..... submitting to mailing list for a private citizen, working on SSG
on their own time.... who doesn't currently have access to their work
EMail...
From ea29e29516e253fce13bef596fa0de219157a82a Mon Sep 17 00:00:00 2001
From: root <[email protected]>
Date: Wed, 2 Oct 2013 20:46:06 -0400
Subject: [PATCH] OVAL testing
---
RHEL6/input/checks/service_auditd_enabled.xml | 1 +
RHEL6/input/checks/service_bluetooth_disabled.xml | 1 +
RHEL6/input/checks/service_netconsole_disabled.xml | 1 +
RHEL6/input/checks/service_rhnsd_disabled.xml | 1 +
RHEL6/input/checks/service_rsyslog_enabled.xml | 1 +
5 files changed, 5 insertions(+), 0 deletions(-)
diff --git a/RHEL6/input/checks/service_auditd_enabled.xml
b/RHEL6/input/checks/service_auditd_enabled.xml
index 382fca3..7124b8f 100644
--- a/RHEL6/input/checks/service_auditd_enabled.xml
+++ b/RHEL6/input/checks/service_auditd_enabled.xml
@@ -8,6 +8,7 @@
<platform>Red Hat Enterprise Linux 6</platform>
</affected>
<description>The auditd service should be enabled if
possible.</description>
+ <reference source="DS" ref_id="20131002"
ref_url="test_attestation" />
</metadata>
<criteria comment="package audit installed and service auditd is
configured to start" operator="AND">
<extend_definition comment="audit installed"
definition_ref="package_audit_installed" />
diff --git a/RHEL6/input/checks/service_bluetooth_disabled.xml
b/RHEL6/input/checks/service_bluetooth_disabled.xml
index c3bda7c..89818f9 100644
--- a/RHEL6/input/checks/service_bluetooth_disabled.xml
+++ b/RHEL6/input/checks/service_bluetooth_disabled.xml
@@ -8,6 +8,7 @@
<platform>Red Hat Enterprise Linux 6</platform>
</affected>
<description>The bluetooth service should be disabled if
possible.</description>
+ <reference source="DS" ref_id="20131002"
ref_url="test_attestation" />
</metadata>
<criteria operator="AND" comment="service bluetooth is not
configured to start">
<criterion comment="bluetooth runlevel 0"
test_ref="test_runlevel0_bluetooth" />
diff --git a/RHEL6/input/checks/service_netconsole_disabled.xml
b/RHEL6/input/checks/service_netconsole_disabled.xml
index cdcc544..143d496 100644
--- a/RHEL6/input/checks/service_netconsole_disabled.xml
+++ b/RHEL6/input/checks/service_netconsole_disabled.xml
@@ -8,6 +8,7 @@
<platform>Red Hat Enterprise Linux 6</platform>
</affected>
<description>The netconsole service should be disabled if
possible.</description>
+ <reference source="DS" ref_id="20131002"
ref_url="test_attestation" />
</metadata>
<criteria operator="AND" comment="service netconsole is not
configured to start">
<criterion comment="netconsole runlevel 0"
test_ref="test_runlevel0_netconsole" />
diff --git a/RHEL6/input/checks/service_rhnsd_disabled.xml
b/RHEL6/input/checks/service_rhnsd_disabled.xml
index ff0779f..316426b 100644
--- a/RHEL6/input/checks/service_rhnsd_disabled.xml
+++ b/RHEL6/input/checks/service_rhnsd_disabled.xml
@@ -8,6 +8,7 @@
<platform>Red Hat Enterprise Linux 6</platform>
</affected>
<description>The rhnsd service should be disabled if
possible.</description>
+ <reference source="DS" ref_id="20131002"
ref_url="test_attestation" />
</metadata>
<criteria comment="package rhnsd removed or service rhnsd is not
configured to start" operator="OR">
<extend_definition comment="rhnsd removed"
definition_ref="package_rhnsd_removed" />
diff --git a/RHEL6/input/checks/service_rsyslog_enabled.xml
b/RHEL6/input/checks/service_rsyslog_enabled.xml
index 05bf4c7..fad53a2 100644
--- a/RHEL6/input/checks/service_rsyslog_enabled.xml
+++ b/RHEL6/input/checks/service_rsyslog_enabled.xml
@@ -8,6 +8,7 @@
<platform>Red Hat Enterprise Linux 6</platform>
</affected>
<description>The rsyslog service should be enabled if
possible.</description>
+ <reference source="DS" ref_id="20131002"
ref_url="test_attestation" />
</metadata>
<criteria comment="package rsyslog installed and service rsyslog
is configured to start" operator="AND">
<extend_definition comment="rsyslog installed"
definition_ref="package_rsyslog_installed" />
--
1.7.1
_______________________________________________
scap-security-guide mailing list
[email protected]
https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
