Signed-off-by: David Smith <[email protected]> --- RHEL6/input/system/accounts/banners.xml | 1 - RHEL6/input/system/accounts/pam.xml | 2 +- RHEL6/input/system/logging.xml | 1 - RHEL6/input/system/permissions/files.xml | 2 +- 4 files changed, 2 insertions(+), 4 deletions(-)
diff --git a/RHEL6/input/system/accounts/banners.xml b/RHEL6/input/system/accounts/banners.xml index 98d9fe2..0b8dc83 100644 --- a/RHEL6/input/system/accounts/banners.xml +++ b/RHEL6/input/system/accounts/banners.xml @@ -136,7 +136,6 @@ An appropriate warning message reinforces policy awareness during the logon process and facilitates possible legal action against attackers. </rationale> <ident cce="27017-3" /> -<oval id="banner_gui_text_set" value="login_banner_text" /> <ref nist="AC-8(a),AC-8(b),AC-8(c)" disa="48,1384,1385,1386,1387,1388" /> </Rule> diff --git a/RHEL6/input/system/accounts/pam.xml b/RHEL6/input/system/accounts/pam.xml index a62d25a..f754743 100644 --- a/RHEL6/input/system/accounts/pam.xml +++ b/RHEL6/input/system/accounts/pam.xml @@ -485,7 +485,7 @@ Locking out user accounts after a number of incorrect attempts within a specific period of time prevents direct password guessing attacks. </rationale> <ident cce="27215-3" /> -<oval id="accounts_passwords_pam_faillock_fail_interval" value="var_accounts_passwords_pam_faillock_fail_interval"/> +<oval id="accounts_passwords_pam_fail_interval" value="var_accounts_passwords_pam_faillock_fail_interval"/> <ref nist="AC-7(a)" disa="1452" /> </Rule> diff --git a/RHEL6/input/system/logging.xml b/RHEL6/input/system/logging.xml index 341e284..ae319f6 100644 --- a/RHEL6/input/system/logging.xml +++ b/RHEL6/input/system/logging.xml @@ -421,6 +421,5 @@ If so: If no logserver exists, it will be necessary for each machine to run Logwatch individually. Using a central logserver provides the security and reliability benefits discussed earlier, and also makes monitoring logs easier and less time-intensive for administrators.</description> -<oval id="logwatch_disabled_for_logserver" /> </Rule> </Group> diff --git a/RHEL6/input/system/permissions/files.xml b/RHEL6/input/system/permissions/files.xml index 405307e..5a4f616 100644 --- a/RHEL6/input/system/permissions/files.xml +++ b/RHEL6/input/system/permissions/files.xml @@ -455,7 +455,7 @@ will not cause problems when accounts are created in the future, and the cause should be discovered and addressed. </rationale> <ident cce="27032-2" /> -<oval id="file_permissions_unowned" /> +<oval id="no_files_unowned_by_user" /> <ref nist="AC-6" disa="224"/> </Rule> -- 1.7.1 _______________________________________________ scap-security-guide mailing list [email protected] https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
