معرفی شرکت ها

scap-security-guide-0.1.72-2.el8.noarch.rpm

Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر
Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر
Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر
Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر
Card image cap
تبلیغات ما

مشتریان به طور فزاینده ای آنلاین هستند. تبلیغات می تواند به آنها کمک کند تا کسب و کار شما را پیدا کنند.

مشاهده بیشتر

توضیحات

Security guidance and baselines in SCAP formats
ویژگی مقدار
سیستم عامل Linux
توزیع CentOS 8-stream
مخزن Centos AppStream noarch
نام بسته scap-security-guide
نام فایل بسته scap-security-guide-0.1.72-2.el8.noarch.rpm
نسخه بسته 0.1.72
انتشار بسته 2.el8
معماری بسته noarch
نگهدارنده -
تاریخ ساخت Mon 19 Feb 2024 02
هاست سازنده x86-01.stream.rdu2.redhat.com
نوع بسته .rpm
آدرس صفحه اصلی https://github.com/ComplianceAsCode/content/
مجوز BSD-3-Clause
حجم دانلود 15M
حجم نصب 454.117M
The scap-security-guide project provides a guide for configuration of the system from the final system's security point of view. The guidance is specified in the Security Content Automation Protocol (SCAP) format and constitutes a catalog of practical hardening advice, linked to government requirements where applicable. The project bridges the gap between generalized policy requirements and specific implementation guidelines. The system administrator can use the oscap CLI tool from openscap-scanner package, or the scap-workbench GUI tool from scap-workbench package to verify that the system conforms to provided guideline. Refer to scap-security-guide(8) manual page for further information.


جایگزین ها

بسته نسخه معماری مخزن
scap-security-guide-0.1.54-5.el8.noarch.rpm 0.1.54 noarch CentOS AppStream
scap-security-guide-0.1.56-1.el8.noarch.rpm 0.1.56 noarch CentOS AppStream
scap-security-guide-0.1.56-2.el8.noarch.rpm 0.1.56 noarch CentOS AppStream
scap-security-guide-0.1.57-1.el8.noarch.rpm 0.1.57 noarch CentOS AppStream
scap-security-guide-0.1.57-4.el8.noarch.rpm 0.1.57 noarch CentOS AppStream
scap-security-guide-0.1.57-5.el8.noarch.rpm 0.1.57 noarch CentOS AppStream
scap-security-guide-0.1.59-1.el8.noarch.rpm 0.1.59 noarch CentOS AppStream
scap-security-guide-0.1.60-1.el8.noarch.rpm 0.1.60 noarch CentOS AppStream
scap-security-guide-0.1.60-4.el8.noarch.rpm 0.1.60 noarch CentOS AppStream
scap-security-guide-0.1.60-7.el8.noarch.rpm 0.1.60 noarch CentOS AppStream
scap-security-guide-0.1.60-9.el8.noarch.rpm 0.1.60 noarch CentOS AppStream
scap-security-guide-0.1.62-1.el8.noarch.rpm 0.1.62 noarch CentOS AppStream
scap-security-guide-0.1.63-1.el8.noarch.rpm 0.1.63 noarch CentOS AppStream
scap-security-guide-0.1.63-4.el8.noarch.rpm 0.1.63 noarch CentOS AppStream
scap-security-guide-0.1.63-5.el8.noarch.rpm 0.1.63 noarch CentOS AppStream
scap-security-guide-0.1.66-2.el8.noarch.rpm 0.1.66 noarch CentOS AppStream
scap-security-guide-0.1.69-2.el8.noarch.rpm 0.1.69 noarch CentOS AppStream
scap-security-guide-doc-0.1.54-5.el8.noarch.rpm 0.1.54 noarch CentOS AppStream
scap-security-guide-doc-0.1.56-1.el8.noarch.rpm 0.1.56 noarch CentOS AppStream
scap-security-guide-doc-0.1.56-2.el8.noarch.rpm 0.1.56 noarch CentOS AppStream
scap-security-guide-doc-0.1.57-1.el8.noarch.rpm 0.1.57 noarch CentOS AppStream
scap-security-guide-doc-0.1.57-4.el8.noarch.rpm 0.1.57 noarch CentOS AppStream
scap-security-guide-doc-0.1.57-5.el8.noarch.rpm 0.1.57 noarch CentOS AppStream
scap-security-guide-doc-0.1.59-1.el8.noarch.rpm 0.1.59 noarch CentOS AppStream
scap-security-guide-doc-0.1.60-1.el8.noarch.rpm 0.1.60 noarch CentOS AppStream
scap-security-guide-doc-0.1.60-4.el8.noarch.rpm 0.1.60 noarch CentOS AppStream
scap-security-guide-doc-0.1.60-7.el8.noarch.rpm 0.1.60 noarch CentOS AppStream
scap-security-guide-doc-0.1.60-9.el8.noarch.rpm 0.1.60 noarch CentOS AppStream
scap-security-guide-doc-0.1.62-1.el8.noarch.rpm 0.1.62 noarch CentOS AppStream
scap-security-guide-doc-0.1.63-1.el8.noarch.rpm 0.1.63 noarch CentOS AppStream
scap-security-guide-doc-0.1.63-4.el8.noarch.rpm 0.1.63 noarch CentOS AppStream
scap-security-guide-doc-0.1.63-5.el8.noarch.rpm 0.1.63 noarch CentOS AppStream
scap-security-guide-doc-0.1.66-2.el8.noarch.rpm 0.1.66 noarch CentOS AppStream
scap-security-guide-doc-0.1.69-2.el8.noarch.rpm 0.1.69 noarch CentOS AppStream
scap-security-guide-doc-0.1.72-2.el8.noarch.rpm 0.1.72 noarch CentOS AppStream


نیازمندی

مقدار نام
>= 1.2.5 openscap-scanner
- xml-common


ارائه دهنده

مقدار نام
- openscap-content
= 0.1.72-2.el8 scap-security-guide


نحوه نصب


نصب پکیج rpm scap-security-guide:

    sudo dnf install scap-security-guide-0.1.72-2.el8.noarch.rpm


فایل ها

مسیرها
/usr/share/doc/scap-security-guide/Contributors.md
/usr/share/doc/scap-security-guide/LICENSE
/usr/share/doc/scap-security-guide/README.md
/usr/share/man/man8/scap-security-guide.8.gz
/usr/share/scap-security-guide/ansible
/usr/share/scap-security-guide/ansible/centos7-playbook-C2S.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-anssi_nt28_enhanced.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-anssi_nt28_high.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-anssi_nt28_intermediary.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-anssi_nt28_minimal.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-cis.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-cis_server_l1.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-cis_workstation_l1.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-cis_workstation_l2.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-cjis.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-cui.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-e8.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-hipaa.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-ncp.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-ospp.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-pci-dss.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-rhelh-stig.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-rhelh-vpp.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-rht-ccp.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-standard.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-stig.yml
/usr/share/scap-security-guide/ansible/centos7-playbook-stig_gui.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-anssi_bp28_enhanced.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-anssi_bp28_high.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-anssi_bp28_intermediary.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-anssi_bp28_minimal.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-cis.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-cis_server_l1.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-cis_workstation_l1.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-cis_workstation_l2.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-cui.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-e8.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-hipaa.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-ism_o.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-ospp.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-pci-dss.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-stig.yml
/usr/share/scap-security-guide/ansible/centos8-playbook-stig_gui.yml
/usr/share/scap-security-guide/ansible/firefox-playbook-cusp_firefox.yml
/usr/share/scap-security-guide/ansible/firefox-playbook-stig.yml
/usr/share/scap-security-guide/ansible/rhel6-playbook-C2S.yml
/usr/share/scap-security-guide/ansible/rhel6-playbook-CS2.yml
/usr/share/scap-security-guide/ansible/rhel6-playbook-CSCF-RHEL6-MLS.yml
/usr/share/scap-security-guide/ansible/rhel6-playbook-desktop.yml
/usr/share/scap-security-guide/ansible/rhel6-playbook-fisma-medium-rhel6-server.yml
... and 210 more


گزارش تغییرات

تاریخ آخرین تغییر جزئیات
2024-02-16

Unlist profiles no longer maintained in RHEL8.

2024-02-14

Rebase to a new upstream release 0.1.72 (RHEL-25250)
Increase CIS standards coverage regarding SSH and cron (RHEL-1314)
Increase compatibility of accounts_tmout rule for ksh (RHEL-16896 and RHEL-1811)
Align Ansible and Bash remediation in sssd_certificate_verification rule (RHEL-1313)
Add a warning to rule service_rngd_enabled about rule applicability (RHEL-1819)
Add rule to terminate idle user sessions after defined time (RHEL-1801)
Allow spaces around equal sign in /etc/sudoers (RHEL-1904)
Add remediation for rule fapolicy_default_deny (RHEL-1817)
Fix invalid syntax in file /usr/share/scap-security-guide/ansible/rhel8-playbook-ospp.yml (RHEL-19127)
Refactor ensure_pam_wheel_group_empty (RHEL-1905)
Prevent remediation of display_login_attempts rule from creating redundant configuration entries (RHEL-1809)
Update PCI-DSS to v4 (RHEL-1808)
Fix regex in Ansible remediation of configure_ssh_crypto_policy (RHEL-1820)

2023-08-17

remove problematic rule from ANSSI High profile (RHBZ#2221695)

2023-08-10

Rebase to a new upstream release 0.1.69 (RHBZ#2221695)
Fixed CCE link URL (RHBZ#2178516)
align remediations with rule description for rule configuring OpenSSL cryptopolicy (RHBZ#2192893)
Add rule audit_rules_login_events_faillock to STIG profile (RHBZ#2167999)
Fixed rules related to AIDE configuration (RHBZ#2175684)
Allow default permissions for files stored on EFI FAT partitions (RHBZ#2184487)
Add appropriate STIGID to accounts_passwords_pam_faillock_interval rule (RHBZ#2209073)
improved and unified OVAL checks checking for interactive users (RHBZ#2157877)
update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155789)
unify OVAL checks to correctly identify interactive users (RHBZ#2178740)
make rule checking for Postfix unrestricted relay accept more variants of valid configuration syntax (RHBZ#2170530)
Fixed excess quotes in journald configuration files (RHBZ#2169857)
rules related to polyinstantiated directories are not applied when building images for Image Builder (RHBZ#2130182)
evaluation and remediation of rules related to mount points have been enhanced for Image Builder (RHBZ#2130185)
do not enable FIPS mode when creating hardened images for Image Builder (RHBZ#2130181)
Correct URL used to download CVE checks (RHBZ#2222583)
mention exact required configuration value in description of some PAM related rules (RHBZ#2175882)
make mount point related rules not applicable when no such mount points exist (RHBZ#2176008)
improve checks determining if FIPS mode is enabled (RHBZ#2129100)

2023-02-13

Unselect rule logind_session_timeout (RHBZ#2158404)

2023-02-06

Rebase to a new upstream release 0.1.66 (RHBZ#2158404)
Update RHEL8 STIG profile to V1R9 (RHBZ#2152658)
Fix levels of CIS rules (RHBZ#2162803)
Remove unused RHEL8 STIG control file (RHBZ#2156192)
Fix accounts_password_pam_unix_remember's check and remediations (RHBZ#2153547)
Fix handling of space in sudo_require_reauthentication (RHBZ#2152208)
Add rule for audit immutable login uids (RHBZ#2151553)
Fix remediation of audit watch rules (RHBZ#2119356)
Align file_permissions_sshd_private_key with DISA Benchmark (RHBZ#2115343)
Fix applicability of kerberos rules (RHBZ#2099394)
Add support rainer scripts in rsyslog rules (RHBZ#2072444)

2023-01-10

Update RHEL8 STIG profile to V1R8 (RHBZ#2148446)
Add rule warning for sysctl IPv4 forwarding config (RHBZ#2118758)
Fix remediation for firewalld_sshd_port_enabled (RHBZ#2116474)
Fix compatibility with Ansible 2.14

2022-08-17

Fix check of enable_fips_mode on s390x (RHBZ#2070564)

2022-08-15

Fix Ansible partition conditional (RHBZ#2032403)

2022-08-10

aligning with the latest STIG update (RHBZ#2112937)
OSPP: use Authselect minimal profile (RHBZ#2117192)
OSPP: change rules for protecting of boot (RHBZ#2116440)
add warning about configuring of TCP queues to rsyslog_remote_loghost (RHBZ#2078974)
fix handling of Defaults clause in sudoers (RHBZ#2083109)
make rules checking for mount options of /tmp and /var/tmp applicable only when the partition really exists (RHBZ#2032403)
fix handling of Rsyslog include directives (RHBZ#2075384)

2022-08-01

Rebase to a new upstream release 0.1.63 (RHBZ#2070564)

2022-06-01

Rebase to a new upstream release (RHBZ#2070564)

2022-05-17

Fix validation of OVAL 5.10 content (RHBZ#2079241)
Fix Ansible sysctl remediation (RHBZ#2079241)

2022-05-03

Update to ensure a sysctl option is not defined in multiple files (RHBZ#2079241)
Update RHEL8 STIG profile to V1R6 (RHBZ#2079241)

2022-02-24

Resize ANSSI kickstart partitions to accommodate GUI installs (RHBZ#2058033)

2022-02-23

Fix another issue with getting STIG items in create_scap_delta_tailoring.py (RHBZ#2014485)