scap-security-guide March 2013

scap-security-guide@lists.fedorahosted.org

30 participants
63 discussions

who uses CCE ids for RHEL guidance?
by Jeffrey Blank 25 Mar '13

25 Mar '13

A question for the list: Who uses CCE identifiers (and for what)? I find them (informally) useful since they provide a unique identifier for a particular knob. Of course, internal to the project, the XCCDF Rule id fulfills a similar role, though we'll have both. (I also have some reservations about CCE implementation and format, but those are not related to this inquiry, nor am I soliciting for those!) I'm simply curious about uses of CCE in RHEL security guidance, particularly that which would be derived from the project. Thanks!

3 2

[PATCH] Modified find command
by Shawn Wells 21 Mar '13

21 Mar '13

1 0

[PATCH] ticket 273 - snmp version 3 protocol check content
by Shawn Wells 20 Mar '13

20 Mar '13

1 0

[PATCH] ticket 338 - improve check text for noexec on removable media
by Shawn Wells 20 Mar '13

20 Mar '13

1 0

[PATCH] ticket 330 - adjust language to permit halt for admin_space_left_action
by Shawn Wells 20 Mar '13

20 Mar '13

1 0

[PATCH] ticket 317: Update RHEL-06-000372-PF, reconsider as permanent finding: display to the user the number of unsuccessful logon/access
by Shawn Wells 20 Mar '13

20 Mar '13

2 1

[PATCH 0/2] CCE fixups, additions
by Jeffrey Blank 18 Mar '13

18 Mar '13

This patchset is working toward the goal of having CCE identifiers assigned to all Rules which involve adjustment of a specific, granular "control knob" on the RHEL platform. (And a few that may involve a specific quality, such as lacking any world-writable files.) Jeffrey Blank (2): added block of available CCE numbers to references * this will help us manage our assignment of them to Rules minor fixups of CCE ids .../accounts/restrictions/account_expiration.xml | 2 + RHEL6/input/system/accounts/session.xml | 1 + RHEL6/input/system/permissions/execution.xml | 1 - RHEL6/input/system/permissions/mounting.xml | 2 - RHEL6/references/cce-rhel6-avail.txt | 550 ++++++++++++++++++++ 5 files changed, 553 insertions(+), 3 deletions(-) create mode 100644 RHEL6/references/cce-rhel6-avail.txt

2 3

Re: scap-security-guide Digest, Vol 19, Issue 20
by Brian G. Maddox 18 Mar '13

18 Mar '13

On 03/18/2013 08:00 AM, scap-security-guide-request(a)lists.fedorahosted.org wrote: > > ---------------------------------------------------------------------- > > Message: 1 > Date: Sun, 17 Mar 2013 13:41:24 -0400 > From: Jeffrey Blank <blank(a)eclipse.ncsc.mil> > To: "scap-security-guide(a)lists.fedorahosted.org" > <scap-security-guide(a)lists.fedorahosted.org> > Subject: who uses CCE ids for RHEL guidance? > Message-ID: <51460044.2060400(a)eclipse.ncsc.mil> > Content-Type: text/plain; charset=ISO-8859-1 > > A question for the list: > > Who uses CCE identifiers (and for what)? > > I find them (informally) useful since they provide a unique identifier > for a particular knob. Of course, internal to the project, the XCCDF > Rule id fulfills a similar role, though we'll have both. > > (I also have some reservations about CCE implementation and format, but > those are not related to this inquiry, nor am I soliciting for those!) > > I'm simply curious about uses of CCE in RHEL security guidance, > particularly that which would be derived from the project. > > Thanks! > > > The IA's I work with use CCE's for the things we put together for the USMC. I end up copying and pasting the info for them just to make their lives easier. --

1 0

[PATCH] [bugfix] ticket 377: RHEL-06-000061 breaks sudo
by Shawn Wells 14 Mar '13

14 Mar '13

1 0

[PATCH] Add support for zipfile creation
by Shawn Wells 14 Mar '13

14 Mar '13

6 7

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

scap-security-guide March 2013