Uploaded image for project: 'Cloud Infrastructure Security & Compliance'
  1. Cloud Infrastructure Security & Compliance
  2. CMP-1159 OCP STIG spreadsheet work
  3. CMP-1166

SRG-OS-000033-GPOS-00014: confidentiality of remote debugging sessions

XMLWordPrintable

    • Icon: Sub-task Sub-task
    • Resolution: Done
    • Icon: Major Major
    • None
    • None
    • None
    • None
    • False
    • False
    • OCPSTRAT-438 - Support Creation for DISA-STIG Profile
    • CMP Sprint 41

      STIG is going to prescribe using oc debug as a debug session. SRG-OS-000033-GPOS-00014 (currently row 22) is asking for remote sessions to be confidential. We need to write down supporting information explaining why is oc debug safe to use and what technology prevents someone from listening on the keystrokes. I suspect the item will end up as inherently met, but we need to explain why.

       

      Acceptance criteria:

       - SRG-OS-000033-GPOS-00014 explains why is oc debug safe to use

              rhn-support-mrogers Matt Rogers (Inactive)
              jhrozek@redhat.com Jakub Hrozek (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: