Loading...

Linking RHIVOS CVEs to...

Migration: Automation ...

SWIFT: POC Conversion

Sync from "Extern...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Undefined
Fix Version/s: rhel-9.6.z
Affects Version/s: rhel-9.6
Component/s: scap-security-guide
Labels:
None

Fixed in Build:
scap-security-guide-0.1.78-1.el9
Regression:
No
Severity:
Low
Epic Link:
OPENSCAP-5955

AssignedTeam:
rhel-security-compliance

Story Points:
1
Blocked:
False
Ready:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
No
Products:

Red Hat Enterprise Linux
Sprint:
None

Git Pull Request:
https://github.com/ComplianceAsCode/content/pull/13707
Preliminary Testing:
Pass
Test Coverage:

Manual

Release Note Type:
Unspecified Release Note Type - Unknown
ProdDocsReview-CCS:
Unspecified
ProdDocsReview-Dev:
Unspecified
ProdDocsReview-QE:
Unspecified

Experience:

PX Impact Score:
SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

As per CIS_Red_Hat_Enterprise_Linux_9_Benchmark_v2.0.0 specification, "Ensure events that modify user/group information are collected" is supposed to check /etc/nsswitch.conf, /etc/pam.conf and /etc/pam.d.

What is the reason for not having this yet?
Is it due to needing to use -w ... audit rules which is deprecated and may lead to performance issues or just lack of time to do so?

Assignee:: Vojtech Polasek

Reporter:: Renaud Métrich

Developer:: Vojtech Polasek

QA Contact:: Matus Marhefka

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Created:: 2025/07/08 11:54 AM

Updated:: 2025/10/10 7:46 AM

Resolved:: 2025/09/30 9:42 AM

Details

Description

Attachments

Easy Agile Planning Poker

Activity

People

Dates

Hide