| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: scap-security-guide-doc | Distribution: CentOS |
| Version: 0.1.69 | Vendor: CentOS |
| Release: 2.el9 | Build date: Mon Aug 21 10:31:44 2023 |
| Group: Unspecified | Build host: x86-03.stream.rdu2.redhat.com |
| Size: 142866131 | Source RPM: scap-security-guide-0.1.69-2.el9.src.rpm |
| Packager: builder@centos.org | |
| Url: https://github.com/ComplianceAsCode/content/ | |
| Summary: HTML formatted security guides generated from XCCDF benchmarks | |
The scap-security-guide-doc package contains HTML formatted documents containing hardening guidances that have been generated from XCCDF benchmarks present in scap-security-guide package.
BSD-3-Clause
* Thu Aug 17 2023 Jan Černý <jcerny@redhat.com> - 0.1.69-2
- Remove OpenSSH crypto policy hardening rules from STIG profile (RHBZ#2221697)
- Fix ANSSI High profile with secure boot (RHBZ#2221697)
* Wed Aug 09 2023 Jan Černý <jcerny@redhat.com> - 0.1.69-1
- Rebase to a new upstream release 0.1.69 (RHBZ#2221697)
- Improve CIS benchmark rules related to auditing of kernel module related events (RHBZ#2209657)
- SSSD configuration files are now created with correct permissions whenever remediating SSSD related rules (RHBZ#2211511)
- add warning about migration of network configuration files when upgrading from RHEL 8 to RHEL 9 (RHBZ#2172555)
- Correct URL used to download CVE checks. (RHBZ#2223178)
- update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155790)
- Fixed excess quotes in journald configuration files (RHBZ#2193169)
- Change rules checking home directories to apply only to local users (RHBZ#2203791)
- Change rules checking password age to apply only to local users (RHBZ#2213958)
- Updated man page (RHBZ#2060028)
* Mon Feb 13 2023 Watson Sato <wsato@redhat.com> - 0.1.66-1
- Rebase to a new upstream release 0.1.66 (RHBZ#2169443)
- Fix remediation of audit watch rules (RHBZ#2169441)
- Fix check firewalld_sshd_port_enabled (RHBZ#2169443)
- Fix accepted control flags for pam_pwhistory (RHBZ#2169443)
- Unselect rule logind_session_timeout (RHBZ#2169443)
- Add support rainer scripts in rsyslog rules (RHBZ#2169445)
* Thu Aug 25 2022 Gabriel Becker <ggasparb@redhat.com> - 0.1.63-5
- OSPP: fix rule related to coredump (RHBZ#2081688)
* Tue Aug 23 2022 Vojtech Polasek <vpolasek@redhat.com> - 0.1.63-4
- use sysctl_kernel_core_pattern rule again in RHEL9 OSPP (RHBZ#2081688)
* Thu Aug 11 2022 Matej Tyc <matyc@redhat.com> - 0.1.63-3
- Readd rules to the benchmark to be compatible across all minor versions of RHEL9 (RHBZ#2117669)
* Wed Aug 10 2022 Vojtech Polasek <vpolasek@redhat.com> - 0.1.63-2
- OSPP: utilize different audit rule set for different hardware platforms (RHBZ#1998583)
- OSPP: update rules related to coredumps (RHBZ#2081688)
- OSPP: update rules related to BPF (RHBZ#2081728)
- fix description of require_singleuser_mode (RHBZ#2092799)
- fix remediation of OpenSSL cryptopolicy (RHBZ#2108569)
- OSPP: use minimal Authselect profile(RHBZ#2114979)
* Mon Aug 01 2022 Vojtech Polasek <vpolasek@redhat.com> - 0.1.63-1
- Rebase to a new upstream release 0.1.63 (RHBZ#2070563)
* Mon Jul 18 2022 Vojtech Polasek <vpolasek@redhat.com> - 0.1.62-2
- Remove sysctl_fs_protected_* rules from RHEL9 OSPP (RHBZ#2081719)
- Make rule audit_access_success_ unenforcing in RHEL9 OSPP (RHBZ#2058154)
- Drop zipl_vsyscall_argument rule from RHEL9 OSPP profile (RHBZ#2060049)
- make sysctl_user_max_user_namespaces in RHEL9 OSPP (RHBZ#2083716)
- Remove some sysctl rules related to network from RHEL9 OSPP (RHBZ#2081708)
- Add rule to check if Grub2 recovery is disabled to RHEL9 OSPP (RHBZ#2092809)
- Add rule grub2_systemd_debug-shell_argument_absent (RHBZ#2092840)
- Remove rule accounts_password_minlen_login_defs from all profiles (RHBZ#2073040)
- Remove rules related to remove logging from RHEL9 OSPP (RHBZ#2105016)
- Remove sshd_enable_strictmodes from OSPP (RHBZ#2105278)
- Remove rules related to NIS services (RHBZ#2096602)
- Make rule stricter when checking for FIPS crypto-policies (RHBZ#2057082)
* Wed Jun 01 2022 Matej Tyc <matyc@redhat.com> - 0.1.62-1
- Rebase to a new upstream release (RHBZ#2070563)
* Mon Feb 21 2022 Gabriel Becker <ggasparb@redhat.com> - 0.1.60-5
- Remove tmux process runinng check in configure_bashrc_exec_tmux (RHBZ#2056847)
- Fix issue with getting STIG items in create_scap_delta_tailoring.py (RHBZ#2014561)
- Update rule enable_fips_mode to check only for technical state (RHBZ#2057457)
* Tue Feb 15 2022 Watson Sato <wsato@redhat.com> - 0.1.60-4
- Fix Ansible service disabled tasks (RHBZ#2014561)
- Update description of OSPP profile (RHBZ#2045386)
- Add page_aloc.shuffle rules for OSPP profile (RHBZ#2055118)
* Mon Feb 14 2022 Gabriel Becker <ggasparb@redhat.com> - 0.1.60-3
- Update sudoers rules in RHEL8 STIG V1R5 (RHBZ#2045403)
- Add missing SRG references in RHEL8 STIG V1R5 rules (RHBZ#2045403)
- Update chronyd_or_ntpd_set_maxpoll to disregard server and poll directives (RHBZ#2045403)
- Fix GRUB2 rule template to configure the module correctly on RHEL8 (RHBZ#2014561)
- Update GRUB2 rule descriptions (RHBZ#2020623)
- Make package_rear_installed not applicable on AARCH64 (RHBZ#2014561)
* Fri Feb 11 2022 Watson Sato <wsato@redhat.com> - 0.1.60-2
- Update OSPP profile (RHBZ#2016038, RHBZ#2043036, RHBZ#2020670, RHBZ#2046289)
* Thu Jan 27 2022 Watson Sato <wsato@redhat.com> - 0.1.60-1
- Rebase to a new upstream release (RHBZ#2014561)
* Wed Dec 08 2021 Gabriel Becker <ggasparb@redhat.com> - 0.1.59-1
- Rebase to a new upstream release (RHBZ#2014561)
- Enable Centos Stream 9 content (RHBZ#2021284)
* Fri Oct 15 2021 Matej Tyc <matyc@redhat.com> - 0.1.58-1
- Rebase to a new upstream release (RHBZ#2014561)
- Disable profiles that we disable in RHEL8
- Add a VM wait handling to fix issues with tests.
* Wed Aug 25 2021 Matej Tyc <matyc@redhat.com> - 0.1.57-5
- Fix remediations applicability of zipl rules
Resolves: rhbz#1996847
* Tue Aug 24 2021 Matej Tyc <matyc@redhat.com> - 0.1.57-4
- Fix a broken HTTP link
Add CIS profile based on RHEL8 CIS, fix its Crypto Policy usage
Resolves: rhbz#1962564
* Tue Aug 17 2021 Matej Tyc <matyc@redhat.com> - 0.1.57-3
- Use SSHD directory-based configuration.
Resolves: rhbz#1962564
- Introduce ISM kickstarts
Resolves: rhbz#1978290
- Deliver numerous RHEL9 fixes to rules - see related BZs for details.
TLDR: Enable remediations by means of platform metadata,
enable the RHEL9 GPG rule, introduce the s390x platform,
fix the ctrl-alt-del reboot disable, fix grub2 UEFI config file location,
address the subscription-manager package merge, and
enable and select more rules applicable to RHEL9.
Resolves: rhbz#1987227
Resolves: rhbz#1987226
Resolves: rhbz#1987231
Resolves: rhbz#1988289
/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_enhanced.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_high.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_intermediary.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_minimal.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_advanced.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_basic.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_intermediate.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_server_l1.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_workstation_l1.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_workstation_l2.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cui.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-e8.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-hipaa.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-index.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ism_o.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ospp.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-pci-dss.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-stig.html /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-stig_gui.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_enhanced.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_high.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_intermediary.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_minimal.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_advanced.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_basic.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_intermediate.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_server_l1.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_workstation_l1.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_workstation_l2.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cui.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-e8.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-hipaa.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-index.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ism_o.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ospp.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-pci-dss.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-stig.html /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-stig_gui.html /usr/share/doc/scap-security-guide/tables/table-rhel9-cces.html /usr/share/doc/scap-security-guide/tables/table-rhel9-srgmap-flat.html /usr/share/doc/scap-security-guide/tables/table-rhel9-srgmap.html
Generated by rpm2html 1.8.1
Fabrice Bellet, Wed Apr 24 05:23:50 2024