi_platform_ol,multi_platform_sle
 # reboot = false
 # strategy = restrict
 # complexity = low

diff --git a/.../guide/system/accounts/accounts-session/user_umask/accounts_umask_etc_login_defs/rule.yml b/.../guide/system/accounts/accounts-session/user_umask/accounts_umask_etc_login_defs/rule.yml
@@ -17,6 +17,7 @@ severity: medium
 identifiers:
     cce@rhel7: CCE-80205-8
     cce@rhel8: CCE-82888-9
+    cce@sle12: CCE-83052-1
 
 references:
     stigid@ol7: OL07-00-020240
@@ -25,6 +26,7 @@ references:
     nist-csf: PR.IP-1,PR.IP-2
     srg: SRG-OS-000480-GPOS-00228
     stigid@rhel7: RHEL-07-020240
+    stigid@sle12: SLES-12-010620
     isa-62443-2013: 'SR 7.6'
     isa-62443-2009: 4.3.4.3.2,4.3.4.3.3
     cobit5: APO13.01,BAI03.01,BAI03.02,BAI03.03,BAI10.01,BAI10.02,BAI10.03,BAI10.05

diff --git a/linux_os/guide/system/auditing/package_audit-audispd-plugins_installed/rule.yml b/linux_os/guide/system/auditing/package_audit-audispd-plugins_installed/rule.yml
@@ -0,0 +1,25 @@
+documentation_complete: true
+
+title: 'Ensure the default plugins for the audit dispatcher are Installed'
+
+description: 'The audit-audispd-plugins package should be installed.'
+
+rationale: 'Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common process in information systems with limited audit storage capacity.'
+
+severity: medium
+
+identifiers:
+    cce@sle12: CCE-83033-1
+
+ocil_clause: 'the package is not installed'
+
+references:
+    stigid@sle12: SLES-12-020070
+    srg@sle12: SRG-OS-000342-GPOS-00133
+    disa@sle12: CCI-001851
+    nist@sle12: AU-4(1)
+
+template:
+    name: package_installed
+    vars:
+        pkgname: audit-audispd-plugins