-
Bug
-
Resolution: Not a Bug
-
Undefined
-
None
-
rhel-8.10
-
None
-
Low
-
rhel-security-compliance
-
None
-
False
-
False
-
-
None
-
None
-
None
-
None
-
Unspecified
-
Unspecified
-
Unspecified
-
None
What were you trying to do that didn't work?
Performing a CIS Level 1 compliance scan on RHEL 8 servers using the CIS profile xccdf_org.ssgproject.content_profile_cis_server_l1
The scan did not include or evaluate below CIS Benchmark rule.
5.1.2.6 – Ensure journald log rotation is configured per site policy{}{}
Even though this rule exists in the official CIS RHEL 8 Benchmark v3.0.0.
The rule appears to be missing from the ssg-rhel8-ds.xml content.
Please provide the package NVR for which the bug is seen:
latest version of scap-security-guide on RHEL 8.10
How reproducible is this bug?:
Always
Steps to reproduce
- Install the latest scap-security-guide on RHEL 8:
- Verify it's content.
- Run a scan against CIS Level 1
- Review the generated report — there is no entry corresponding to CIS rule 5.1.2.6
Expected results
The SCAP content should include the rule “ 5.1.2.6 – Ensure journald log rotation is configured per site policy” so that oscap can evaluate it per the CIS v3.0.0 benchmark.
