>From 4adb50ff0c98b69944a693f984de2114a53efbf7 Mon Sep 17 00:00:00 2001 From: Shawn Wells <[email protected]> Date: Sat, 29 Dec 2012 02:53:24 -0500 Subject: [PATCH 14/17] Created auxiliary mappings file for NIST profiles
--- RHEL6/input/auxiliary/nist_support.xml | 35 ++++++++++++++++++++++++++++++++ 1 files changed, 35 insertions(+), 0 deletions(-) create mode 100644 RHEL6/input/auxiliary/nist_support.xml diff --git a/RHEL6/input/auxiliary/nist_support.xml b/RHEL6/input/auxiliary/nist_support.xml new file mode 100644 index 0000000..20f4994 --- /dev/null +++ b/RHEL6/input/auxiliary/nist_support.xml @@ -0,0 +1,35 @@ +<Group id="srg_support" hidden="true"> +<title>Documentation to Support NIST 800-53 Mapping</title> +<description>These groups exist to document how the Red Hat Enterprise Linux +product meets (or does not meet) requirements listed in NIST 800-53, for +those cases where Groups or Rules elsewhere in scap-security-guide do +not clearly relate. +</description> + +<Rule id="nist_procedural_requirement"> +<title>Procedural Requirement</title> +<rational>This requirement is procedural, and can not be met through +automated means.</rational> +<ocil>TBD</ocil> +<description>This requirement is procedural, and can not be met +through automated means.</description> +</description> +<ref nist="AC-1,AC-2,AC-2(7)(a),AC-5,AC-6(1),AC-8(b),AC-11(b),AC-14" \> +</Rule> + +<Rule id="nist_met_inherently"> +<title>Product Meets this Requirement</title> +<rationale> +Red Hat Enterprise Linux meets this requirement through design and implementation. +</rationale> +<ocil>RHEL6 supports this requirement and cannot be configured to be out of +compliance. This is a permanent not a finding. +</ocil> +<description> +This requirement is permanent not a finding. No fix is required. +</description> +<ref nist="AC-3(4)" \> +</Rule> + + +</Group> -- 1.7.1
_______________________________________________ scap-security-guide mailing list [email protected] https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
