Skip to content

Update DISA STIG overlays for rhel7 to V2R5 #5067

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
redhatrises merged 3 commits into from
Dec 12, 2019
Merged

Update DISA STIG overlays for rhel7 to V2R5 #5067

redhatrises merged 3 commits into from
Dec 12, 2019

Conversation

@isimluk
Copy link
Member

@isimluk isimluk commented Dec 12, 2019
edited
Loading

New DISA STIG content was released on 31 Oct 2019. Available on for download at https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=operating-systems%2Cunix-linux

/cc @tedbrunell

@isimluk
Reformant rhel7 overlay file to be human readable
6c32fef 
I just run

    xmllint --format \
        -o rhel7/overlays/stig_overlay.xml \
        rhel7/overlays/stig_overlay.xml

If we look at the other files like

    firefox/overlays/stig_overlay.xml
    chromium/overlays/stig_overlay.xml
    rhel6/overlays/stig_overlay.xml
    sle11/overlays/stig_overlay.xml
    jre/overlays/stig_overlay.xml
    eap6/overlays/stig_overlay.xml

they all have human readable formating.
@isimluk isimluk changed the title Reformant rhel7 overlay file to be human readable WIP: Reformant rhel7 overlay file to be human readable Dec 12, 2019
@isimluk isimluk closed this Dec 12, 2019
@isimluk
Update rhel7 stig overlay with latest (V2R5) content from DoD
dfaecd9 
See https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=operating-systems%2Cunix-linux

Note for future lemmings: I used following commands to do achieve this:

   ./build_product rhel7
   wget https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Red_Hat_Enterprise_Linux_7_V2R5_STIG.zip
   unzip U_Red_Hat_Enterprise_Linux_7_V2R5_STIG.zip
   PYTHONPATH=. ./utils/create-stig-overlay.py \
       --disa-xccdf U_Red_Hat_Enterprise_Linux_7_V2R5_Manual_STIG/U_Red_Hat_Enterprise_Linux_7_STIG_V2R5_Manual-xccdf.xml \
       --ssg-xccdf ./build/ssg-rhel7-xccdf.xml \
       -o ./rhel7/overlays/stig_overlay.xml
   xmllint --format -o ./rhel7/overlays/stig_overlay.xml ./rhel7/overlays/stig_overlay.xml
@isimluk
Update archived reference to RHEL7 DISA STIG V2R5.
8d03727
@isimluk isimluk changed the title WIP: Reformant rhel7 overlay file to be human readable Update DISA STIG overlays for rhel7 to V2R7 Dec 12, 2019
@isimluk isimluk reopened this Dec 12, 2019
@isimluk isimluk requested a review from shawndwells December 12, 2019 11:53
@isimluk isimluk changed the title Update DISA STIG overlays for rhel7 to V2R7 Update DISA STIG overlays for rhel7 to V2R5 Dec 12, 2019
@redhatrises redhatrises merged commit a7c6574 into ComplianceAsCode:master Dec 12, 2019
@yuumasato yuumasato added this to the 0.1.48 milestone Dec 16, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@shawndwells shawndwells Awaiting requested review from shawndwells

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

0.1.48

Development

Successfully merging this pull request may close these issues.

3 participants

@isimluk @yuumasato @redhatrises