ComplianceAsCode/content

Issues

• Failed on "Set SELinux boolean ssh_sysadm_login accordingly"

  #12022 opened 4 days ago by c0debreaker
  2

• mount_option_nodev_nonroot_local_partitions reported as failing after scan of IB created image

  #11996 opened 14 days ago by vojtapolasek
  1

• test scenario for service_bluetooth_disabled is not causing expected fail

  #11949 opened 6 days ago by vojtapolasek
  3

• test scenarios for firewalld_sshd_port_enabled are failing on RHEL 8.6

  #11947 opened 6 days ago by vojtapolasek
  4

• content_rule_verify_use_mappers regular expression needs improvement

  #11871 opened a month ago by pfuntner
  0

• aide_use_fips_hashes fails after remediation

  #12009 opened 9 days ago by christopher-davidson
  1

• Fedora Workstation 40 Remediations

  #12007 opened 9 days ago by edmerrett
  0

• Scap Security Guide for Amazon Linux 2/ 2023 versions

  #11785 opened 2 months ago by hipponix
  4

• firewalld_sshd_port_enabled fails to remediate on aarch64

  #11936 opened 13 days ago by vojtapolasek
  5

• "<" operator in jq filter fails the build

  #11922 opened a month ago by ermeratos
  4

• mount_option_boot_nosuid fails to remediate with Ansible

  #11933 opened 14 days ago by vojtapolasek
  6

• CIS 5.5.2 Ensure system accounts are secured

  #11910 opened 16 days ago by marcofortina
  5

• Possibly add ensure_gpgcheck_local_packages ds_unselect for ANSSI

  #11926 opened 19 days ago by Mab879
  2

• sudo is broken in testing environment with ANSSI High

  #11925 opened 19 days ago by Mab879
  1

• OpenSCAP Ubuntu 20.04 STIG Profile Issue with Banner Test

  #11985 opened 19 days ago by bdou
  2

• Issue on check on firewall rules (Ubuntu 22-04 + UFW)

  #11907 opened a month ago by marcofortina
  5

• zipl_bootmap_is_up_to_date is failing after Ansible remediation

  #11944 opened 19 days ago by vojtapolasek
  2

• chronyd_or_ntpd_set_maxpoll is not remediated by Ansible

  #11934 opened 21 days ago by vojtapolasek
  2

• Should files in /tmp be checked for permissions when using tmpfs?

  #11972 opened 21 days ago by marcusburghardt
  0

• CIS 1.3.1 Ensure AIDE is installed

  #11929 opened a month ago by marcofortina
  4

• CIS 4.1.3.14 Ensure events that modify the system's Mandatory Access Controls are collected

  #11930 opened a month ago by marcofortina
  0

• accounts_umask_etc_bashrc is misaligned with RHEL 9 STIG

  #11937 opened 22 days ago by vojtapolasek
  4

• [BUG] RHEL-related automation should not inject log-collector hostname into /etc/rsyslog.conf

  #11812 opened 2 months ago by ferricoxide
  4

• `audit_rules_networkconfig_modification_network_scripts` is broken in Automatus

  #11940 opened 23 days ago by comps
  0

• RHEL 8/9 - Unexpected active sessions stop by systemd-logind

  #11923 opened a month ago by lsimmons1957
  0

• Assertion failure with Debian Bookworm

  #11909 opened a month ago by orontee
  0

• CCE-88173-0 is `notchecked` by SSG, however for DISA STIG it `fail`

  #11802 opened 2 months ago by mildas
  4

• auditd_audispd_configure_sufficiently_large_partition reports unknown after #11816

  #11891 opened a month ago by marcusburghardt
  2

• "Record Attempts to Alter Logon and Logout Events" issues on Ubuntu 22.04

  #11902 opened a month ago by marcofortina
  5

• Problem with rule "Verify Group Who Owns /etc/cron.allow file"

  #11898 opened a month ago by marcofortina
  2

• You can't use `sed -i` on /etc/sysctl.d/*.conf

  #11908 opened a month ago by neutronscott
  1

• Rule "Configure AIDE to Verify the Audit Tools" fails on Ubuntu 22.04

  #11895 opened a month ago by marcofortina
  6

• wireless_disable_interfaces: Missing Ubuntu specific ansible remediation

  #11904 opened a month ago by dodys
  0

• network_sniffer_disabled RHEL8 Playbook Task Failing

  #11901 opened a month ago by adampankow
  0

• CIS 5.2.3.4 audit date and time fails in the CIS Assessor after remediation

  #11885 opened a month ago by Mackemania
  0

• Allow to change Security Context from values.yaml for installation via Helm Chart

  #11879 opened a month ago by SitoRBJ
  0

• Failed to build rhel8 content in lab1 environment

  #11876 opened a month ago by qnfm
  0

• rhel8-playbook-stig.yml and rhel9-playbook-stig.yml using stale ansible_facts

  #11865 opened a month ago by msakhwand
  0

• Assistance Needed with Locating SCAP Files

  #11830 opened a month ago by fopson
  1

• CCE-90811-1 is `notselected` by SSG, however for DISA STIG it `fail`

  #11803 opened a month ago by mildas
  1

• Investigate if other banners have the same behavior of /etc/motd banner as described in #11826

  #11844 opened a month ago by ggbecker
  0

• Bash remediation against STIG for RHEL9 (maybe others) in Image Builder creates a bogus `/etc/fstab` entry

  #11795 opened a month ago by evgenyz
  0

• Ansible remediation on Ubuntu looks for wrong PAM files

  #11817 opened a month ago by naugler
  1

• ANSSI profile configures unsupported password hashing algorithm on RHEL 8

  #11806 opened 2 months ago by vojtapolasek
  1

• harden_sshd_ciphers_openssh_conf_crypto_policy is misaligned with DISA

  #11804 opened 2 months ago by mildas
  2

• Content is not SCAP valid

  #11810 opened 2 months ago by mildas
  2

• Chronyd rules' link http://chrony.tuxfamily.org link times out

  #11801 opened 2 months ago by mildas
  2

• PCI-DSS generated blueprint missing `firewalld` package

  #11780 opened 2 months ago by kingsleyzissou
  0

• R38 ANSSI wrong file permissions

  #11779 opened 2 months ago by obp-anssi
  2

• compare_results.py: show rule ID in case one of results is "not applicable"

  #11786 opened 2 months ago by vojtapolasek
  0