Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-45018

The rule mount_option_nodev_nonroot_local_partitions is not offline-aware

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • rhel-9.6
    • rhel-8.10
    • scap-security-guide
    • None
    • None
    • None
    • sst_security_compliance
    • ssg_security
    • None
    • False
    • Hide

      None

      Show
      None
    • No
    • Red Hat Enterprise Linux
    • None
    • Unspecified Release Note Type - Unknown
    • None

      What were you trying to do that didn't work?

      Hardening images using osbuild openscap customization leaves mount_option_nodev_nonroot_local_partitions rule as failed.

      Please provide the package NVR for which bug is seen:

      osbuild-110-1, ssg-0.1.73

      How reproducible:

      Always.

      Steps to reproduce

      1. Try to create a hardened image using Image Builder (e.g. cui profile)
      2. Check the build system with OpenSCAP.

      Expected results

      Rule passes.

      Actual results

      Rule fails.

       

      More info in the upstream issue: https://github.com/ComplianceAsCode/content/issues/11996

            jcerny@redhat.com Jan Cerny
            ekolesni Evgeny Kolesnikov
            Vojtech Polasek Vojtech Polasek
            SSG Security QE SSG Security QE
            Votes:
            0 Vote for this issue
            Watchers:
            8 Start watching this issue

              Created:
              Updated: