From: Willy Santos <wsantos@redhat>
Signed-off-by: Willy Santos <wsantos@redhat> --- rhel6/src/input/system/selinux.xml | 1 + 1 files changed, 1 insertions(+), 0 deletions(-) diff --git a/rhel6/src/input/system/selinux.xml b/rhel6/src/input/system/selinux.xml index 23f1c78..76449d1 100644 --- a/rhel6/src/input/system/selinux.xml +++ b/rhel6/src/input/system/selinux.xml @@ -191,6 +191,7 @@ It should produce no output in a well-configured system. Daemons which run with the <tt>initrc_t</tt> context may cause AVC denials, or allow privileges that the daemon does not require. </rationale> +<ref nist="AC-6, CM-6, CM-7" /> </Rule> <Rule id="selinux_unlabeled_device_files"> -- 1.7.7.6 _______________________________________________ scap-security-guide mailing list scap-security-guide@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/scap-security-guide
