Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-45018

The rule mount_option_nodev_nonroot_local_partitions is not offline-aware

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done-Errata
    • Icon: Undefined Undefined
    • rhel-9.5.z
    • rhel-8.10
    • scap-security-guide
    • None
    • scap-security-guide-0.1.75-1.el9
    • None
    • Moderate
    • rhel-sst-security-compliance
    • ssg_security
    • 2
    • False
    • Hide

      None

      Show
      None
    • No
    • Red Hat Enterprise Linux
    • None
    • None

      What were you trying to do that didn't work?

      Hardening images using osbuild openscap customization leaves mount_option_nodev_nonroot_local_partitions rule as failed.

      Please provide the package NVR for which bug is seen:

      osbuild-110-1, ssg-0.1.73

      How reproducible:

      Always.

      Steps to reproduce

      1. Try to create a hardened image using Image Builder (e.g. cui profile)
      2. Check the build system with OpenSCAP.

      Expected results

      Rule passes.

      Actual results

      Rule fails.

       

      More info in the upstream issue: https://github.com/ComplianceAsCode/content/issues/11996

              jcerny@redhat.com Jan Cerny
              ekolesni Evgeny Kolesnikov
              Vojtech Polasek Vojtech Polasek
              Milan Lysonek Milan Lysonek
              Votes:
              0 Vote for this issue
              Watchers:
              11 Start watching this issue

                Created:
                Updated:
                Resolved: