--- RHEL6/input/system/software/integrity.xml | 7 +++---- 1 files changed, 3 insertions(+), 4 deletions(-)
diff --git a/RHEL6/input/system/software/integrity.xml b/RHEL6/input/system/software/integrity.xml index 2aa54a2..f22ca0b 100644 --- a/RHEL6/input/system/software/integrity.xml +++ b/RHEL6/input/system/software/integrity.xml @@ -23,7 +23,6 @@ database should be created immediately after your system is built, and before the system is connected to any network. AIDE is highly configurable, with further configuration information located in <tt>/usr/share/doc/aide-<i>VERSION</i></tt></description> -<ref disa="374,1069,1297,1589"/> <Rule id="install_aide" severity="medium"> @@ -40,7 +39,7 @@ The AIDE package must be installed if it is to be available for integrity checki </rationale> <ident cce="4209-3" /> <oval id="package_aide_installed" /> -<ref nist="CM-6, CM-7, SC-28, SI-7" disa="1069"/> +<ref nist="CM-6, CM-7, SC-28, SI-7" disa="1069,374"/> <tested by="DS" on="20121024"/> </Rule> @@ -78,7 +77,7 @@ If this check produces any unexpected output, investigate. For AIDE to be effective, an initial database of "known-good" information about files must be captured and it should be able to be verified against the installed files. </rationale> -<ref nist="SC-28, SI-7" /> +<ref nist="SC-28, SI-7" disa="1589"/> </Rule> <Rule id="aide_periodic_cron_checking" severity="medium"> @@ -189,7 +188,7 @@ by the RPM database. Executables with erroneous hashes could be a sign of nefari on the system.</rationale> <ident cce="TODO" /> <oval id="rpm_verify_hashes" /> -<ref nist="SI-7" disa="1496" /> +<ref nist="SI-7" disa="1297,1496" /> </Rule> </Group> -- 1.7.1 _______________________________________________ scap-security-guide mailing list [email protected] https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
