ansible-lockdown/RHEL6-STIG

Move naming and tagging to use STIG ID (RHEL-06-XXXXX) instead of Vuln ID (V-XXXXX)

shepdelacreme opened this issue · 4 comments

Should move tagging and task naming to use the STIG ID form to be consistent with the RHEL7 role.

would also be good to have a var for each item so you can en/disable items w/ host_vars

What will the process be when the STIG data changes drastically? We're seeing this in some of the RHEL 7 newer STIGs. Also, I've been told but have not personally confirmed that DISA is re-using VIDs across STIGs for totally different items.

@LeamHall yeah we experienced the "big change" with the recent V2 switch for the RHEL 7 stigs. Unfortunately not much we can do but realign our stuff.

For the VID vs STIG ID thing...if they are reusing VIDs then this is more of a reason to switch to use STIG ID for the identifier since that won't be reused.