~/f/scap-security-guide/RPMS.2017 ~/f/scap-security-guide ~/f/scap-security-guide RPMS.2017/scap-security-guide-0.1.72-1.1.noarch.rpm RPMS/scap-security-guide-0.1.72-1.1.noarch.rpm differ: byte 225, line 1 Comparing scap-security-guide-0.1.72-1.1.noarch.rpm to scap-security-guide-0.1.72-1.1.noarch.rpm comparing the rpm tags of scap-security-guide --- old-rpm-tags +++ new-rpm-tags @@ -240,9 +240,9 @@ -/usr/share/doc/scap-security-guide/guides/ssg-opensuse-guide-standard.html caf7757dedad2f7c6c97a5060de498cb8f6069727ad7deb2e8c334d516362dba 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_enhanced.html 5b973f0a3659ed83818beb20d02780e1fb086e29623620ee3f53d67a3bcef934 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_high.html bac592a364bda05cf8436b2d562745a9bd10bd0a65474f5c156bb39260fc36a5 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_intermediary.html d7559f97d4683d4b4007d2cbc61f0cdd535a221f585478e98aca71b28a4620bd 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_minimal.html 22d5be3a5c378779a3edced2b964a5f7d5bd2b4be1f28b92734afbddaf91a224 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis.html 8e8008dd3d5be0611268da87d950df42e46a4bf11f057ff919e0b8f123959d35 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_server_l1.html 801693a674e7307d599b4479066d9d23438972ea22b94052eb5427afc9593cd9 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_workstation_l1.html 9266050e70a61998a62285dbfcbe15ce6b8f6dbb96127d19ea7c5f61771affe5 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_workstation_l2.html d6660bee9a6bdb2242a5b59853cf51d726ec307f99cf98614594600e99fc852f 2 +/usr/share/doc/scap-security-guide/guides/ssg-opensuse-guide-standard.html a4efbc6f77f6af74594990db09a7a5bc7bc0abb9fe0d18cf09b48da6237a8a92 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_enhanced.html 02370fb7d0155440c6c24a2ef9a04e8e24cb821c3b6b1b18ed886853513a1648 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_high.html 2dbdc149ba0423e1d05656d19d6f6a47e0afa693423624cdfb15a37aa02c0cb7 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_intermediary.html 6b128a44981b6df55b0cfaa307f41e747edfc04a2e544c907e80f20aee9072f4 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_minimal.html a74ceef0fa05e0a0f0ec1efc1968eebabb87483b6e94a89c43d4d01eb1268c10 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis.html ec6a5edc540f2d99e8f1c577a057179f1d4f2015b3ca90285d66698c5d83496b 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_server_l1.html 978587d0c7b83d8d182917bf47babab29ef7a38d6fe03c7a5b79baedf77331a5 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_workstation_l1.html ec8a9a7f1c0a7157adf78dba7338602883e63f3b5d4c4b5a0d213b1a3d2b67c1 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_workstation_l2.html f004519b6125439e300804f1028887c3a8acb25e792ac4e02d71978d0cdeec42 2 @@ -250,13 +250,13 @@ -/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-pci-dss-4.html 8dbc7d015f088c5481e8625b6b99b2d07c82639cad901bfc965d969a6b598e08 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-pci-dss.html 573d4f5c3c50bd85ed3c1a394b6da221c8eb108f3006042c369b26f92725fbf4 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-standard.html e2db22d9b24370bc56932d8bc67c33663d4f4483a1c7b6c635d62e619736b678 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-stig.html fbe0b3240756b425b587280ff25a2e36d6ca077640f4329f171dda6f8d0d9f3f 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_enhanced.html 9f4d3e6c28193cb0c694166ab60f30f7a3886beb08de7c42a083042acf68282c 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_high.html cd44c241703aa4d8f84d00d5a0d012b053b674022af2605bdbf5b5e4ac1f42c1 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_intermediary.html 8b92ebaec89be81db360511ed375dc8b1398c411f170beee6bc74c428e46b3d8 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_minimal.html 5662830bea8af7d0d59e010978ff37ab7645c1156a2b163ae9ecbae79f54dba6 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis.html 33c0a64ef77fb17fe00a2b8f155a468565df39d1fae6e86bd8f378c5266a0037 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_server_l1.html 4fc2bfc68c808bdafebcdcf3623a01501a23ea18fc7302e6262257ddb64431ca 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_workstation_l1.html 6c65d70121b8e20e82e4ca2a1f8c72c4dd557c8dd7ed50c48c69f74d85ff7a2d 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_workstation_l2.html c91296cd16e96930fbbb470cf19332859c7cebc421d12f7011811f7ddbd924ef 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-hipaa.html d14735a09303e9d30de41dc3cbf3e0fdc35956ba196c75dc0ffaa81aa598e219 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-pci-dss-4.html 3f920fe1d3c7cd95c29c5fb5220049ac27340a14774f614f2965b8c6c896a1bb 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-pci-dss.html a4f6aa5e38b31f99f2130c215455402fda776375df57e4a4a61feaa8815f8d19 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-standard.html 6e1e90a3ad4cd8c3d4cde9037ed6e2c8d6ad88fe70f69613e02ba16c691fdff0 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-stig.html 2354139834ca9dee9f27f4646ed1a9cf955ce8714dadf6fcc1eddf7a83ed8c36 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_enhanced.html eb2de9c440ad1b8e2a01dea6807c4de73316f78b5420d53a36fd034b5c26f65b 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_high.html 8b7cba50be482c19b370d85b195333a7ee9b5dc9e7129f76e13f84e12e3f90b5 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_intermediary.html c55b7b2551a37a2758e9fbe25cbdcb4c226902155472fa461d238357f533be1e 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_minimal.html ee7b5daf9a58dc531101f1ec96fb8ee26d8ddd27f6b66fdc463ace9bf52d5403 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis.html 77789f2ea78098162a7430435e51a33f28be3da8f9e11bd2635c124050499239 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_server_l1.html ff751e9e5f88853bace2e841d0dd33692a7a1810ef2a74a0c8e8b783b0271db5 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_workstation_l1.html b4f0b28a7565b4fc7874deccbe686e6806c62e9f465eee5aaf564ad9f0aa27e3 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_workstation_l2.html d926909c74a7442c07197dea5f743506bffbb2a2d56b390d78eba37895d31c9d 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-hipaa.html 31678502ad9adb8aac7327e08c641897f5b926bc06e927a3c7abf456270c7929 2 @@ -264,6 +264,6 @@ -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pci-dss-4.html 85e00fa1269dbe244418312f40a5286fa7c0327954a0cdbc8e90ad9d6c5e3ebc 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pci-dss.html b5d9c071da023711d04b762b97aa01e81e9b118aa95dbbf91ad0c106919f2804 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pcs-hardening-sap.html d26e86ccf5ff7be4f2eca028b9b23a0778a72baada92f32e88ae7a19de198385 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pcs-hardening.html ea730c02161bab6a5b6615582a480f0726133ce99b0396fa7704ce882c515923 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-standard.html b9af83f4a550fa8500059f5f28beda2e1360d43bd451b2303e21114b744d0de9 2 -/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-stig.html 3a5c11d7795c693af30ea63a1b62024d16593a57961c8593c961505bb438a08f 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pci-dss-4.html b99af1fc2a269c69b550237065d15aafee3cbcf382497fc7394891e4cc505f8d 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pci-dss.html 9279f57998714856fd7a9016bb6d04f3df3fbfa7aa0f5bff1e25edc687c470ad 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pcs-hardening-sap.html af9bbf04cdb8036d13d0e7787b21e9a82937b5ceb4e39be6659e191312bc454e 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pcs-hardening.html c6bfbd4c38c259e0df8e1f54bbb8e09ec2491c2d113d98b60befab6c8593e2a5 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-standard.html aae8551b9ca8428d1fcc549f95a41289d47bdeaa5d8b2cca27721ebc0ce0c563 2 +/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-stig.html 5920324e08818976e2093fa326d940a299097e0bf1a24b2501fbeed213b9816e 2 @@ -345,2 +345,2 @@ -/usr/share/xml/scap/ssg/content/ssg-opensuse-ds-1.2.xml f8c73b4754c5b0dc52324b1e7cea07e2b2be10b804085e96e302db2502245c0a 0 -/usr/share/xml/scap/ssg/content/ssg-opensuse-ds.xml 96abb84eff1607f1fea3253a178f4739c40db5b68dd9dd13b62e7ef83f25b1ba 0 +/usr/share/xml/scap/ssg/content/ssg-opensuse-ds-1.2.xml 12eed8ad28c88c58ee6a2d8b887a0f95c2583b209136838818ec952398f97f1d 0 +/usr/share/xml/scap/ssg/content/ssg-opensuse-ds.xml d164ab96a693154a0f552ab24d47c8ff7c2230f372299d59c436a9cec574a545 0 @@ -349 +349 @@ -/usr/share/xml/scap/ssg/content/ssg-opensuse-xccdf.xml 9ceae9e1dd0fcd3871ca39c53fc1221c31ce2c498e94fc3629f1df27a071b2c9 0 +/usr/share/xml/scap/ssg/content/ssg-opensuse-xccdf.xml 34ecd7dd423d1042fd56e1e465b33faa2493af285637f590b884d765b41502e8 0 @@ -352,2 +352,2 @@ -/usr/share/xml/scap/ssg/content/ssg-sle12-ds-1.2.xml 542e49165f5453adc842e3ac5c5254569e3d9be6c9f7affcb2bea9affc935aba 0 -/usr/share/xml/scap/ssg/content/ssg-sle12-ds.xml 10c8db16e26a22e6679ef35748bd68a3aa6ac71d740730c8fb1ddee63a8a1b47 0 +/usr/share/xml/scap/ssg/content/ssg-sle12-ds-1.2.xml d08054b6a6165ae9bf89dcc1bfc36af109c5a7ed9e4b96ae85f296b27f8f9827 0 +/usr/share/xml/scap/ssg/content/ssg-sle12-ds.xml 1a00e7c577e7000b2735f9ddd61120408935e03d066ac6a559423b7529e1ec0d 0 @@ -356 +356 @@ -/usr/share/xml/scap/ssg/content/ssg-sle12-xccdf.xml 40b49304f399391273c5a1c2f0ca94989ef33b1b6213633cd4e47edb53d49a88 0 +/usr/share/xml/scap/ssg/content/ssg-sle12-xccdf.xml 9e5bec5a05b6289de97090809527bcd4755c7d9eb77a60ad7d49fac408013225 0 @@ -359,2 +359,2 @@ -/usr/share/xml/scap/ssg/content/ssg-sle15-ds-1.2.xml 53aac92980b8b97c726b37c09b64b2372e035e205c0d208e2c175f38a4028538 0 -/usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml 9783bd809bd93373ea76355b16d898e6717cd37e6e6ec698517b6902de5af3db 0 +/usr/share/xml/scap/ssg/content/ssg-sle15-ds-1.2.xml 2b36001a2e0d9f446b6837f0254b51982f23427be003ccf4fec35691e5ec42cb 0 +/usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml b69de0b65c9ca2b31fcf6c6223c6ede4c1125f63b8a42afae35251b44f88796a 0 @@ -363 +363 @@ -/usr/share/xml/scap/ssg/content/ssg-sle15-xccdf.xml eaea28254f0d17b631302c135c4d422496d56b2f24502693ff1105b23dfff5e5 0 +/usr/share/xml/scap/ssg/content/ssg-sle15-xccdf.xml 14b15925b6b3805fef8a22c1523d05ddaf3e7f0898bfeeb33145f8210a1e5ddd 0 comparing rpmtags comparing RELEASE comparing PROVIDES comparing scripts comparing filelist comparing file checksum creating rename script RPM file checksum differs. Extracting packages /usr/share/doc/scap-security-guide/guides/ssg-opensuse-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-opensuse-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-opensuse-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for openSUSE
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:opensuse:leap:15.0
  • cpe:/o:opensuse:leap:42.1
  • cpe:/o:opensuse:leap:42.2
  • cpe:/o:opensuse:leap:42.3

Revision History

Current version: 0.1.72

Table of Contents

  1. System Settings
    1. File Permissions and Masks

Checklist

Group   Guide to the Secure Configuration of openSUSE   Group contains 4 groups and 3 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -77,7 +77,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_enhanced

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:12
  • cpe:/o:suse:linux_enterprise_server:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 12   Group contains 66 groups and 234 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -77,7 +77,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_high

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:12
  • cpe:/o:suse:linux_enterprise_server:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 12   Group contains 67 groups and 288 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -77,7 +77,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_intermediary

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:12
  • cpe:/o:suse:linux_enterprise_server:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 12   Group contains 53 groups and 158 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -77,7 +77,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_minimal

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:12
  • cpe:/o:suse:linux_enterprise_server:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 12   Group contains 25 groups and 43 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS SUSE Linux Enterprise 12 Benchmark for Level 2 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:12
  • cpe:/o:suse:linux_enterprise_server:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Print Support
    14. Proxy Server
    15. Samba(SMB) Microsoft Windows File Sharing Server
    16. SNMP Server
    17. SSH Server
    18. X Window System

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 12   Group contains 112 groups and 356 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_server_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS SUSE Linux Enterprise 12 Benchmark for Level 1 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis_server_l1

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:12
  • cpe:/o:suse:linux_enterprise_server:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. AppArmor
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Print Support
    14. Proxy Server
    15. Samba(SMB) Microsoft Windows File Sharing Server
    16. SNMP Server
    17. SSH Server
    18. X Window System

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 12   Group contains 100 groups and 284 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_workstation_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS SUSE Linux Enterprise 12 Benchmark for Level 1 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l1

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:12
  • cpe:/o:suse:linux_enterprise_server:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. AppArmor
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Cron and At Daemons
    2. DHCP
    3. DNS Server
    4. FTP Server
    5. Web Server
    6. IMAP and POP3 Server
    7. LDAP
    8. Mail Server Software
    9. NFS and RPC
    10. Network Time Protocol
    11. Obsolete Services
    12. Proxy Server
    13. Samba(SMB) Microsoft Windows File Sharing Server
    14. SNMP Server
    15. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 12   Group contains 93 groups and 275 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_workstation_l2.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS SUSE Linux Enterprise 12 Benchmark Level 2 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l2

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:12
  • cpe:/o:suse:linux_enterprise_server:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Proxy Server
    14. Samba(SMB) Microsoft Windows File Sharing Server
    15. SNMP Server
    16. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 12   Group contains 109 groups and 352 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-pci-dss-4.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-pci-dss-4.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-pci-dss-4.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v4 Control Baseline for SUSE Linux enterprise 12
Profile IDxccdf_org.ssgproject.content_profile_pci-dss-4

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:12
  • cpe:/o:suse:linux_enterprise_server:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. Web Server
    6. LDAP
    7. NFS and RPC
    8. Network Time Protocol
    9. Obsolete Services
    10. Print Support
    11. Samba(SMB) Microsoft Windows File Sharing Server
    12. SNMP Server
    13. SSH Server
    14. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 12   Group contains 89 groups and 214 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v3.2.1 Control Baseline for SUSE Linux enterprise 12
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:12
  • cpe:/o:suse:linux_enterprise_server:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Network Time Protocol
    2. SSH Server
    3. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 12   Group contains 61 groups and 151 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for SUSE Linux Enterprise 12
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:12
  • cpe:/o:suse:linux_enterprise_server:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. File Permissions and Masks

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 12   Group contains 4 groups and 3 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG for SUSE Linux Enterprise 12
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:12
  • cpe:/o:suse:linux_enterprise_server:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Base Services
    2. FTP Server
    3. Mail Server Software
    4. NFS and RPC
    5. Network Time Protocol
    6. Obsolete Services
    7. SSH Server
    8. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 12   Group contains 82 groups and 240 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -77,7 +77,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_enhanced

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 66 groups and 233 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -77,7 +77,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_high

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 67 groups and 286 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -77,7 +77,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_intermediary

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 53 groups and 157 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -77,7 +77,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_minimal

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 25 groups and 43 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS SUSE Linux Enterprise 15 Benchmark for Level 2 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Print Support
    14. Proxy Server
    15. Samba(SMB) Microsoft Windows File Sharing Server
    16. SNMP Server
    17. SSH Server
    18. X Window System

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 116 groups and 378 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_server_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS SUSE Linux Enterprise 15 Benchmark for Level 1 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis_server_l1

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. AppArmor
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Print Support
    14. Proxy Server
    15. Samba(SMB) Microsoft Windows File Sharing Server
    16. SNMP Server
    17. SSH Server
    18. X Window System

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 104 groups and 305 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_workstation_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS SUSE Linux Enterprise 15 Benchmark for Level 1 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l1

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. AppArmor
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Cron and At Daemons
    2. DHCP
    3. DNS Server
    4. FTP Server
    5. Web Server
    6. IMAP and POP3 Server
    7. LDAP
    8. Mail Server Software
    9. NFS and RPC
    10. Network Time Protocol
    11. Obsolete Services
    12. Proxy Server
    13. Samba(SMB) Microsoft Windows File Sharing Server
    14. SNMP Server
    15. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 97 groups and 296 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_workstation_l2.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS SUSE Linux Enterprise 15 Benchmark Level 2 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l2

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Proxy Server
    14. Samba(SMB) Microsoft Windows File Sharing Server
    15. SNMP Server
    16. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 113 groups and 374 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-hipaa.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 @@ -73,7 +73,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleHealth Insurance Portability and Accountability Act (HIPAA)
Profile IDxccdf_org.ssgproject.content_profile_hipaa

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. NFS and RPC
    4. Obsolete Services
    5. Network Routing
    6. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 54 groups and 138 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pci-dss-4.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pci-dss-4.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pci-dss-4.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v4 Control Baseline for SUSE Linux enterprise 15
Profile IDxccdf_org.ssgproject.content_profile_pci-dss-4

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. Obsolete Services
    8. SNMP Server
    9. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 85 groups and 250 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v3.2.1 Control Baseline for SUSE Linux enterprise 15
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Network Time Protocol
    2. SSH Server
    3. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 63 groups and 153 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pcs-hardening-sap.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pcs-hardening-sap.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pcs-hardening-sap.html 2024-02-13 16:02:48.000000000 +0000 @@ -68,7 +68,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleHardening for Public Cloud Image of SUSE Linux Enterprise Server (SLES) for SAP Applications 15
Profile IDxccdf_org.ssgproject.content_profile_pcs-hardening-sap

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
  2. Services
    1. Cron and At Daemons
    2. NFS and RPC
    3. Network Time Protocol
    4. SNMP Server
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 67 groups and 202 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pcs-hardening.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pcs-hardening.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pcs-hardening.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePublic Cloud Hardening for SUSE Linux Enterprise 15
Profile IDxccdf_org.ssgproject.content_profile_pcs-hardening

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
  2. Services
    1. Cron and At Daemons
    2. Network Time Protocol
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 51 groups and 162 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -68,7 +68,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for SUSE Linux Enterprise 15
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
  2. Services
    1. Cron and At Daemons
    2. Deprecated services
    3. Web Server
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 44 groups and 110 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG for SUSE Linux Enterprise 15
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:suse:linux_enterprise_desktop:15
  • cpe:/o:suse:linux_enterprise_server:15

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Base Services
    2. FTP Server
    3. Mail Server Software
    4. NFS and RPC
    5. Network Time Protocol
    6. Obsolete Services
    7. SSH Server
    8. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of SUSE Linux Enterprise 15   Group contains 83 groups and 242 rules
Group   /usr/share/xml/scap/ssg/content/ssg-opensuse-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-opensuse-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-opensuse-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -45,7 +45,7 @@ - draft + draft Guide to the Secure Configuration of openSUSE This guide presents a catalog of security-relevant configuration settings for openSUSE. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-opensuse-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-opensuse-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-opensuse-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -45,7 +45,7 @@ - draft + draft Guide to the Secure Configuration of openSUSE This guide presents a catalog of security-relevant configuration settings for openSUSE. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-opensuse-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-opensuse-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-opensuse-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of openSUSE This guide presents a catalog of security-relevant configuration settings for openSUSE. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-sle12-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-sle12-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-sle12-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -37,7 +37,7 @@ - draft + draft Guide to the Secure Configuration of SUSE Linux Enterprise 12 This guide presents a catalog of security-relevant configuration settings for SUSE Linux Enterprise 12. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-sle12-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-sle12-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-sle12-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -39,7 +39,7 @@ - draft + draft Guide to the Secure Configuration of SUSE Linux Enterprise 12 This guide presents a catalog of security-relevant configuration settings for SUSE Linux Enterprise 12. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-sle12-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-sle12-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-sle12-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of SUSE Linux Enterprise 12 This guide presents a catalog of security-relevant configuration settings for SUSE Linux Enterprise 12. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-sle15-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-sle15-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-sle15-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -37,7 +37,7 @@ - draft + draft Guide to the Secure Configuration of SUSE Linux Enterprise 15 This guide presents a catalog of security-relevant configuration settings for SUSE Linux Enterprise 15. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -39,7 +39,7 @@ - draft + draft Guide to the Secure Configuration of SUSE Linux Enterprise 15 This guide presents a catalog of security-relevant configuration settings for SUSE Linux Enterprise 15. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-sle15-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-sle15-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-sle15-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of SUSE Linux Enterprise 15 This guide presents a catalog of security-relevant configuration settings for SUSE Linux Enterprise 15. It is a rendering of RPMS.2017/scap-security-guide-debian-0.1.72-1.1.noarch.rpm RPMS/scap-security-guide-debian-0.1.72-1.1.noarch.rpm differ: byte 225, line 1 Comparing scap-security-guide-debian-0.1.72-1.1.noarch.rpm to scap-security-guide-debian-0.1.72-1.1.noarch.rpm comparing the rpm tags of scap-security-guide-debian --- old-rpm-tags +++ new-rpm-tags @@ -185,4 +185,4 @@ -/usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_average.html 345c4101499cbcdba89383bc8ccc8272f7365f4b1ea5ab828abb7b5b1afa8de1 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_high.html 478e6473576db6324d54dd7d844959eacc5b033260656d2d83ec274ad423ed51 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_minimal.html efa5f00bec9e2aa68c81f0fa599186a54a6aa05ed413e34fbf0778087de9b7d4 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_restrictive.html f05fc3b2fcd6ba49a015108b6f14c088a9714317df6929ec7e644fd7dacab14a 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_average.html e3bf8742d8e844db90c2d29667717430241ba9e5ec6cd8c400d0dd6268358807 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_high.html 628da9b82a959c401eefe1ec7ebccbf0fb4a26db0f96e16f89aed1bdcd4369d8 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_minimal.html 32874f1b89c0e226e69b1a02255418604a6375e080d13ee7edd863fd5c86157c 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_restrictive.html 733cfdafe1e3a83eaf526b7079e04371a69c08238b992893ba03e9f97ed3d400 2 @@ -190,5 +190,5 @@ -/usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-standard.html 1abd806de889b84f0f9a9c8ff60389fc75f723555b7b373ac4f4b8e1478120ee 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_average.html 38aa2851e6bbff8153b8778d6204d747401a6eb4678a2a2c2a6268db895d1a75 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_high.html 70c289482a82a51b781b1b8a80d4095f4adf457fbf1a7acb51fd26e4fd69c130 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_minimal.html 7df97fca577488acbe294a8b4850deac657e6a3e6ce218127f14fac9c1608d85 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_restrictive.html 7ea9052c92a6a033a4f440be0d94aa929955c59514c25d070523a70bc90df9bf 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-standard.html 229ca785a44abd1d46225fee47f8f70900de8374fe6b9e5f332fa2b26016f362 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_average.html 7f3280e048dacc86fad48c06ae6ee1bf2573a270d7b3c34474c639cd96d3a7f9 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_high.html c0b93c814932dfe44ed5c7a1467284567d6e7d89e8b7bc59f8c01831612bbca7 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_minimal.html 3ac675d991c57c38e958ef46e099b501a73a6d36be3294d2ee8ce09d8e88c45a 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_restrictive.html 5026fe7d3a6f4e282247dcdf6da67c04f77794b5869b457c6bb35b698a79842d 2 @@ -196,9 +196,9 @@ -/usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-standard.html a7e397bfdc245a943093f3d922144c165c9ded6d578de2633f3d39ffb399b58f 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_enhanced.html e5f4216d75f41b3d50c6c537ab09b65dd33b512936a71218b12394a3d7b71520 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_high.html 17bb4c9457d0c61c1d20ce920cb3666c63f59fb5031228b00070f9cd16a908e3 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_intermediary.html a96149ee0ee462f73d2ed88591ea7489892141026d170f8ddcfa2311180002fe 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_minimal.html 711375c71f2bb0128107dd3162755f7ca5f091e6b867ccb62104a96d39fca019 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_average.html 7f1d540ec0a075de82a86c563350c21543e357e1e9d5d0c3727a2b53b5dad5bc 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_high.html 777ef8242e04a0732075ad0df3725944c93b0b0f841546a98bebc8920cc35c83 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_minimal.html b5cf21b017091c0ada7fe759a40e67e573fb3362c18ac8fe230b6698cc11da22 2 -/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_restrictive.html eadb4470ccb91d9ded9c853a3ae7e37741b5a0a2e7b69c386fd0eea23d4334ef 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-standard.html a461637d4eba688a3e010380a4989f5bc41e6a14d615a5f6227c3e77a53a5c0f 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_enhanced.html 13183ba3d5a95322986dabb6acba36171796f70e339b987d1f9b05d5f7722231 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_high.html 8a87e62605750c19c2e592cb14746682c157ce8aa8f571091d14406515e7a598 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_intermediary.html 21ab066e0a03b93158bc9716426e68319df74676e062585419781bfc6443e84c 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_minimal.html 9570ebbc3701c2298c96d2968bbb8155d888066d1b485b2e41e97e8fee25887b 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_average.html 27bd85a7f26c287f95078ad862a6b10cee37b222e33d7e25dba76a941e38a277 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_high.html 51ac92e379dd7f33a851e7ce3c4224724368d4ca31bd2701850959bb5bceaa00 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_minimal.html c3be97aeb87916dfae32aebd35d7f5f866446b5abeffb1e532d6209ecaac8301 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_restrictive.html 9d8506ec336b6e97bfc7bfb94f62061fe10b96eeb58966833ec33606fd2bd221 2 @@ -206 +206 @@ -/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-standard.html d893d469edcae52b9bd719dea7dfbafe1f7048370818e81e1f0b28e11587cbd5 2 +/usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-standard.html 53455ee522ea6562f836c0d6ac92e870324f9cb5ef476d8d8ef64033bb9a21c4 2 @@ -257,2 +257,2 @@ -/usr/share/xml/scap/ssg/content/ssg-debian10-ds-1.2.xml 94c2d6961b32f1916271d50112f9d48f65da432016524c4c8ef872975d413639 0 -/usr/share/xml/scap/ssg/content/ssg-debian10-ds.xml ad189c547802d75f8307570874b8a29972054d636614ebc9bdc85fcc6b38e42f 0 +/usr/share/xml/scap/ssg/content/ssg-debian10-ds-1.2.xml 0e0d3182a563d805fc22ad8bf9c8c93086e16f26fbc5a4fd964aad0c7676d8f3 0 +/usr/share/xml/scap/ssg/content/ssg-debian10-ds.xml 6cff77efed99d868139384adba83e484400c66bbb76ded98b5d0188ce488a5c8 0 @@ -261 +261 @@ -/usr/share/xml/scap/ssg/content/ssg-debian10-xccdf.xml 5f3c348c1661278a5c154d646e50f20dbc807e13a029e456e0ce04e4edcd81b9 0 +/usr/share/xml/scap/ssg/content/ssg-debian10-xccdf.xml afaa8051433455652cbdaeb963e4ae022f459cc68db41c756df740dedf7dc1d7 0 @@ -264,2 +264,2 @@ -/usr/share/xml/scap/ssg/content/ssg-debian11-ds-1.2.xml 205fe1a1ff48b44142abeec189af3171f19cdbb289a0fe79ededa1b707f8c235 0 -/usr/share/xml/scap/ssg/content/ssg-debian11-ds.xml f983a4f14fded8c506f913664937bfdc4ff3fd9d5ea99b969028de5fe70620e5 0 +/usr/share/xml/scap/ssg/content/ssg-debian11-ds-1.2.xml 6c784df51ca59a658929ece13dacebb58225fb66c6d0adc9005c3b2fbd9aef08 0 +/usr/share/xml/scap/ssg/content/ssg-debian11-ds.xml 698ceae9981eeeb46ee516b549d6c30496b021f049cc98ed1bfeae89f15ec575 0 @@ -268 +268 @@ -/usr/share/xml/scap/ssg/content/ssg-debian11-xccdf.xml d7fc8e91fde20c44f558ce61a39029ba3a46f05aa3d63d3dbb55a5d03dfe6967 0 +/usr/share/xml/scap/ssg/content/ssg-debian11-xccdf.xml 2f425399ddb255d4a6dab592bf618b4f4f4309d5cc4b4e0801ca5d60f90a9623 0 @@ -271,2 +271,2 @@ -/usr/share/xml/scap/ssg/content/ssg-debian12-ds-1.2.xml 500a89e954f6653d7dc55be19a37c405ecc37f08a72295d33fc08bba4c2e82f4 0 -/usr/share/xml/scap/ssg/content/ssg-debian12-ds.xml 999b57e279a5569cc2fcc59938298fe6b3d7da8bafb4bc2459cf28004b040052 0 +/usr/share/xml/scap/ssg/content/ssg-debian12-ds-1.2.xml ae7710c52c0b93f99e98a36728d840d5ed4937ad64b83e4924a6c2ccc361f52a 0 +/usr/share/xml/scap/ssg/content/ssg-debian12-ds.xml d0a1436f4d9c0f5dd800cf1aa6ee6b3d7b667956db9e021904fc929eb9df223e 0 @@ -275 +275 @@ -/usr/share/xml/scap/ssg/content/ssg-debian12-xccdf.xml 257e3f5d9de4305773cd7c2fd670c48d6adc0c9960b4f9d202d5d0aacdc4ec4b 0 +/usr/share/xml/scap/ssg/content/ssg-debian12-xccdf.xml 1534817c74c19a8415bc656dfdf8be77bede17c529d9193170a2ac0330dcaa02 0 comparing rpmtags comparing RELEASE comparing PROVIDES comparing scripts comparing filelist comparing file checksum creating rename script RPM file checksum differs. Extracting packages /usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_average.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_average.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_average.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Average (Intermediate) Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_average

CPE Platforms

  • cpe:/o:debian:debian_linux:10

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Configure Syslog
    3. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Deprecated services
    3. Network Time Protocol
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 10   Group contains 20 groups and 45 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 High (Enforced) Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_high

CPE Platforms

  • cpe:/o:debian:debian_linux:10

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Cron and At Daemons
    3. Deprecated services
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 10   Group contains 23 groups and 50 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Minimal Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_minimal

CPE Platforms

  • cpe:/o:debian:debian_linux:10

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Configure Syslog
    3. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Deprecated services

Checklist

Group   Guide to the Secure Configuration of Debian 10   Group contains 11 groups and 24 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_restrictive.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_restrictive.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-anssi_np_nt28_restrictive.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Restrictive Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_restrictive

CPE Platforms

  • cpe:/o:debian:debian_linux:10

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. Configure Syslog
    4. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Cron and At Daemons
    3. Deprecated services
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 10   Group contains 22 groups and 49 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian10-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Debian 10
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:debian:debian_linux:10

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. Configure Syslog
    4. File Permissions and Masks
  2. Services
    1. Cron and At Daemons
    2. Deprecated services
    3. Network Time Protocol
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 10   Group contains 19 groups and 44 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_average.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_average.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_average.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Average (Intermediate) Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_average

CPE Platforms

  • cpe:/o:debian:debian_linux:11

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Configure Syslog
    3. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Deprecated services
    3. Network Time Protocol
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 11   Group contains 20 groups and 45 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 High (Enforced) Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_high

CPE Platforms

  • cpe:/o:debian:debian_linux:11

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Cron and At Daemons
    3. Deprecated services
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 11   Group contains 23 groups and 50 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Minimal Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_minimal

CPE Platforms

  • cpe:/o:debian:debian_linux:11

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Configure Syslog
    3. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Deprecated services

Checklist

Group   Guide to the Secure Configuration of Debian 11   Group contains 11 groups and 24 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_restrictive.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_restrictive.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-anssi_np_nt28_restrictive.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Restrictive Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_restrictive

CPE Platforms

  • cpe:/o:debian:debian_linux:11

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. Configure Syslog
    4. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Cron and At Daemons
    3. Deprecated services
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 11   Group contains 22 groups and 49 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian11-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Debian 11
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:debian:debian_linux:11

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. Configure Syslog
    4. File Permissions and Masks
  2. Services
    1. Cron and At Daemons
    2. Deprecated services
    3. Network Time Protocol
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 11   Group contains 19 groups and 44 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_enhanced

CPE Platforms

  • cpe:/o:debian:debian_linux:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Mail Server Software
    2. Network Time Protocol
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 12   Group contains 43 groups and 110 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_high

CPE Platforms

  • cpe:/o:debian:debian_linux:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Kernel Configuration
    7. Configure Syslog
    8. Network Configuration and Firewalls
    9. File Permissions and Masks
  2. Services
    1. Mail Server Software
    2. Network Time Protocol
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 12   Group contains 44 groups and 151 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_intermediary

CPE Platforms

  • cpe:/o:debian:debian_linux:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
  2. Services
    1. Mail Server Software
    2. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 12   Group contains 27 groups and 49 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_minimal

CPE Platforms

  • cpe:/o:debian:debian_linux:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks

Checklist

Group   Guide to the Secure Configuration of Debian 12   Group contains 8 groups and 5 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_average.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_average.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_average.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Average (Intermediate) Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_average

CPE Platforms

  • cpe:/o:debian:debian_linux:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Configure Syslog
    3. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Deprecated services
    3. Network Time Protocol
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 12   Group contains 20 groups and 45 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 High (Enforced) Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_high

CPE Platforms

  • cpe:/o:debian:debian_linux:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Cron and At Daemons
    3. Deprecated services
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 12   Group contains 23 groups and 50 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Minimal Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_minimal

CPE Platforms

  • cpe:/o:debian:debian_linux:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Configure Syslog
    3. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Deprecated services

Checklist

Group   Guide to the Secure Configuration of Debian 12   Group contains 11 groups and 24 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_restrictive.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_restrictive.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-anssi_np_nt28_restrictive.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Restrictive Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_restrictive

CPE Platforms

  • cpe:/o:debian:debian_linux:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. Configure Syslog
    4. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Cron and At Daemons
    3. Deprecated services
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 12   Group contains 22 groups and 49 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-debian12-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Debian 12
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:debian:debian_linux:12

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. Configure Syslog
    4. File Permissions and Masks
  2. Services
    1. Cron and At Daemons
    2. Deprecated services
    3. Network Time Protocol
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Debian 12   Group contains 19 groups and 44 rules
Group   /usr/share/xml/scap/ssg/content/ssg-debian10-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-debian10-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-debian10-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Debian 10 This guide presents a catalog of security-relevant configuration settings for Debian 10. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-debian10-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-debian10-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-debian10-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Debian 10 This guide presents a catalog of security-relevant configuration settings for Debian 10. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-debian10-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-debian10-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-debian10-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of Debian 10 This guide presents a catalog of security-relevant configuration settings for Debian 10. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-debian11-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-debian11-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-debian11-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Debian 11 This guide presents a catalog of security-relevant configuration settings for Debian 11. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-debian11-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-debian11-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-debian11-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Debian 11 This guide presents a catalog of security-relevant configuration settings for Debian 11. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-debian11-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-debian11-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-debian11-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of Debian 11 This guide presents a catalog of security-relevant configuration settings for Debian 11. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-debian12-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-debian12-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-debian12-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Debian 12 This guide presents a catalog of security-relevant configuration settings for Debian 12. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-debian12-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-debian12-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-debian12-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Debian 12 This guide presents a catalog of security-relevant configuration settings for Debian 12. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-debian12-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-debian12-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-debian12-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of Debian 12 This guide presents a catalog of security-relevant configuration settings for Debian 12. It is a rendering of RPMS.2017/scap-security-guide-redhat-0.1.72-1.1.noarch.rpm RPMS/scap-security-guide-redhat-0.1.72-1.1.noarch.rpm differ: byte 225, line 1 Comparing scap-security-guide-redhat-0.1.72-1.1.noarch.rpm to scap-security-guide-redhat-0.1.72-1.1.noarch.rpm comparing the rpm tags of scap-security-guide-redhat --- old-rpm-tags +++ new-rpm-tags @@ -842,13 +842,13 @@ -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-C2S.html 2307db130b3ff45d148f454ea297e8097c9783cc9e036955dd41de3b94d4e001 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_enhanced.html 00d2998883f8fef0b581ef847578247dd371509176290cd9fb87ea98a491cd50 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_high.html 9a6e57cb3cc66a77cbe1e52b8a77624ae9d176b6282467ea14ddac4a0cd26c9d 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_intermediary.html 77248d4842d1c653d837e142c55f9bfed4ecaa9ed06ebfd304078642f13b9ba1 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_minimal.html af4d3afca6e0f24c4f5a002cbeee9af112cd4eadaa02dc63a30c6a4e69212b4e 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis.html 9b929c2e6f109def9dc5baac2a4ac0813dae613ccff1cdab6a4ef4c0946d9f1e 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_server_l1.html 368c4bdb6926dba1ed614a4c634e08d8c83aa678d7fc2a4f79ee67ebd35fa1f8 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_workstation_l1.html d4bb6ec32bf3f1362bcba7a69075a8d9c89c109592c1b7c2c6181f43e21d8f9f 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_workstation_l2.html 673f46825bf682ffbb76becef73fe945df1fdb21d2a3b4a534a093d3e1e2cc23 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cjis.html e75cc9d9804e21a7b0d3482c8e46695ecab50514d5cd39c20b7cfeb566fc695f 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cui.html fd0608ffc368503525c350fdccb536a9b382c256fcc06d225416937fe33ac811 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-e8.html 90bd4f114d00d774301a5c48bf4d11e22ae0f3fe623b9dcf57799a8810a19031 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-hipaa.html 966a7acfd6b13db6734758e758d6b03e15433ce815747b91c8f50d17d089e5bb 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-C2S.html fcd700be4315b4f361173a4516dadd33ab5397281fa1ad0d4509415bd34c7d29 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_enhanced.html ce41c49e112c2b395277b7117fdb9b477b53da72dad46cbfb7f657bc3ce2b27e 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_high.html 0f8c860cb29adcc48a546b4ada7ecf8404e2061806548cd22cbf23fc8f2a8ccf 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_intermediary.html b5052ee684267bc16d58ae9f0ebdaf21aed3613c725a6cce44643c487f05b865 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_minimal.html 3b6268faf421ed421d6d3d960c671ac26d2ab1960ccc12690d330af75ab8a9fa 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis.html b04f328234d420fb8f7fb79c8b1bd1f4f715805e48e66abf9b6573b78db1c48f 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_server_l1.html 51971a97ffc58374db4d6b27246bcc0edfa59bbc0c9d6d4e00f28515d23fe5b9 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_workstation_l1.html 17ed82310c427d103926d3f5f2473362ceb29c8842b4f1f0555ca529e2b8ff25 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_workstation_l2.html 823fa1e4efdde6c206b609185765c59f3a95fdc5a5dba9d850753dd372f9842b 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cjis.html 3c93d68f874e2c95674e9b5d0ed26cf7c4888570fa26ca40355e200f99240034 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cui.html 54045fa61a2bc7ab155e490f8ce6f078a6cef19505008b14ac08e0d789aec5bb 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-e8.html e6dee4ea29b35a9ee9a22d181ade9553183441f4070e5a5204e666692c8dbf82 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-hipaa.html 55492994d2d02750e3b49f1a82151c1a145ab90cc2b31f55d7856cfac347db51 2 @@ -856,21 +856,21 @@ -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-ncp.html 77c031ac3f9bbafca15b1deb7dc88d717a7258d7abe77233ba346321e83a5d1f 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-ospp.html 734676feda2f265c134c27d8d6dd320e8d0e3a6ab3ac5fabb86e47d310eac33a 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-pci-dss.html af3a90eeb6a898619b84d2672a256e64522fcbddf4e99dc446865edc10ad9e62 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rhelh-stig.html 3ce7d12cc399a61c0ead191cd04ef94afb8e022b1532acec0c0039ba94734bf7 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rhelh-vpp.html 18185d607155bdd811958be5e1dbd675d0a44fe6a958cb2576aa9775cc139f55 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rht-ccp.html faf636d253ae816d3e9750ef6845aa501d4e0d17651fa2869270f70f065d39ed 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-standard.html 772b5e223e3f1a740aa6381de1db33e275c21fb574084f4600d84fbd81d8594f 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-stig.html d2e2c23a561494667ffcc507d9a69b8c145f3e5b77dd281292c5a39911eb14a2 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-stig_gui.html 7bda4bae03706c1fd696f420bd16f631e15ecaf364de3f70b51a3a5f8604aab0 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_enhanced.html 86af8c47c65ab14868709da7e9f4619e68f1623f1be69a5bccfaf6d0bd5ae388 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_high.html bcdf657b9ca7d8bdda479ed9390bb67e953b5845433d7c3bc1c6809cc1f341d6 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_intermediary.html a7b81deabc96fb16427de29e5fdf9e165f63861c5b20ef70482cee25e8ea966c 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_minimal.html f6da886d68c687312c03a2378c8b101f9bd530777561abc75c7d9767f76733c7 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis.html de6cc03997f428ad028d033a0a5ba17797b2d75c042d32a1ec2b4a018e5aff8b 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_server_l1.html 203c9e8e98f3a43ec27de98da7280a09acbc3d6cf049e107c2b4fe6b629bd546 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_workstation_l1.html a22217268a52e0f428e1f048c38ed06cd6c93fa0fbba5d4adc62855e21283dce 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_workstation_l2.html 2706875b32d9263232b1294b77eff844f99aa5b0a9996e2305bec0aaca088b35 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cjis.html 9b468facb8b21aec470ccbda6c42a7e9fe2faa9105218620438ecf8029b4405c 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cui.html 821208ad862edeeddc84ce23952b9b35cb120b0f73a6e28bf379f4a0bb7d0082 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-e8.html e6e2110afb713fe9ff38428764279b32b3ff65696dae3866c0188dc3e311a366 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-hipaa.html 98b8727bf80010ed06f5c42a9aea925845c9aabc459f39c8d50aa41adfc956d6 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-ncp.html 4f6bd26266b015ccb13f331b7383187c03e0a401748a32a6d3a9fdd8d97b95e8 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-ospp.html 24c324975ef3abdc80479e1bffb98727347639770e2f0ed58403e9bbd6bba72d 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-pci-dss.html 7a647b0504f5925b1a098b42b82b7ecb3889f53b5399bc901f644148e7274841 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rhelh-stig.html 76d0b1dfca0933b5cb651a1674e7eb9204ec308e8fcdfe3b6e153c28c5d2ff70 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rhelh-vpp.html 13d736d4353d0416d24d4f354a58fb58c1d045b51608b1733523b447c73bd8af 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rht-ccp.html 80d05d5de6a6eb15903aa50ec4beb89cf34c8af43a6264fb3aab41e9436004c5 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-standard.html 57384c8d8984d343c2d57697ec97c9a32573cb2b2ef668a422a546da6aded176 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-stig.html 2aa95b241a03267546083d3dea27fb8553ee05f3c233b66538585a5cf17e1ca2 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-stig_gui.html 9a96499ded41b924b16384a7a6f5cb16f790db72c02d12dcb964b1a2eb754a2d 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_enhanced.html 13eb337fff9e9c513903f349707bcd2bf594b6fa14842f04471e9678f021732d 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_high.html 8da6dd04a9dd814803815e51541b1ecc4ea99ee85ceadac1878e6a13bc8ef3b5 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_intermediary.html 409c10a26f292335c14b27c695a4e0d39cdd84cd3d8e47a0b969c70f83484ccb 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_minimal.html 2cffc7599aa6a7f9f34443b8c56fb68eb288b0133269557d83724ddc6212f8dc 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis.html 891b2f9af53d18091de54e1cf65cdd3b4a5bd605bdb9bca6bdda40eaa4085209 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_server_l1.html 762122a9c08ce4dac2f489ea72fe52cad5f9292e4d5896aa63bf35ffbafebaa4 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_workstation_l1.html 4c720b6e7e71755689bb931ae466063cd3cdd02b44ab866a1743465a8d8a224f 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_workstation_l2.html a28eadc4ac207f7aca92a6170678c280a23d8e94cf374a87a11eb5ad94cfb8a4 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cjis.html 07454db696b26557a6c2628fb091443b0d0b1fc350a4ed6608c6f162b82ceb39 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cui.html 417e354283796ded1c0308bfda35c71a6759a7dc687eb31635e333200be52567 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-e8.html 9fc80a902c7492d125fb1fced65ed333343fa5adfabe160cb83493ca7830263f 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-hipaa.html 015a87f193159a983b9bfa02e3163177c329dc4cd959ef69e29becb446e72e42 2 @@ -878,21 +878,21 @@ -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-ism_o.html e21e46e3997db7aeb5256f50593edfc27a7cd7c1c16f5164d2a9715bbe72f7d0 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-ospp.html 5f0e05850e4e820f8553175f8655a500984c9edcd63d5c28e921fe5b5ee9af6b 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-pci-dss.html fdb2546c49e80be55386b1efb38c1735875199a3f95af25c22ba0efec99362c4 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-rht-ccp.html 751726c791d140711cd2f69ebd02c5ea0309f517720620fcd1e5b630d0fb5ddd 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-standard.html d2508a68fcb1cb035c6078b3b839587c74182756284c105961d61ce0cfe7f42a 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-stig.html b64c005f69201e9c5a548a759f647a90a504697670471461e8830dcf5aff470e 2 -/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-stig_gui.html 816b0398cadc7867fa221db86b037f4ad04d3d11423c92c32f83d68b3d2e0942 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_enhanced.html e4cf6238737da85f40c8b3099c9ef393151a6cfda84832ef98ba8af0eb7d3f69 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_high.html 0ea6d591da35000f13169b88c9d19aa7fd06d663045d120dcf8aadfade4c550d 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_intermediary.html be1488c775cbf77e11b8ff77eb0746ecbb21916229054cbe6f463ef3463eff79 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_minimal.html 3b72ea612f6ba08a3fee50d39ccc2c3f585541246c68319c916b89d46887eb04 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_advanced.html 5b75a3c048122e4f9d2ff66f3176cffbce4253cff72d10718b0ad41fdbc27b15 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_basic.html 0f005d376cdba1f153fbaebdb3b4d535e24c0c3e5fb8e6e07d05ca16afe33e22 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_intermediate.html 211faf81efa637e8a73a572b1ceefcb0c55a4180c7aff62f83c6d062428f54f8 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis.html 13c4e05c44b9fe0b2373bf3cb4e5fc6b3ece12756602575a593c5d6b3068ef37 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_server_l1.html b5e437b47c8b3d2e70ecc43c66c821d048e33f389417de90f194718ea00e81ae 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_workstation_l1.html fa5dad382b658bc25b0593474fe239cd70edd97bac90769e3f8229aff9b92f25 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_workstation_l2.html 22461fe002c63d31686747c46c3a567c2fa367560498c8d7188c28a794360204 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cui.html e06871370eecfdb74d1b70c58f2b2d372f8be925cc93286e2453d48ce689090f 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-e8.html 2d429f4c0754a43f1b0a5a62386b2ff32c355f147e67f81d0674586b3638a029 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-hipaa.html 9c8ba58339cf972b52d49ce51d7de26338d9ca16cab622189655b02b620e497c 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-ism_o.html 85c9755924bfc31a3136cbadcef8cf5fc3e321aca42e63e1572ea17b9a759a6c 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-ospp.html 9010f20ff71446bc42bbf7d41eabab2b5763bb8ee75e5bcc328566b6da602d0b 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-pci-dss.html 38387b9e1bc7fc78b1f70d4aedad4a90ecbeb6f01e8269b25ccb4f0a5c804410 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-rht-ccp.html 5e4553ab27b3129b8134a06c6efe3cd3cdff70cf27bde4a2f3f3c4a0e5a810cc 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-standard.html 9f9977dc382c6184afcb9205b5631b5e31244e28c262afa725232883ac0566b8 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-stig.html 0dfdb99e6232611dbbafe84116286c10d6635716c344c67cc1984e2c085ba101 2 +/usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-stig_gui.html 7512ae8d9e4ceac2c7df7edf2eb436fcf0e1527ba91aba573f3dea04a3a8d5e3 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_enhanced.html 33ad9f3c335ca1377b756c677d12d2637009ade600c990ac923652dfc9c898c4 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_high.html 1dbf0ca7d300755b901631cf7b95b55b4793dce8a7811a6d9430bb63e240eeb0 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_intermediary.html 8aadc8a38900a6ea835842f886c788d49da28f835b231636165ba58ad418294d 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_minimal.html 9579ef6ef0054ebf8c5c4e69d92b9e131812f187a2f8c6bc1436d0bd399a4c6e 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_advanced.html 60ed448c4784bf9f9c1e9561c4aec065d82220dc2eff124024321785aa2b7b17 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_basic.html 83543f649c1e43e4a781885d61240661aba35974eeef7bc0a434de03578c5c86 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_intermediate.html dc5f66c773bb4b11746e2f379346a06420500db2e536b29c0c527c291b426c89 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis.html 09a366157ce71fde28dd17aaf051a017a80b0a21f2b0cb5780e994e7b3920753 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_server_l1.html 1cacbb447d42c54f246e750fa805945a903df72c6ed11fec29612d5934aa0f68 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_workstation_l1.html 1361c57885f3e12f35e3f7533f90c295f856cb7b25fb0add37109a697f5835b6 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_workstation_l2.html 02c912023049a557f0656720b3275850319fe354fba063409d798c05111c360c 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cui.html 0210cc75649663670e935312b5b051648cae8f1cf4ceae35a49d54cfcf4fc0be 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-e8.html a6d338ba9ad2630e0dba4323381f84d2c218748f60c12de8350eadaea75b7c82 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-hipaa.html fe0858ae2e20a9803fcb665373878fed85e548cb1d404d01e8d555910e7a8db3 2 @@ -900,6 +900,6 @@ -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ism_o.html bbbd87da17c4ec70fa9a2fdbb2ed9f3cf1b0211fc1f0cb9fa8892ce65ff2f46d 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ospp.html a34090b2fe56f17a163ce6f05b0b82dfb154351617bb9dcdd9d31a68c88dd3e8 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-pci-dss.html 518eb25b41ae4812006e08d65d67e1cd2d17b7ea17d7479ab1a454f13b3dcecd 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-stig.html dc3c5610ec020af8cb41e37709d2557f86d2ba24d071f3c90fef1564fcbb58a2 2 -/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-stig_gui.html fdaeac2635d87ba87182cf90fcd9d0c7ae7d672f793dbca93c12db9e5cd788de 2 -/usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-cusp_fedora.html 09a5cddf37cb5a4c62219fdb559cbaf2fb592008e4c9309ba356474e5ae399cb 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ism_o.html c825eeade0b193e0ae35e0f7ecf3df38935030fd1892048a81a3fbb609e8f2cd 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ospp.html 82c77c68f937aa48e64060d5c12ba0e0d52a91aea65c3aa0942c4392a9e06948 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-pci-dss.html 4bc54f6866d936cca607a80361350ad197e812439e15548da9b8554ba351f697 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-stig.html ce65dbd83e3f9253f437e9f7de987b5230f441deacc09e7ce45499c99c4a5cbe 2 +/usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-stig_gui.html b0aee9fca5eae0480c163ca8c534daf709dd3863e88d8c7e23999ea3885cdb13 2 +/usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-cusp_fedora.html a81c1b46324084ec0bb84a602021bc9c3c9e8f5643bf357d910d18a496d3af5c 2 @@ -907,11 +907,11 @@ -/usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-ospp.html 8939cb5e8ecb2f491e54c9556262a65c124c2d4c31896395138d9ffa127b950a 2 -/usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-pci-dss.html a0198132355380816cfdd449db2b22f0d02ec5dfc2374439e2b46533acfff3cf 2 -/usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-standard.html 1fa137feb0c5a208f11852c7f1b21903b6b2ad177d178b50f93abe132b65aa03 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_enhanced.html a2bf8f065aeb85862d146b5f8d69cbe7329c7ac7b9c4013a39f57d086b7240cc 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_high.html e1a0768a55753ddb108c8a0627aa94d977030d25ef84fb78a9a8a9a65b15bcba 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_intermediary.html 5f299ec57b6a5e822652fbc521ce57776b5f4caeb9e6683da1254100fdd22707 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_minimal.html 8aa578114064ab0fab0b52ce83e05406a833b9a7cc4eb3605f6fd9b8969cd5ce 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-cjis.html 24c172de8b6710767e9ee1055b7ddf627e6eab16566602892f1b3f3345ef4bc0 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-cui.html 27bb4db91e5eef44d4619f88ea62ed39c84373570fb834a534c59657d7f9be4f 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-e8.html 9958187727af3a97c16f3d504427411552cbf77f6a75aba146a9d992b8f4af6e 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-hipaa.html 005c424d62c4a15373a5bbe76fe5223ba3be9a0a9f23329bcf0dffd96192bf78 2 +/usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-ospp.html ee1995acf22cb8bd8345a3db16c54900073f9fbbb309102df1ae2812d23826a3 2 +/usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-pci-dss.html 3d89de39c8b417487ee28e3a96cb7ed32fa746f3b7e2cd9a41d13ce66737f00d 2 +/usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-standard.html d652efff6fe838e0bdf8fb01d724bbd5a0dcb0a5d5fb472d79a364926c0f2d5c 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_enhanced.html 550e8083895913da2df3fd3444f368a2f999f3d1fb980180ffa326718f76595a 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_high.html d4179c8b904b71f014254b285a21b53ae35dca50bcd843fac2bc66e860f2b8aa 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_intermediary.html e748ee5e3270bebff2c2aadec6a7c13cb0c4f7660e594cf80918d1368f9458fa 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_minimal.html e43d03fb5d8bd9df59c37db099145656eb3f619349cd45f6b7521481074821aa 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-cjis.html 77102bd1b14e5c82542140e5a757a51dcc2f4071496e17abba711e288b9daef9 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-cui.html 2a7a5d2938df8e8e8044209a3b7cf1a47240508e63eede4815a6c755700c7144 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-e8.html 44f182be7012e6e866e7eb87ef306adf57ee7ab1fe0f716485b433068efc6f83 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-hipaa.html bae3f17bf599374cd038d0da486c11db8ada946c0fa625a8ece980c882ee9666 2 @@ -919,15 +919,15 @@ -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-ncp.html 7ce7402b2c5838993e9d09d1b44637fa70c05ddba0d91a19a9d5aa8b133184b6 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-ospp.html 798d4e368c37a02b654bac41590a85124793498949b07ee021ae8241f6524fae 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-pci-dss.html 23c9abebb99f900dad5e6ad6939a7b9c877386f7efce07941c13b22f50b787d4 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-sap.html 02bf685a114cb69d17577b7d4fe5c0f9dca9d440465f2cd0e004c08dfe1ddfc5 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-standard.html 281985761728ecd4e29b20b60fa1dc0c486a3dd6dad8e87f47db112a66fe5358 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-stig.html 736567278ff0925f8f5b57813974174a937c239d92c1573d418761f7efe969db 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-stig_gui.html 7ddcfffb110c053971f7e9d759f5df0f011bf1009beef36f9ca48286c6885edb 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_enhanced.html adce9e57ecbce0f5afc0eb73fb7cdcee6507aa1e32404ba8a90faf2b3b09d5df 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_high.html 73cf9ac001caf095bc66a16d259b2bc211ac7a4428e8d5dc5d1602d6251f713a 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_intermediary.html e220de575435a34f9c75613ee18ae6807de3e534606b3003d03653bc2545a8e4 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_minimal.html 73eeccc56d7e7964b20c59e8b959113ab7f633982fb2a3708f798225a678be2a 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-cjis.html 7913fce83b843099a6f1cf1a9393ab08f46cabc8128df9f332f59b25cb154367 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-cui.html b97b75882a06600299679f6e2209dd119752c7b8ddf2afe20e53ff70231e7fce 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-e8.html 7c80101446b14c7acb735858247a2cdadc97dfc1fc6b97b3806d15a19a176c26 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-hipaa.html acd4819b19b78df6fcfcff6106faf89c220774ada3c7bfc8fb05c673b56ef414 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-ncp.html d30ac187bcf6838e935fcd66e9ce1730996ed0741845c1712d7318f42b069589 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-ospp.html 179e5816eb5d4d290348b00687ea16282c90a021586746ff3ae6e2f3a3bad71a 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-pci-dss.html 1a4bfbbe2a9165a448a31440503caf0efe46d6455ebead210c19eb716d2db2ae 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-sap.html da078a53341cb6657c30c24e2acce29db77e369a62fbdd88f1adece35f6b7b0b 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-standard.html 065b4e0d8267828992d06557dbb86b58db0929e7396bafe8e78505a99ef850c1 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-stig.html ef1b98e56ae9ff77d13ca51a379c1f21ec0f7bb3eb17cbe5b8138c043c797acb 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-stig_gui.html 1ddb0f0a20c60c8f57c6aeb25cbdeb797b4ca516fcbaa42b0afdf4fd4fa27d41 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_enhanced.html 325b891d7cc6e5eb51c6ad3b3136e36acb8a5401ca9e56d0f056213489935d0c 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_high.html 31c0818c2d73f41e958722222420d69de91fb12cfbc41ddb29b2f1c8b540019f 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_intermediary.html f4e65e485e01c7d74606afe3177f6b95d1d5134d09241ccabfe3836ad9db0012 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_minimal.html 9897baa7eb2b24886bf2702b343451a1001e394a58f76e73c99e1d2eadeee4de 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-cjis.html 036d762e8ce277852d46ffc76228048c8dfb4ef2db44a349a2d2f66407371b7a 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-cui.html 10854f6aedc617784c30a2274521ec705a54058a5452cd6464eb7065828c2c19 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-e8.html c6ba769a932fb22473094912ab0862bfa88bbf6df520a6169c540941abeced26 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-hipaa.html b7a8aa1916d47d3c96e7686b02febe71022d5bef67ade05b9b761d9613f8aac5 2 @@ -935,12 +935,12 @@ -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-ospp.html 8e2dd1c84d33747eb9967e4dd27393128a638c725910620a2dda2e0e079ad913 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-pci-dss.html 794955ac06a2fc7058f13c5d2c32de79134f4abe379b17732f945053a9879bae 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-standard.html df90e4483ac3910a16f532fb8ccdd6ce2a68513a54a76c25cc1068ca5fc4fcb6 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-stig.html 621dabe7d1d9784f2ddc824d09e0511f26a2ca7b244d6748fc7947a119f3178c 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-stig_gui.html 85a0080ac91a1dce66ad1fa7880709d77cecc821f64237db3aabb7a13a564d3f 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_enhanced.html 2618f0a91c69a490f9cb1860030a77d8314233e194593cd440aa54035d88c5fb 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_high.html cd5aabb7e3d7963a60cad7276a5dffee87717fdc923e3cca67ab00c2bf202638 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_intermediary.html d8c0dc6af1bcefc34a5d06c29d47008bfe291c793d9216b9b9a8a4c4f6b14797 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_minimal.html d289d3985371bf233fd6c65905b5f4dd8bb41fb632bcc03d801884438a7b3594 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-cui.html f33c4b72455fb73d4222191d1596e8631ad5a268eee254ce02f098ba3dabb359 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-e8.html 313cf48c6a1a8008e0efc9215afc8701398ad787183d8f5d1b188807a1338d50 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-hipaa.html 374df95a58f9834d45d1fb64f3e71f13c9d8ba00ef0e510f8230cd55747009bf 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-ospp.html 63628e234f5342f6635b4128cc645b1e247bdaeae00131939657a0f093476f6d 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-pci-dss.html 77e0c81a2857250909d00a0767f088dc06b0137fd444175c0430a75925a42215 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-standard.html 76c528aac14edf2d1997f3592d87bd788682ba0f16730ebb1d4f415027a94234 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-stig.html 345f8ab917e12786652f640f9dba40b31316eefed227b916e3c0e4e8a7dfa20f 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-stig_gui.html c7954ce293034613cc501c8f0c86807eb468239b093ba695f7c666751997829d 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_enhanced.html d2935c029cf1aef503fd162177ffa4b6d93c8005058520a0e2df2864b1f8ee91 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_high.html d6eb516164603ff447bae8deec31a54f216911dea76c9d990c7e48aa5203c13c 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_intermediary.html 07b6fc3695453bf16681c1ae2f67e060a96939fc35c440df28ff3c6ae353d270 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_minimal.html 052f577fae6dd2d561d20a53d360b50708e32a467b8e3c7c027c23839d8dd5de 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-cui.html ee4500c695622149bb011a1cda034c5872ede18d706eeba59a970b29eb127937 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-e8.html a514216bcfb597730f1e9d7f4c66dc655a62c64986e6701ebaa3a014dc3f9e6a 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-hipaa.html 3620310ce994310c3cf3ac72b0402f9e927a566c441f731ecbc27a8114b57c32 2 @@ -948,5 +948,5 @@ -/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-ospp.html ce6bab3f23541d44fef7454490316f66aa5488833b0a5cf867a770d5209b96fa 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-pci-dss.html 693fe58bd1d07d2d1a408468674281e4f8127be822cc8b8523823fa28c81775f 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-standard.html 0ad957eb01fa6d3fa477a50988beaa1c6ced192c542705abf487d1b582acbb5b 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-stig.html 2b6ef96ed42ed2ca3d497b079bf0df1c3629cb3a7ca0c50da7ed6b52a791c2e2 2 -/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-stig_gui.html 0d0a95b774188afee0852fe32e228fc94ef3e5ca6c8f01c2052ae340a88b8c27 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-ospp.html f49f81dfd4772c6000521fdc9bf6a4d7cab1e94b79873a8b99a025ce5c6a1175 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-pci-dss.html 224912eb00507852464f3df5c69f54004cf55ca999c58d6539a54ce15fe0d4b1 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-standard.html b6a1b78a64f09c6edc8ec0e2dbd60dbdcdd3f7559dff2d98750b9a14b3559155 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-stig.html 6db96617b6b249f46100619090514cfb07a6d9afd5881b1fb4f18dc64f86cd51 2 +/usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-stig_gui.html 3e57069fa96112c597e45bc0612eca8b30841879476e219f70f32370b33c7eb7 2 @@ -954,9 +954,9 @@ -/usr/share/doc/scap-security-guide/guides/ssg-openeuler2203-guide-standard.html ba8096ebd14b4779093ddef6912d84740794e923251e13261ad279555bd38655 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_enhanced.html e36f5ad32f13fa47456817f46a1fbf269ae0e49dcd0a4c035ceaa4dcdafb6d73 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_high.html 499a2f5b42556f0e12519f3658474f50426302a2dcec78876e90cc140f38ed16 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_intermediary.html dcfdcfda06a4f04ee9079afd3d2b069c66e564e93a306b2df0eac22b757495c1 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_minimal.html ee5d4e03287b15595c1e32df01fb2cf0510427238ad22915bd045002f0c3841c 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-bsi.html 393acc0d75b139dd7680d39951a24fbc6a879feaace439ed114e8ee73456e049 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-e8.html ab8d6376f67ae7a36d9ea8347b972b7495d2535a677ab7f7f5a2a363ebff307e 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-high-rev-4.html 2983a88367951c499e2133f6692aad39e7dacd9b29b9c15c7c59a545389bd588 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-high.html 9abc4ac0baf55a9aac25f62ba43c5b0f8f8cd385201313c81ceac77469bbe933 2 +/usr/share/doc/scap-security-guide/guides/ssg-openeuler2203-guide-standard.html 136b5cd80b306baf5831c0c7a9be4668cd25dc174351841a0919ff3a73b69b95 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_enhanced.html 626b7abe78ce8d7a96e5995b711972cff22f6c94d4ee5446730d0b27d89e6e74 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_high.html f7ef3b852e438fc75964ebc561d5e2ed120532e95dd001b5a5a3db71b32265a4 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_intermediary.html 0231766d5ad9777090c19ef4e8afb8397d8f96b72c2716c7ebdbd0c66a76ac4c 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_minimal.html 4f9c540262c4036b45e5530745d3d13320100c7d28e3af0f2aa4d330ac0132c0 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-bsi.html 098e6a3d6116db1d6109dff4a6963c7b7dacbf5e139a32c81cfc29910fb644a8 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-e8.html 453c79d50a0ca34df02dd72680b66e818ebfc2e8c2c3992b3fa991c00edfc6c8 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-high-rev-4.html 945157aa1f446e10e2e3c58ba52dbbae23f6b426ba5385fa371a6c80d1816982 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-high.html 189002933b136f4f0fe911de0d08a5d20d507ecd235f9631c3ab5222aa9c7414 2 @@ -964,18 +964,18 @@ -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-moderate-rev-4.html 856c3eeb1a899404a0119297fbc77695746a58c14b1d4ec24aa2e32229f93090 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-moderate.html bcc171721fec4590fdda0f902e78f9e3de3db9a1854e4d2ad0c52e626104a3ec 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-nerc-cip.html df0660e95a2f4124e8dc1081a8ffe4376934e6eca06d067f7b4a48a1dd55a842 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-stig-v1r1.html 39522aa426cb4ac24a7ded0276969147593214a74525fa1690eb6008951183db 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-stig.html 8560a3441ca53c87bd3be09e9fef5295c3024a10d73a791098deaeaa672f6904 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-C2S.html b8257c871dbe85ddde274d9a8832b5da91c3c3175327ccf95fb721ed93c5d7d0 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_enhanced.html 4a3ea7492a1a237f819afeec1794dd8405186aa118ac80621cac23a8e6364349 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_high.html a765d9f6824d4777d007c0d139805a8a07458ab91c4f52bdbfb085601ab8ff49 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_intermediary.html e0dd5556df01dc7a44408f97a34de11bfc05861fc15b8e9282b4f58f4b3547c0 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_minimal.html 587d11c6c124e382b2324f210c36b63109582e4b2343172ec490d1f52e30e805 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis.html f5827f10a0542ed5a203da0938d9aa0780cec1b989d5b0e3a6ee56658dd746cf 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_server_l1.html 069fcaf60009fe10db288a8e8c81a10e4bcb4d1adb4699e51df815b858f17798 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_workstation_l1.html 87148d3d2f87d71fdc72a01a16c1f620323cfa820ecc1ed32766afe3e5e63952 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_workstation_l2.html d6126e01c132c9e2fb9ab9241c06e815d63c25de2e9b83ce790855e8e9c5c835 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cjis.html d11720cb5a6e407d136ed667a73267210fa533e330d03554c9ea56a0db66ae2f 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cui.html 3aa4a4f96bf145d68f68840335007f49fe54a3d98d63077a41d5699427ce02b5 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-e8.html 4221b8f304ddf0c0687a842e6d620e7dece8a313833f2aafd84ebb4db2b7f8c4 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-hipaa.html d37ecec64730375b6ce0d4b2668d666e0b34b84a743e57da654872a787eb350f 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-moderate-rev-4.html a52d07108ce09d44e7ec34be112be5b6771e7b44114fe86929269c0bcf68e335 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-moderate.html f39d076a623d55563110b6f210a09b1c6a32e1cd4dfff678826a4e80e2a713ce 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-nerc-cip.html e0cf7522a9a21f83af9d33d67a9359a10212682774f44a286fb9d5614b231799 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-stig-v1r1.html 62270db70eccf7dd5c08b2de4d24c4462c071549fc10be0f432ba0e73e3dcb24 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-stig.html 857c04ad8069ec41300f33f066f0c7093018b6b99ca8053f4402c683312162f0 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-C2S.html 7cacd9e2446b631f383725c96afacfa1717ff51fe9e80938ef8ca4b11349861a 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_enhanced.html 520998f4de6e665fe8b7b864eace5bf36c47577b78168d5e9b31af285036c438 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_high.html 67e0154411a0bee1dce076cd44308d46e9c9aa45052205cb7d94f913ae9e7374 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_intermediary.html 8c45fc024f42a9ea81e426e02f31b331ed85f0a617e4343064c966c586618a26 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_minimal.html ebbd11cbf547fdbd8d09264ad67e6deebab0c682ce5739685c7d4c590df5fe72 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis.html 17fda673e9a07c97dc85610214875fc7ffde157537424dfc1bfeb20920f81d15 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_server_l1.html a13fe043f6c9673934570c0381f2938ce8767cb520c2a3c5c1f32827e8acfb87 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_workstation_l1.html 82a1cd42198db58f7a9c8e3ce1c3e37989b845c4b65af2ac9da0f6281f643259 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_workstation_l2.html d70f6953a1749302ccc56073204c9d30e1c4974dc6d53e2c0ece74acb2ccf275 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cjis.html 438c0c1ea0750251332c41189e7f998e910d2fab63d975bb2a37e261392851db 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cui.html e52ab3a346e1d121e345da2fb703692a8c23ffe9ff781b0ec749b957d01d333e 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-e8.html 855708c0c0e5c39943a22e7e73dd6085e3a9c8686634a2da529f71eecc3d68fd 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-hipaa.html e4bb7ae8903b2feea16975808d4bbcc16b40f419ab18a0382d866f2e842673cc 2 @@ -983,21 +983,21 @@ -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-ncp.html 6b79e87ea64b59d231749c88c8253ef5b7099a9cfe984a9b0fd706e34da05b08 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-ospp.html dfb7a20622fecc135d266b702a0e9a6a5348c5b9f9ce212351bb7c06ebda35dc 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-pci-dss.html 529c800fe36ed9110607dbea512672c009979e00b44d72c2dc0deca5f572ad60 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rhelh-stig.html 624cfbf56603e7bb0b1f93a38242c932ee545f44e2bba0947e579fac28546c4c 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rhelh-vpp.html 5b355bda404ba2dc4a81ee8ccf42b3f63c259a860403e04d3d038df5692c51dc 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rht-ccp.html 728c8a300d35b37ff9792c40cc22cf899d84a95900f48de2c01345c9b0a93843 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-standard.html 13cf73beddcaba3b0eff147e93166394c677413c6b3a086c1dc689ec3accc750 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-stig.html 42be6a6d14c6a977dbf8f50d88713672161a18a1038a7952f1feeede75995ce8 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-stig_gui.html d19a395e10f39951ff14fcca2333e2dcfb297b1094a7f856f2f1036e3ccef850 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_enhanced.html c862d0afcfdc6b1877d6ddab0b04ce72cb7092eee0d319825e81d1ada8ef4097 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_high.html 335a0026fa195e330e86582ae4f6e0ff1b6b46cb141c8cf78c244af70df6f2a5 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_intermediary.html 92572fa7c5b1702c5e522ad8124060b6417df4c660307c442867ffc4d282ff53 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_minimal.html 4eddb390a4a59d00e5b646d85aca994d56611cdef8824f1f3267e918619b5a41 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis.html ab8ee1251bdb87eab9152acd4e0f70e5dd9183db002141e5a30242442369b091 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_server_l1.html ba66f4dc7da836fbbb8e9a194272fc620942dc39f750309bab1997f74857e7bd 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_workstation_l1.html 59750f7505e1113d18c242ea7c097fadab863669e2ad3977694a0318c4a5db9d 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_workstation_l2.html 65c2c1a28989d404beedf0dbf6cf444956778b7956362f47ba841280edfb05db 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cjis.html cb5b68ceec941d2aaefcd205200511364c9f41d3adca883538cceeef1a9b0d2e 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cui.html 610f9c989388f59fba1d4948d3dbc40578bcb3547ae82fbed131b1f53a0b72cb 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-e8.html 2add7597769ad14cfb040e6ffe2b74da73234a82a5d1b2f7e4a7d7b4f3e61ef3 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-hipaa.html 039a18806a8dc671021b12725dfc482337d9cb6773b1351c19e2a8d5cd4262b8 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-ncp.html d16e9c57fff003cbab38cf62a35618ef391ce75b698b7e82a7b0229cdb5773f0 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-ospp.html 102e2b5a34a06fffc5717af1add270e17a4081241a5261af74079da229bd387b 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-pci-dss.html ffda830920c4033783d9b5db02f17482f716d1b5a54fc5c8311dfbebe46347b6 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rhelh-stig.html 5e13c4032f28d356bd51f92a84891ecabf793120e4f3440da4889f9481693a5e 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rhelh-vpp.html 4002eb01a00b508b515184549365dfa0e5a086e0575c1d4f17d9bfae63d9aa94 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rht-ccp.html ec929d74141575dbbe06b4d8fd0d7979e84acd85ed649ce63421e9a2f46da7e8 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-standard.html 702936a215b13de79b40260f60fec5a3da5ba17107b8190a10822b5fb21e19d2 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-stig.html f571ffc94ed291b172f2bcaa5c31f50d1832ac4f84d2133378733438c3c7a527 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-stig_gui.html 35a846fbddb70b302ab16e196c97272d94419f7aced388cbb014565094e896bb 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_enhanced.html 381a29d6408540a35722a64887cb18fdbdcf2bdbf13ef346783481d15a262dac 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_high.html 8442817b805daf122edd8b3c7b321cdbbfad3c8b880b9b686a7db2bb9fd2a577 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_intermediary.html 4723e4745e204b726d582dc436ddb765adcb111124b5966a8ac64f89e7c0ac37 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_minimal.html b34d3c90be6e7fc886ec0c23b6b7aebd7020af07635abafd8553a308655505e8 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis.html 23b766e837587e2d96e2a363abad396669f195556cdba7f88764931e8092e872 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_server_l1.html 91b6f68c59ea7ce29b1f687b290f38a48a62733d1a0f6d544a15e928136954b2 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_workstation_l1.html ddf702fbb08ef4bf6887583f6bea5f7537ce4ec8b16352d98a46c2e36ac2fab7 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_workstation_l2.html 43fe0f9d16be8a687aa369a0c0bbfd97fdab272582143d6a4446df15e52a05ca 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cjis.html f39137a4ed670a11751455c7428b690d87c6092316d34db114e1b33131a2c818 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cui.html 05fb4a31070af63aaaa6f969540c74dbe45d9d3ce456188ac78c13769a3bed6e 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-e8.html c3b7ed574466656b5acf7d37040a08b0f6f783d8f56b4f455219cfba2ebb4411 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-hipaa.html 36b12fd933c80935d9d6d301d72d04fb8586514193dc3666a57a18f89b3442a1 2 @@ -1005,21 +1005,21 @@ -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-ism_o.html 839bf012cb9751a43cda4db895c8133ec893c541124a1f20b9849e935e675b67 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-ospp.html ab07eb62696c3082126131a835cac438c7318c328317dfee3bb0bffaf3e53c41 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-pci-dss.html ee741da035b9e302e3aacd682c677822e0345eff01c71b82efa027c9fc4d9488 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-rht-ccp.html 45a077a9e1920cb7d77a5d24757cef47e408600084f7d1029deee6fdb58f1cdc 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-standard.html 8d8c4ae67005bf77db72c37e144c90aa1157027bdcd6c170d860cfda94f4d3fe 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-stig.html 3385dd5071f33e742c0c4751f3df71d1538027158cb2ec428570c06dd8c91f95 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-stig_gui.html 602f64a941ce0106e16bfca7685ff67b66dcd20962aab57f18ae16686f1615c8 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_enhanced.html f7f05f43bd3863bce59ae9483a7c313916e9ca686282b602868cff50b18b465e 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_high.html 8f2bf195476eeaa24acd7e45072ddc3452b3a51cae42d5fab6e2ab8b3e348962 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_intermediary.html 879c45f0f3c170ac15257b7e00a463d23278b374797aeffa60df9db6b2540ef1 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_minimal.html 068610329801f47f34ad9f0659403ee42891a782020c228c8ea0c4cc84bc9889 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_advanced.html 5e6b9c11d7648ab67bd3ce076a6aef28669db8a9c7b52f478c7b5af987941027 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_basic.html 9f7a308b4a8f225d9e8cc156715d5e9a84f58cb8ab6d68e190132e916f723dbc 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_intermediate.html 97b98e7adf67e3502723164a75c6d849ae20b46980cde78ece43485b85a4b5f9 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis.html 07e61940d63882646af89ad0c3030b4a74e8566bdcab801f4809f7b394b05deb 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_server_l1.html 87c05d95ca3e0c2a09f2761de8dbc9de5077021438e3da254f96585001a33b10 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_workstation_l1.html f9646be7b57d6408ba985322aea64e57716603cef51f3e0880cab31101bfcbf3 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_workstation_l2.html 12f290ab001e0e4aade3e4fcc5e5429916947481c16dd36c48248d39a01f32dd 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cui.html b9c6321231d0468e130c71df0388c4db3376835773a5234f939648c126668d62 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-e8.html 8b7076e0c1cc170883d84ec80aa481943fd97134b633c32bdf50c6dba956fede 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-hipaa.html 82d288cfae339977159bb7004c9605058c009b6a23ce07446690d273d47ff4ef 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-ism_o.html 0dccfce2333fdd40b2398ee2a475d194cd4aeed269c7e6e79e8a435e8ee877ac 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-ospp.html fb9a898b01df99a55120cf45469fbb0e9480433816df8da8f1ef663de4ec4204 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-pci-dss.html ef75c81efb17eb454799150961e8b779baae1c5b8b4ca22966742f7157f4d9c3 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-rht-ccp.html 74201d7b3344ff5402dac3164f207f4f97ad11588a8b31f100793b1b656a88d1 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-standard.html 59e8d984a8d594eda9ee6aafd2e50bada97d0286f67d5bbf153bd9a8b1bbf499 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-stig.html 964302f13ccfa6f9a92b896bd5e257d02efb0e0dafe4376793db717ee73cdf03 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-stig_gui.html d14003b81e0cba657d04d6e4c2d5d27573674c2c1b962c447bbb2a829336efd9 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_enhanced.html 87d33007c59433eaa31b3491f34fb3e2f9bd9a170c92086213a29765eb5bf9ec 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_high.html 2315c20320736458ed2ff6eb86ca05cd0b5a991f8faf1ed95c7fcc8dbaefa69f 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_intermediary.html 09afc61663c84ef4ff013ab6629432e2bec5c8f5634ef8ef824ec1b1f17ebafb 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_minimal.html 9f80ef1df2d1abed4f11cf704ec9f63f1f37fc171263ea7fe4ea73ff9de55ab8 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_advanced.html 635788e9c174ce415678959c87f2fb9d8c37ab340421bdc363a68c5292a3f29d 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_basic.html c143927453f0f704ce35c3d5cb5a50ee04218fba7a39879735f1769a3257b43b 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_intermediate.html ecae16b0d3dc050b0761bb9d2a485b315080dcb94bb22e7ac1a15c513189f92a 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis.html 46f126b3f48b8da9700fdd2523f12b3b916e578718b92f78e0e623f5c8288b7d 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_server_l1.html d35df72c9f319523e2ca1cfb6eecad3d4d4b7c162725b91dec600d40b9a7b157 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_workstation_l1.html 41aa53e6e5c4872426794f17327dab25f97a4f68caa00de94481cdb6b89f66e9 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_workstation_l2.html b318a4de78b6cd13c6c85c62c3011c192fbf24bb6eb45a4d48b3cb43928e5925 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cui.html 0ea99c64ed9c5c8b1ecfacd2350e4b4f76016e3da172f7cbe8e170823ccc6632 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-e8.html 225d5e7098892445566e205569ee84cd5016c1c9b905999df9c629b2ba2672bc 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-hipaa.html 4794810515b84c26c07e45a7314939dbc10d4b477693ccb721bb7ce99cd143b3 2 @@ -1027,5 +1027,5 @@ -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ism_o.html be7706b6ab4a16922e74320de4f69f97446e0b6087c1d8932423b1953e48b48e 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ospp.html 9f28960ac0a39855295e973ae835adcc7e4cc1e8ae43225851282bc904ca958e 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-pci-dss.html 4262b020ef9f7d819044b379fe4b9d28a25e3f4c212a4e78fa52794c8dd14a01 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-stig.html 10322457cb9ef28915e351078eb4e92900749d69a7abba4cb9eaaf5c7033105e 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-stig_gui.html 5d8f2c26dfa188f0cf14da6ca597f532bf2fd7adce911e69112a991f6cd7b2eb 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ism_o.html a2c480c93c6d1e29891312609e79bee9d3fba3cecc1abb8d76fe03ba6918e3b0 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ospp.html ab139f4a1ebb1c7b6e8d174b75cc62f7b013b455dc71cb0ba34698ce9796ae92 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-pci-dss.html 86bb2811877bc587cc07fc6f5ecedc6b2f0f06900537ce0e1bb7a5cdc538aa16 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-stig.html 28f4c7954d2b8107bd790e7381f71e7c224deae27816a80c6eae1c634c86777e 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-stig_gui.html 07ca3ac8b6aee336e19def700c7250bab3178eb214a596483b78c6c46d283ac6 2 @@ -1033,3 +1033,3 @@ -/usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-pci-dss.html 47f7c54b0274810b095f4e3886d67cb9497199425d2a6cff0c6d27a40ef0669e 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-rhvh-stig.html 2c245dcd2bd5f1d7e26869c9104a0518c50a73ac942f5cfb81304af78e08e4c9 2 -/usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-rhvh-vpp.html 16910be7873e35f5281763ab4c90d01b509d09c2de77a02193d9d658332e69c9 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-pci-dss.html adf87b4de37e97074f688d48ca81e4dc2dec6835e5dca8bde973e2291651de07 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-rhvh-stig.html 0e4c89de82b7663f7c0f16a6c47c681d6f4b256904a7724874b408cf36b829ab 2 +/usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-rhvh-vpp.html aa37dbf7ff7b9a363fac26f3da5f20274c99c49a9c33ec9d66def5f8d7567af1 2 @@ -1037,2 +1037,2 @@ -/usr/share/doc/scap-security-guide/guides/ssg-sl7-guide-pci-dss.html 57970ddb9dd0b287a909c7927ddfe920e167989479e0b293292537b0e6fdee54 2 -/usr/share/doc/scap-security-guide/guides/ssg-sl7-guide-standard.html 4947066ecfae3b41f848365f12077f9d86fb473907cf6b4608f690378819ea7d 2 +/usr/share/doc/scap-security-guide/guides/ssg-sl7-guide-pci-dss.html 30fa8fe9beabbc78875d97e1bf96c8daaa10fcedaf41915e45a8b20c76f52b0c 2 +/usr/share/doc/scap-security-guide/guides/ssg-sl7-guide-standard.html ad33cf411bb9544a3b330620db1847cb39227ac7060b675980e2496a751dbdce 2 @@ -1503,2 +1503,2 @@ -/usr/share/scap-security-guide/tailoring/rhel7_stig_delta_tailoring.xml b980be6908863cf4e5b8a9d8e589a2bcccc02ccf21f2017b33300958905e63b5 0 -/usr/share/scap-security-guide/tailoring/rhel8_stig_delta_tailoring.xml e323560711eca27bd4918775cce81c727134644e042bc46242409a5d9fb82452 0 +/usr/share/scap-security-guide/tailoring/rhel7_stig_delta_tailoring.xml 6984c5a0d26659b3e0cbac865b609252553c10bd70597caa11306637bd408c09 0 +/usr/share/scap-security-guide/tailoring/rhel8_stig_delta_tailoring.xml 41a9678c3e5c8b43cc796cb77dc2cbf1c7853cf483591c30a547f415403c8800 0 @@ -1508,9 +1508,9 @@ -/usr/share/xml/scap/ssg/content/ssg-centos7-ds-1.2.xml 6d61ec6a29ac7b0379b16c186ce634584ef7ac698ea81791359f3dfbff294e46 0 -/usr/share/xml/scap/ssg/content/ssg-centos7-ds.xml 1159b9ccaebdc105ca4384e39a0482b5703ec1a9a9858d62b0b25c3c224ae45b 0 -/usr/share/xml/scap/ssg/content/ssg-centos7-xccdf.xml 41392adb561f206f423cf211a0af115c7ea6b17898fd55ea8c1c44aa8f837dd0 0 -/usr/share/xml/scap/ssg/content/ssg-centos8-ds-1.2.xml 96de05311da41d5842682a39fc7d04a8aa1365d9f249f206ef27c7741a967359 0 -/usr/share/xml/scap/ssg/content/ssg-centos8-ds.xml c7fd86c4218368f9abe52d1da23f525d6fe3b75a4787c3a4dc628730980d220a 0 -/usr/share/xml/scap/ssg/content/ssg-centos8-xccdf.xml 0d81593e03f5c1bddb3912f046bf813fb695f78165636c13bd067bb852789a8d 0 -/usr/share/xml/scap/ssg/content/ssg-cs9-ds-1.2.xml 6c7c69c78e37f32646edd5c790052e83733bf8269c2f03a0ecdb3e5a1a331570 0 -/usr/share/xml/scap/ssg/content/ssg-cs9-ds.xml 3c862f1f46ccadf66582a7e1bb89a45e9417c1826a558ff3a3f7a6a74e7d06d0 0 -/usr/share/xml/scap/ssg/content/ssg-cs9-xccdf.xml 665d9c6be6dc4c2417139a9d3b36ab4a5e9b84d6dbde5ddb665dcdc7d5e493b4 0 +/usr/share/xml/scap/ssg/content/ssg-centos7-ds-1.2.xml 0106242421ed93408bbf6602ecfc952f26e2552007c13f48b1d579a3a678aa09 0 +/usr/share/xml/scap/ssg/content/ssg-centos7-ds.xml 0a8cd0bf1464a83915578b0353ef552f076c15e1886a40b023ba12beb24b3db2 0 +/usr/share/xml/scap/ssg/content/ssg-centos7-xccdf.xml 3c2c61606dd3b8f650ee75ca7104ba8934db2f0c31fefcafcb4e5bcac3c45417 0 +/usr/share/xml/scap/ssg/content/ssg-centos8-ds-1.2.xml 9e2e2f686c7cd69f0db9d397040bcbc83ef0e49791b67262fa88f98ff0bfa3e1 0 +/usr/share/xml/scap/ssg/content/ssg-centos8-ds.xml 3fe7be98fa089526f0497645d4a97b6ad3b4a7dfcff96d93aecb7d5b71d14903 0 +/usr/share/xml/scap/ssg/content/ssg-centos8-xccdf.xml c46c1fae6a33a952f0ac9f7d1f3fe26b53bfd0720b7f287d2d1a5fa2e33be4c8 0 +/usr/share/xml/scap/ssg/content/ssg-cs9-ds-1.2.xml 2bde3f4b16fe8ef91ff07774d9fdec9ebbe263edf4e9753678bf38cbb4348368 0 +/usr/share/xml/scap/ssg/content/ssg-cs9-ds.xml 0a2bdaeddb7116ff52aeec39f5a23abd6c9ee7ac0648e7f8ef1262ce4f5e55d0 0 +/usr/share/xml/scap/ssg/content/ssg-cs9-xccdf.xml ebeb86ec054cd67812ee670aa7a56acf4d476239fb7fc5cd83826755e1eadaa2 0 @@ -1519,2 +1519,2 @@ -/usr/share/xml/scap/ssg/content/ssg-fedora-ds-1.2.xml 2081a246f56f8afb4a77075886d000cd1daa58b91b514c1703ee5b78a32bc7ea 0 -/usr/share/xml/scap/ssg/content/ssg-fedora-ds.xml a2e4067850199a604b6bcb89e6af81c2f1898968c3f8443e1e85794e01b63c47 0 +/usr/share/xml/scap/ssg/content/ssg-fedora-ds-1.2.xml bad9720abdd43aa20e91aadd1931a3e67422b3340d87981e1e6be648b6ee5089 0 +/usr/share/xml/scap/ssg/content/ssg-fedora-ds.xml a6133d2332f2d58b4e2976301d23ac3126ffbb310c563bb9170f806c77b587c7 0 @@ -1523 +1523 @@ -/usr/share/xml/scap/ssg/content/ssg-fedora-xccdf.xml 1e365ad8ae0f692e2387852f71442fd103579073aa616bce81a18a70adcff34a 0 +/usr/share/xml/scap/ssg/content/ssg-fedora-xccdf.xml 2e165638af34174444b94e35fa563746f56e5da913583edca7c1b9a353358177 0 @@ -1526,2 +1526,2 @@ -/usr/share/xml/scap/ssg/content/ssg-ol7-ds-1.2.xml a08414eba97d1e33f46f419dbef6dff2520c1b2c96365d7816ca469bb87cdfde 0 -/usr/share/xml/scap/ssg/content/ssg-ol7-ds.xml 40bb0d1c9d80a4bad3b4cb3853aac2a0b85cf1fc62a9267389e9d0128ff1e370 0 +/usr/share/xml/scap/ssg/content/ssg-ol7-ds-1.2.xml e69d657a9695acbba7495ac72176fbd3a3de2b80c89f925c0d36dedbf5ca973d 0 +/usr/share/xml/scap/ssg/content/ssg-ol7-ds.xml ae5e538b13e3d17327b28d4acaf2a4ff312776dc31152e835eca39048a94e79c 0 @@ -1530 +1530 @@ -/usr/share/xml/scap/ssg/content/ssg-ol7-xccdf.xml d5f61a277904a1afe00ea591b44ec067d07597a3f28270c192d0259a8f7d885c 0 +/usr/share/xml/scap/ssg/content/ssg-ol7-xccdf.xml 14ea6111fab910d5c6883e89f730712cbbcf0f36993dfb35405e405de3d7fed8 0 @@ -1533,2 +1533,2 @@ -/usr/share/xml/scap/ssg/content/ssg-ol8-ds-1.2.xml 6ad04427060e35a668e9b735dd12e3db2f36c07b9689e771c903606bc8c78217 0 -/usr/share/xml/scap/ssg/content/ssg-ol8-ds.xml d7939caa58fde1da86f7faeff8dbece262c2a10f53f808305e8cc46d8e94cda5 0 +/usr/share/xml/scap/ssg/content/ssg-ol8-ds-1.2.xml 82d5afbef6f04ef7410dc4ff00ea867fff5d0692e98253d59246a9f9b16904c4 0 +/usr/share/xml/scap/ssg/content/ssg-ol8-ds.xml 9dc7c964b701f7804ab20c9de992026abeabf3db627e3bbed4886012c033b8c0 0 @@ -1537 +1537 @@ -/usr/share/xml/scap/ssg/content/ssg-ol8-xccdf.xml c446856a4b0edcc543d2e02104cb4a48fe2cc9426ee7ce68542d9712107cfb93 0 +/usr/share/xml/scap/ssg/content/ssg-ol8-xccdf.xml ef2a99f6895e2ce0b26f313ce342d35787067c86b2b4ce813eb2e7f68a1cd92b 0 @@ -1540,2 +1540,2 @@ -/usr/share/xml/scap/ssg/content/ssg-ol9-ds-1.2.xml f969633513d2304f65ad40c8638f86c3d4510caadb37b974321f1000edfd41e4 0 -/usr/share/xml/scap/ssg/content/ssg-ol9-ds.xml 3f3cd80fb7da5eb6af435867dfa2ce8f07c1e46f1e95a0171086c0642843c2f3 0 +/usr/share/xml/scap/ssg/content/ssg-ol9-ds-1.2.xml 9f95b91bd87d87aa12a4a35a9dbde40f17fe2e116fea26f27b3a46276efd20dd 0 +/usr/share/xml/scap/ssg/content/ssg-ol9-ds.xml cd0a54eade6d85bbafa528da8aeac4e0f6b7d29bbcbe8837ab16bddf0726e5c6 0 @@ -1544 +1544 @@ -/usr/share/xml/scap/ssg/content/ssg-ol9-xccdf.xml 1baa6204f70fb8b8705ffe5695f76e2bcecbfad82e3612a1d894356af09bc672 0 +/usr/share/xml/scap/ssg/content/ssg-ol9-xccdf.xml 7fa25cf9b9a592ffcf336132ce84b488a87399c1b7ccc1339210fd95f58c51e4 0 @@ -1547,2 +1547,2 @@ -/usr/share/xml/scap/ssg/content/ssg-openeuler2203-ds-1.2.xml 06ff80be5c40eb70bd128caf17976a2b045c9cfed1c04fd99a7e9d6afafe8b7b 0 -/usr/share/xml/scap/ssg/content/ssg-openeuler2203-ds.xml bc55d05805636bcb786cdf879e5f595acb2e6ccc6edd02ffcd483a3f60227d34 0 +/usr/share/xml/scap/ssg/content/ssg-openeuler2203-ds-1.2.xml 58d340c00de3c0eef101bf495eae6bbd226a06ae015f1d39bdb2ff3a856f9ff0 0 +/usr/share/xml/scap/ssg/content/ssg-openeuler2203-ds.xml 8339de6351638bc01228dc93031da76eb2d4a82c3bb78e27dd5742366ab3cf18 0 @@ -1551 +1551 @@ -/usr/share/xml/scap/ssg/content/ssg-openeuler2203-xccdf.xml 7eea99e33925c54a2058775dd1d6df0442dafa462c2addfbc88a32df33e54694 0 +/usr/share/xml/scap/ssg/content/ssg-openeuler2203-xccdf.xml 88809b411285fdc7d9313a5ce5be9710fc46b2640e0bd09511d5fd03127325ce 0 @@ -1554,2 +1554,2 @@ -/usr/share/xml/scap/ssg/content/ssg-rhcos4-ds-1.2.xml 2dbe7b7763dbe654699521272953652ce738808afb9a437e22c38e8aba2edaf6 0 -/usr/share/xml/scap/ssg/content/ssg-rhcos4-ds.xml 95b2298561fc05a72f914ed22cf130baa29f25669867ec1f61ed8f87cda2f339 0 +/usr/share/xml/scap/ssg/content/ssg-rhcos4-ds-1.2.xml 35a2aa0882de5897812372d3f55616dfefa05ad0cc79674ee3fbda76d2642b08 0 +/usr/share/xml/scap/ssg/content/ssg-rhcos4-ds.xml 7eddc0ab083e98f6e2c3f6c190420833f1d9497e54c1f282a6d85eaf2849912c 0 @@ -1558 +1558 @@ -/usr/share/xml/scap/ssg/content/ssg-rhcos4-xccdf.xml d87ef39f829e02b99540e6e6a187f18a4fa0f8ec54b1b89ead150fb8368a9aa6 0 +/usr/share/xml/scap/ssg/content/ssg-rhcos4-xccdf.xml 36f44e8d5923a9491f3ed8db37cc56c67a3ec216692ad2b75a71f42ac23c9f13 0 @@ -1561,2 +1561,2 @@ -/usr/share/xml/scap/ssg/content/ssg-rhel7-ds-1.2.xml 6b3fa55eb205ecf29fdb7cffcee9f063f6b6abe26f753d0b655747a3e4873b68 0 -/usr/share/xml/scap/ssg/content/ssg-rhel7-ds.xml 36833ef845fba8f21b39ce4f1dfb7e946367aa8ac65bced9067ca1e9e3b28547 0 +/usr/share/xml/scap/ssg/content/ssg-rhel7-ds-1.2.xml f416e263004b9652295b3c66e5f8c78447db0d2e644577babc0b1b691b893e28 0 +/usr/share/xml/scap/ssg/content/ssg-rhel7-ds.xml b7aa852e5834ad6dab28d6d9ac6687d0ce6d7f906e915634a8f676d64fd81877 0 @@ -1565 +1565 @@ -/usr/share/xml/scap/ssg/content/ssg-rhel7-xccdf.xml a850b2e2b73a6c18a066211c363db4df884528a8f8f07c5d4ac6a5070caf9d32 0 +/usr/share/xml/scap/ssg/content/ssg-rhel7-xccdf.xml 29b44111dfe08f81add6b7127e73227742dfadc87d42d5cb42d85aaf11cacdc7 0 @@ -1568,2 +1568,2 @@ -/usr/share/xml/scap/ssg/content/ssg-rhel8-ds-1.2.xml 13dc0a1f06195221e0131c445e6fee19970c6f6ead88c1ab72f18a73a1afe47d 0 -/usr/share/xml/scap/ssg/content/ssg-rhel8-ds.xml 4a58a49cf7d62a488b72c8977aa949222973dd95eeaba20578a5d9333659cec3 0 +/usr/share/xml/scap/ssg/content/ssg-rhel8-ds-1.2.xml cfbb5e055020016585fbf9068bc315dc68f9bf520fbd81d417568e1f53d829d2 0 +/usr/share/xml/scap/ssg/content/ssg-rhel8-ds.xml fd425383ac3c835e5b1b507b3d22ff2ea4e65e00a9e9389d49648d156ce4faf7 0 @@ -1572 +1572 @@ -/usr/share/xml/scap/ssg/content/ssg-rhel8-xccdf.xml 0eca3651b20527eb653906e9d6992a37f1a8a1f2dd07f445bd06ac3a03841640 0 +/usr/share/xml/scap/ssg/content/ssg-rhel8-xccdf.xml 203e7ecdc6f36bdd518608970429caaea03195f04454a122f3d338fe924abdc9 0 @@ -1575,2 +1575,2 @@ -/usr/share/xml/scap/ssg/content/ssg-rhel9-ds-1.2.xml d94f62e7f2444fccc5ded2fe14034a822f707faab2a79398872a16a93b9621f1 0 -/usr/share/xml/scap/ssg/content/ssg-rhel9-ds.xml 371a1e19a619706daa4e37217a82c3fa6da5eb47d9f2ec4d4249d5626c6631c3 0 +/usr/share/xml/scap/ssg/content/ssg-rhel9-ds-1.2.xml 30f5ef125081e3712de8ee5cf5d1f493e24f72416bc7aee7eaa0be0cefd9b31d 0 +/usr/share/xml/scap/ssg/content/ssg-rhel9-ds.xml 210af7aec97c07636ba215d9c873316ad4bdfecacfe324aec327f262bcc7bf50 0 @@ -1579 +1579 @@ -/usr/share/xml/scap/ssg/content/ssg-rhel9-xccdf.xml 451ec5b58fe9785a6d262df168a1a732d63121ddd721eb1293bf6d3760030462 0 +/usr/share/xml/scap/ssg/content/ssg-rhel9-xccdf.xml 69df42bda2c54ac644608db6ec8368fec808ab385048e20f544b900de7854c34 0 @@ -1582,2 +1582,2 @@ -/usr/share/xml/scap/ssg/content/ssg-rhv4-ds-1.2.xml ff7f506bef6031dc015b342d3a3d233b4105371167eb465d619bf0c4abdd7661 0 -/usr/share/xml/scap/ssg/content/ssg-rhv4-ds.xml 684198168f3815241a85f0de65359019cf4995b732f2279a09fb8c91c2fe5cc4 0 +/usr/share/xml/scap/ssg/content/ssg-rhv4-ds-1.2.xml 8b4ce5b443ff6203ce089fde7553ec9932cbb44fd96a766f7bc46816cb7e8bc7 0 +/usr/share/xml/scap/ssg/content/ssg-rhv4-ds.xml 06a27f1a246cfc25c80baf874daaf850d42c7118974c7bcf42c6e6e2eaf42279 0 @@ -1586,4 +1586,4 @@ -/usr/share/xml/scap/ssg/content/ssg-rhv4-xccdf.xml 93e0000fefbfd5404a33685e632232ce8becb76a6d6c613d8efce54cc26df310 0 -/usr/share/xml/scap/ssg/content/ssg-sl7-ds-1.2.xml f4ffd3704c4607b6b7bbfaa7b86c9142643b24a0ecd21fd58453ea475ee34736 0 -/usr/share/xml/scap/ssg/content/ssg-sl7-ds.xml 74c7f3f46e8c6138dd9f1b98385b6a0a25e6847b116e3a8901839f46c5a34d4e 0 -/usr/share/xml/scap/ssg/content/ssg-sl7-xccdf.xml 69480edcdadde7ee61887638bd7574901af127651d405d9fdcb184850dff8cc0 0 +/usr/share/xml/scap/ssg/content/ssg-rhv4-xccdf.xml 33615b3f1b44b38c170ee8cbc715667fd4a23c478ee375120eae0b235b60ba67 0 +/usr/share/xml/scap/ssg/content/ssg-sl7-ds-1.2.xml 26be3e4becea8b379ed64fd93d0124f45b247f398e339c6fdd32251c183e7bd3 0 +/usr/share/xml/scap/ssg/content/ssg-sl7-ds.xml b35c4d8988e75a20eeb9b6ad1dc3267633a376f35583ce852e410591a46976fe 0 +/usr/share/xml/scap/ssg/content/ssg-sl7-xccdf.xml baff62111cf7c87d88bfd2c1e77bc75bee73a1ff03fc91cf2e26f9d91af66b7f 0 comparing rpmtags comparing RELEASE comparing PROVIDES comparing scripts comparing filelist comparing file checksum creating rename script RPM file checksum differs. Extracting packages /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-C2S.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-C2S.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-C2S.html 2024-02-13 16:02:48.000000000 +0000 @@ -84,7 +84,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleC2S for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_C2S

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Base Services
    3. Cron and At Daemons
    4. DHCP
    5. DNS Server
    6. FTP Server
    7. Web Server
    8. IMAP and POP3 Server
    9. LDAP
    10. Mail Server Software
    11. NFS and RPC
    12. Network Time Protocol
    13. Obsolete Services
    14. Print Support
    15. Proxy Server
    16. Samba(SMB) Microsoft Windows File Sharing Server
    17. SNMP Server
    18. SSH Server
    19. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 101 groups and 234 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_nt28_enhanced

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 69 groups and 234 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_nt28_high

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 70 groups and 290 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_nt28_intermediary

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 55 groups and 160 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-anssi_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_nt28_minimal

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 26 groups and 42 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 @@ -79,7 +79,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 7 Benchmark for Level 2 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Print Support
    14. Proxy Server
    15. Samba(SMB) Microsoft Windows File Sharing Server
    16. SNMP Server
    17. SSH Server
    18. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 116 groups and 391 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_server_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -79,7 +79,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 7 Benchmark for Level 1 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis_server_l1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. Mail Server Software
    9. NFS and RPC
    10. Network Time Protocol
    11. Obsolete Services
    12. Print Support
    13. Proxy Server
    14. Samba(SMB) Microsoft Windows File Sharing Server
    15. SNMP Server
    16. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 98 groups and 298 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_workstation_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -79,7 +79,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 7 Benchmark for Level 1 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Cron and At Daemons
    2. DHCP
    3. DNS Server
    4. FTP Server
    5. Web Server
    6. IMAP and POP3 Server
    7. Mail Server Software
    8. NFS and RPC
    9. Network Time Protocol
    10. Obsolete Services
    11. Proxy Server
    12. Samba(SMB) Microsoft Windows File Sharing Server
    13. SNMP Server
    14. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 93 groups and 290 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_workstation_l2.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 @@ -79,7 +79,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 7 Benchmark for Level 2 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l2

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Proxy Server
    14. Samba(SMB) Microsoft Windows File Sharing Server
    15. SNMP Server
    16. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 113 groups and 385 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cjis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cjis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cjis.html 2024-02-13 16:02:48.000000000 +0000 @@ -78,7 +78,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCriminal Justice Information Services (CJIS) Security Policy
Profile IDxccdf_org.ssgproject.content_profile_cjis

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
  2. Services
    1. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 47 groups and 102 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 @@ -90,7 +90,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleUnclassified Information in Non-federal Information Systems and Organizations (NIST 800-171)
Profile IDxccdf_org.ssgproject.content_profile_cui

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Base Services
    2. NFS and RPC
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 50 groups and 103 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-e8.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 @@ -80,7 +80,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleAustralian Cyber Security Centre (ACSC) Essential Eight
Profile IDxccdf_org.ssgproject.content_profile_e8

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Obsolete Services
    3. Proxy Server
    4. Network Routing
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 46 groups and 94 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-hipaa.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleHealth Insurance Portability and Accountability Act (HIPAA)
Profile IDxccdf_org.ssgproject.content_profile_hipaa

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. NFS and RPC
    4. Obsolete Services
    5. Network Routing
    6. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 54 groups and 142 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-ncp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-ncp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-ncp.html 2024-02-13 16:02:48.000000000 +0000 @@ -101,7 +101,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleNIST National Checklist Program Security Guide
Profile IDxccdf_org.ssgproject.content_profile_ncp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. LDAP
    4. NFS and RPC
    5. Network Time Protocol
    6. Obsolete Services
    7. Network Routing
    8. SSH Server
    9. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 105 groups and 385 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-ospp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 @@ -81,7 +81,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleOSPP - Protection Profile for General Purpose Operating Systems v4.2.1
Profile IDxccdf_org.ssgproject.content_profile_ospp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Base Services
    2. NFS and RPC
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 50 groups and 103 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -80,7 +80,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v4.0 Control Baseline for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. FTP Server
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. SNMP Server
    10. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 87 groups and 257 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rhelh-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rhelh-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rhelh-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -76,7 +76,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleRHV hardening based on STIG for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_rhelh-stig

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. FTP Server
    4. LDAP
    5. NFS and RPC
    6. Network Time Protocol
    7. Obsolete Services
    8. Network Routing
    9. SSH Server
    10. System Security Services Daemon
    11. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 100 groups and 377 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rhelh-vpp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rhelh-vpp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rhelh-vpp.html 2024-02-13 16:02:48.000000000 +0000 @@ -99,7 +99,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleVPP - Protection Profile for Virtualization v. 1.0 for Red Hat Virtualization
Profile IDxccdf_org.ssgproject.content_profile_rhelh-vpp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. SSH Server
    2. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 48 groups and 142 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rht-ccp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rht-ccp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-rht-ccp.html 2024-02-13 16:02:48.000000000 +0000 @@ -77,7 +77,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleRed Hat Corporate Profile for Certified Cloud Providers (RH CCP)
Profile IDxccdf_org.ssgproject.content_profile_rht-ccp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Base Services
    2. Obsolete Services
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 38 groups and 68 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -76,7 +76,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. File Permissions and Masks
  2. Services
    1. Base Services
    2. Cron and At Daemons

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 32 groups and 74 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -85,7 +85,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. FTP Server
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. Obsolete Services
    8. SNMP Server
    9. SSH Server
    10. System Security Services Daemon
    11. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 103 groups and 281 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-stig_gui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos7-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 @@ -91,7 +91,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG with GUI for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_stig_gui

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:centos:centos:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. FTP Server
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. Obsolete Services
    8. SNMP Server
    9. SSH Server
    10. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 101 groups and 280 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_enhanced

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 68 groups and 240 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_high

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 70 groups and 314 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_intermediary

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 55 groups and 169 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_minimal

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 26 groups and 47 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 @@ -79,7 +79,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 8 Benchmark for Level 2 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Print Support
    14. Proxy Server
    15. Samba(SMB) Microsoft Windows File Sharing Server
    16. SNMP Server
    17. SSH Server
    18. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 115 groups and 392 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_server_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -79,7 +79,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 8 Benchmark for Level 1 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis_server_l1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. Mail Server Software
    9. NFS and RPC
    10. Network Time Protocol
    11. Obsolete Services
    12. Print Support
    13. Proxy Server
    14. Samba(SMB) Microsoft Windows File Sharing Server
    15. SNMP Server
    16. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 97 groups and 295 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_workstation_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -79,7 +79,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 8 Benchmark for Level 1 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Cron and At Daemons
    2. DHCP
    3. DNS Server
    4. FTP Server
    5. Web Server
    6. IMAP and POP3 Server
    7. Mail Server Software
    8. NFS and RPC
    9. Network Time Protocol
    10. Obsolete Services
    11. Proxy Server
    12. Samba(SMB) Microsoft Windows File Sharing Server
    13. SNMP Server
    14. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 92 groups and 289 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_workstation_l2.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 @@ -79,7 +79,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 8 Benchmark for Level 2 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l2

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Proxy Server
    14. Samba(SMB) Microsoft Windows File Sharing Server
    15. SNMP Server
    16. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 112 groups and 386 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cjis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cjis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cjis.html 2024-02-13 16:02:48.000000000 +0000 @@ -78,7 +78,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCriminal Justice Information Services (CJIS) Security Policy
Profile IDxccdf_org.ssgproject.content_profile_cjis

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
  2. Services
    1. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 48 groups and 105 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 @@ -90,7 +90,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleUnclassified Information in Non-federal Information Systems and Organizations (NIST 800-171)
Profile IDxccdf_org.ssgproject.content_profile_cui

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. zIPL bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Kerberos
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. SSH Server
    8. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 62 groups and 210 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-e8.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 @@ -80,7 +80,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleAustralian Cyber Security Centre (ACSC) Essential Eight
Profile IDxccdf_org.ssgproject.content_profile_e8

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Application Whitelisting Daemon
    3. Obsolete Services
    4. Proxy Server
    5. Network Routing
    6. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 48 groups and 98 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-hipaa.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleHealth Insurance Portability and Accountability Act (HIPAA)
Profile IDxccdf_org.ssgproject.content_profile_hipaa

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. NFS and RPC
    4. Obsolete Services
    5. Network Routing
    6. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 54 groups and 137 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-ism_o.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-ism_o.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-ism_o.html 2024-02-13 16:02:48.000000000 +0000 @@ -84,7 +84,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleAustralian Cyber Security Centre (ACSC) ISM Official
Profile IDxccdf_org.ssgproject.content_profile_ism_o

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Application Whitelisting Daemon
    3. Network Time Protocol
    4. Obsolete Services
    5. Proxy Server
    6. Network Routing
    7. SNMP Server
    8. SSH Server
    9. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 71 groups and 151 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-ospp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 @@ -81,7 +81,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProtection Profile for General Purpose Operating Systems
Profile IDxccdf_org.ssgproject.content_profile_ospp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. zIPL bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Kerberos
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. SSH Server
    8. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 62 groups and 210 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -80,7 +80,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v4.0 Control Baseline for Red Hat Enterprise Linux 8
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. FTP Server
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. SNMP Server
    10. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 85 groups and 255 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-rht-ccp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-rht-ccp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-rht-ccp.html 2024-02-13 16:02:48.000000000 +0000 @@ -77,7 +77,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleRed Hat Corporate Profile for Certified Cloud Providers (RH CCP)
Profile IDxccdf_org.ssgproject.content_profile_rht-ccp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Base Services
    2. Obsolete Services
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 39 groups and 71 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -76,7 +76,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Red Hat Enterprise Linux 8
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. File Permissions and Masks
  2. Services
    1. Base Services
    2. Cron and At Daemons

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 33 groups and 79 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -85,7 +85,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG for Red Hat Enterprise Linux 8
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. FTP Server
    4. Kerberos
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. Hardware RNG Entropy Gatherer Daemon
    10. SSH Server
    11. System Security Services Daemon
    12. USBGuard daemon
    13. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 106 groups and 410 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-stig_gui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-centos8-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 @@ -91,7 +91,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG with GUI for Red Hat Enterprise Linux 8
Profile IDxccdf_org.ssgproject.content_profile_stig_gui

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8
  • cpe:/o:centos:centos:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. FTP Server
    4. Kerberos
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. Hardware RNG Entropy Gatherer Daemon
    10. SSH Server
    11. System Security Services Daemon
    12. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 104 groups and 407 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_enhanced

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 67 groups and 235 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_high

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 69 groups and 313 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_intermediary

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 55 groups and 166 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_minimal

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 26 groups and 47 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_advanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_advanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_advanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -78,7 +78,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCCN Red Hat Enterprise Linux 9 - Advanced
Profile IDxccdf_org.ssgproject.content_profile_ccn_advanced

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DNS Server
    2. FTP Server
    3. IMAP and POP3 Server
    4. Network Time Protocol
    5. Obsolete Services
    6. Proxy Server
    7. SNMP Server
    8. SSH Server
    9. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 67 groups and 140 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_basic.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_basic.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_basic.html 2024-02-13 16:02:48.000000000 +0000 @@ -78,7 +78,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCCN Red Hat Enterprise Linux 9 - Basic
Profile IDxccdf_org.ssgproject.content_profile_ccn_basic

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
  2. Services
    1. SSH Server
    2. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 39 groups and 89 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_intermediate.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_intermediate.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ccn_intermediate.html 2024-02-13 16:02:48.000000000 +0000 @@ -78,7 +78,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCCN Red Hat Enterprise Linux 9 - Intermediate
Profile IDxccdf_org.ssgproject.content_profile_ccn_intermediate

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DNS Server
    2. FTP Server
    3. IMAP and POP3 Server
    4. Network Time Protocol
    5. Obsolete Services
    6. Proxy Server
    7. SNMP Server
    8. SSH Server
    9. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 61 groups and 127 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 @@ -79,7 +79,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 9 Benchmark for Level 2 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Print Support
    14. Proxy Server
    15. Samba(SMB) Microsoft Windows File Sharing Server
    16. SNMP Server
    17. SSH Server
    18. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 112 groups and 357 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_server_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -79,7 +79,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 9 Benchmark for Level 1 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis_server_l1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Print Support
    14. Proxy Server
    15. Samba(SMB) Microsoft Windows File Sharing Server
    16. SNMP Server
    17. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 96 groups and 272 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_workstation_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -79,7 +79,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 9 Benchmark for Level 1 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Cron and At Daemons
    2. DHCP
    3. DNS Server
    4. FTP Server
    5. Web Server
    6. IMAP and POP3 Server
    7. LDAP
    8. Mail Server Software
    9. NFS and RPC
    10. Network Time Protocol
    11. Obsolete Services
    12. Proxy Server
    13. Samba(SMB) Microsoft Windows File Sharing Server
    14. SNMP Server
    15. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 91 groups and 268 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_workstation_l2.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 @@ -79,7 +79,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 9 Benchmark for Level 2 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l2

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Cron and At Daemons
    2. DHCP
    3. DNS Server
    4. FTP Server
    5. Web Server
    6. IMAP and POP3 Server
    7. LDAP
    8. Mail Server Software
    9. NFS and RPC
    10. Network Time Protocol
    11. Obsolete Services
    12. Proxy Server
    13. Samba(SMB) Microsoft Windows File Sharing Server
    14. SNMP Server
    15. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 105 groups and 351 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 @@ -90,7 +90,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - Unclassified Information in Non-federal Information Systems and Organizations (NIST 800-171)
Profile IDxccdf_org.ssgproject.content_profile_cui

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. zIPL bootloader configuration
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Network Time Protocol
    4. SSH Server
    5. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 46 groups and 144 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-e8.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 @@ -80,7 +80,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleAustralian Cyber Security Centre (ACSC) Essential Eight
Profile IDxccdf_org.ssgproject.content_profile_e8

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Application Whitelisting Daemon
    3. Obsolete Services
    4. Proxy Server
    5. Network Routing
    6. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 47 groups and 96 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-hipaa.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleHealth Insurance Portability and Accountability Act (HIPAA)
Profile IDxccdf_org.ssgproject.content_profile_hipaa

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. NFS and RPC
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 51 groups and 131 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ism_o.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ism_o.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ism_o.html 2024-02-13 16:02:48.000000000 +0000 @@ -84,7 +84,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleAustralian Cyber Security Centre (ACSC) ISM Official
Profile IDxccdf_org.ssgproject.content_profile_ism_o

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Application Whitelisting Daemon
    3. Network Time Protocol
    4. Obsolete Services
    5. Proxy Server
    6. Network Routing
    7. SNMP Server
    8. SSH Server
    9. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 70 groups and 146 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ospp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 @@ -80,7 +80,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProtection Profile for General Purpose Operating Systems
Profile IDxccdf_org.ssgproject.content_profile_ospp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. zIPL bootloader configuration
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Network Time Protocol
    4. SSH Server
    5. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 46 groups and 144 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -80,7 +80,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v4.0 Control Baseline for Red Hat Enterprise Linux 9
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. FTP Server
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. SNMP Server
    10. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 84 groups and 247 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -85,7 +85,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG for Red Hat Enterprise Linux 9
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. Application Whitelisting Daemon
    4. FTP Server
    5. Kerberos
    6. Mail Server Software
    7. NFS and RPC
    8. Network Time Protocol
    9. Obsolete Services
    10. Network Routing
    11. SSH Server
    12. System Security Services Daemon
    13. USBGuard daemon
    14. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 113 groups and 493 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-stig_gui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-cs9-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 @@ -92,7 +92,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG with GUI for Red Hat Enterprise Linux 9
Profile IDxccdf_org.ssgproject.content_profile_stig_gui

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9
  • cpe:/o:centos:centos:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. Application Whitelisting Daemon
    4. FTP Server
    5. Kerberos
    6. Mail Server Software
    7. NFS and RPC
    8. Network Time Protocol
    9. Obsolete Services
    10. Network Routing
    11. SSH Server
    12. System Security Services Daemon
    13. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 111 groups and 490 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-cusp_fedora.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-cusp_fedora.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-cusp_fedora.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCUSP - Common User Security Profile for Fedora Workstation
Profile IDxccdf_org.ssgproject.content_profile_cusp_fedora

CPE Platforms

  • cpe:/o:fedoraproject:fedora:36
  • cpe:/o:fedoraproject:fedora:37
  • cpe:/o:fedoraproject:fedora:38
  • cpe:/o:fedoraproject:fedora:39
  • cpe:/o:fedoraproject:fedora:40

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Cron and At Daemons
    2. DHCP
    3. DNS Server
    4. FTP Server
    5. Web Server
    6. IMAP and POP3 Server
    7. Mail Server Software
    8. NFS and RPC
    9. Network Time Protocol
    10. Obsolete Services
    11. Proxy Server
    12. Samba(SMB) Microsoft Windows File Sharing Server
    13. SNMP Server
    14. SSH Server

Checklist

Group   Guide to the Secure Configuration of Fedora   Group contains 93 groups and 272 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-ospp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 @@ -72,7 +72,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleOSPP - Protection Profile for General Purpose Operating Systems
Profile IDxccdf_org.ssgproject.content_profile_ospp

CPE Platforms

  • cpe:/o:fedoraproject:fedora:36
  • cpe:/o:fedoraproject:fedora:37
  • cpe:/o:fedoraproject:fedora:38
  • cpe:/o:fedoraproject:fedora:39
  • cpe:/o:fedoraproject:fedora:40

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Mail Server Software
    4. Network Time Protocol
    5. Hardware RNG Entropy Gatherer Daemon
    6. SSH Server
    7. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Fedora   Group contains 62 groups and 206 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v3.2.1 Control Baseline for Fedora
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:fedoraproject:fedora:36
  • cpe:/o:fedoraproject:fedora:37
  • cpe:/o:fedoraproject:fedora:38
  • cpe:/o:fedoraproject:fedora:39
  • cpe:/o:fedoraproject:fedora:40

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Network Time Protocol
    2. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Fedora   Group contains 47 groups and 121 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-fedora-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Fedora
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:fedoraproject:fedora:36
  • cpe:/o:fedoraproject:fedora:37
  • cpe:/o:fedoraproject:fedora:38
  • cpe:/o:fedoraproject:fedora:39
  • cpe:/o:fedoraproject:fedora:40

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Network Configuration and Firewalls
    5. File Permissions and Masks
  2. Services
    1. Network Time Protocol
    2. SSH Server

Checklist

Group   Guide to the Secure Configuration of Fedora   Group contains 39 groups and 76 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_nt28_enhanced

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 69 groups and 227 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - ANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_nt28_high

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 70 groups and 281 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_nt28_intermediary

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 55 groups and 160 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-anssi_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_nt28_minimal

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 26 groups and 42 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-cjis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-cjis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-cjis.html 2024-02-13 16:02:48.000000000 +0000 @@ -69,7 +69,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCriminal Justice Information Services (CJIS) Security Policy
Profile IDxccdf_org.ssgproject.content_profile_cjis

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
  2. Services
    1. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 47 groups and 102 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-cui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 @@ -81,7 +81,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleUnclassified Information in Non-federal Information Systems and Organizations (NIST 800-171)
Profile IDxccdf_org.ssgproject.content_profile_cui

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Base Services
    2. NFS and RPC
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 51 groups and 104 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-e8.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - Australian Cyber Security Centre (ACSC) Essential Eight
Profile IDxccdf_org.ssgproject.content_profile_e8

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Obsolete Services
    3. Proxy Server
    4. Network Routing
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 46 groups and 93 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-hipaa.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleHealth Insurance Portability and Accountability Act (HIPAA)
Profile IDxccdf_org.ssgproject.content_profile_hipaa

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. NFS and RPC
    4. Obsolete Services
    5. Network Routing
    6. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 54 groups and 142 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-ncp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-ncp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-ncp.html 2024-02-13 16:02:48.000000000 +0000 @@ -91,7 +91,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleNIST National Checklist Program Security Guide
Profile IDxccdf_org.ssgproject.content_profile_ncp

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. LDAP
    4. NFS and RPC
    5. Network Time Protocol
    6. Obsolete Services
    7. Network Routing
    8. SSH Server
    9. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 104 groups and 382 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-ospp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 @@ -72,7 +72,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - Protection Profile for General Purpose Operating Systems
Profile IDxccdf_org.ssgproject.content_profile_ospp

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Base Services
    2. NFS and RPC
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 51 groups and 104 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v3.2.1 Control Baseline Draft for Oracle Linux 7
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Network Time Protocol
    2. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 48 groups and 99 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-sap.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-sap.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-sap.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleSecurity Profile of Oracle Linux 7 for SAP
Profile IDxccdf_org.ssgproject.content_profile_sap

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. File Permissions and Masks
  2. Services
    1. Obsolete Services

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 10 groups and 9 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Oracle Linux 7
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. File Permissions and Masks
  2. Services
    1. Base Services
    2. Cron and At Daemons

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 28 groups and 72 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG for Oracle Linux 7
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. FTP Server
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. Obsolete Services
    8. SNMP Server
    9. SSH Server
    10. System Security Services Daemon
    11. X Window System

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 103 groups and 286 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-stig_gui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol7-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 @@ -72,7 +72,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG with GUI for Oracle Linux 7
Profile IDxccdf_org.ssgproject.content_profile_stig_gui

CPE Platforms

  • cpe:/o:oracle:linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. FTP Server
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. Obsolete Services
    8. SNMP Server
    9. SSH Server
    10. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 7   Group contains 101 groups and 285 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_enhanced

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 68 groups and 240 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_high

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 69 groups and 293 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_intermediary

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 55 groups and 169 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_minimal

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 26 groups and 47 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-cjis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-cjis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-cjis.html 2024-02-13 16:02:48.000000000 +0000 @@ -69,7 +69,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCriminal Justice Information Services (CJIS) Security Policy
Profile IDxccdf_org.ssgproject.content_profile_cjis

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
  2. Services
    1. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 49 groups and 107 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-cui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 @@ -81,7 +81,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleUnclassified Information in Non-federal Information Systems and Organizations (NIST 800-171)
Profile IDxccdf_org.ssgproject.content_profile_cui

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Kerberos
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. SSH Server
    8. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 63 groups and 206 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-e8.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - Australian Cyber Security Centre (ACSC) Essential Eight
Profile IDxccdf_org.ssgproject.content_profile_e8

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Application Whitelisting Daemon
    3. Obsolete Services
    4. Proxy Server
    5. Network Routing
    6. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 48 groups and 95 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-hipaa.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleHealth Insurance Portability and Accountability Act (HIPAA)
Profile IDxccdf_org.ssgproject.content_profile_hipaa

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. NFS and RPC
    4. Obsolete Services
    5. Network Routing
    6. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 54 groups and 141 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-ospp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 @@ -72,7 +72,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - Protection Profile for General Purpose Operating Systems
Profile IDxccdf_org.ssgproject.content_profile_ospp

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Kerberos
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. SSH Server
    8. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 63 groups and 206 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v3.2.1 Control Baseline Draft for Oracle Linux 8
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Network Time Protocol
    2. SSH Server
    3. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 50 groups and 125 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Oracle Linux 8
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. File Permissions and Masks
  2. Services
    1. Base Services
    2. Cron and At Daemons

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 29 groups and 78 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG for Oracle Linux 8
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. FTP Server
    4. Kerberos
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. Hardware RNG Entropy Gatherer Daemon
    10. SSH Server
    11. System Security Services Daemon
    12. USBGuard daemon
    13. X Window System

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 106 groups and 408 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-stig_gui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol8-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 @@ -72,7 +72,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG with GUI for Oracle Linux 8
Profile IDxccdf_org.ssgproject.content_profile_stig_gui

CPE Platforms

  • cpe:/o:oracle:linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. FTP Server
    4. Kerberos
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. Hardware RNG Entropy Gatherer Daemon
    10. SSH Server
    11. System Security Services Daemon
    12. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 8   Group contains 104 groups and 406 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_enhanced

CPE Platforms

  • cpe:/o:oracle:linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 9   Group contains 66 groups and 233 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_high

CPE Platforms

  • cpe:/o:oracle:linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 9   Group contains 67 groups and 286 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_intermediary

CPE Platforms

  • cpe:/o:oracle:linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 9   Group contains 54 groups and 164 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_minimal

CPE Platforms

  • cpe:/o:oracle:linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 9   Group contains 25 groups and 45 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-cui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 @@ -81,7 +81,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - Unclassified Information in Non-federal Information Systems and Organizations (NIST 800-171)
Profile IDxccdf_org.ssgproject.content_profile_cui

CPE Platforms

  • cpe:/o:oracle:linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Kerberos
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. SSH Server
    8. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 9   Group contains 61 groups and 185 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-e8.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleAustralian Cyber Security Centre (ACSC) Essential Eight
Profile IDxccdf_org.ssgproject.content_profile_e8

CPE Platforms

  • cpe:/o:oracle:linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Application Whitelisting Daemon
    3. Obsolete Services
    4. Proxy Server
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 9   Group contains 45 groups and 96 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-hipaa.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleHealth Insurance Portability and Accountability Act (HIPAA)
Profile IDxccdf_org.ssgproject.content_profile_hipaa

CPE Platforms

  • cpe:/o:oracle:linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. NFS and RPC
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 9   Group contains 52 groups and 135 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-ospp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - Protection Profile for General Purpose Operating Systems
Profile IDxccdf_org.ssgproject.content_profile_ospp

CPE Platforms

  • cpe:/o:oracle:linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Kerberos
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. SSH Server
    8. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 9   Group contains 61 groups and 185 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v3.2.1 Control Baseline for Oracle Linux 9
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:oracle:linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Network Time Protocol
    2. SSH Server
    3. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 9   Group contains 49 groups and 123 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Oracle Linux 9
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:oracle:linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. File Permissions and Masks
  2. Services
    1. Base Services
    2. Cron and At Daemons

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 9   Group contains 29 groups and 78 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - DISA STIG for Oracle Linux 9
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:oracle:linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. Application Whitelisting Daemon
    4. FTP Server
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. Network Routing
    10. SSH Server
    11. System Security Services Daemon
    12. USBGuard daemon
    13. X Window System

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 9   Group contains 115 groups and 490 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-stig_gui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ol9-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 @@ -73,7 +73,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - DISA STIG with GUI for Oracle Linux 9
Profile IDxccdf_org.ssgproject.content_profile_stig_gui

CPE Platforms

  • cpe:/o:oracle:linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. Application Whitelisting Daemon
    4. FTP Server
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. Network Routing
    10. SSH Server
    11. System Security Services Daemon
    12. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Oracle Linux 9   Group contains 113 groups and 487 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-openeuler2203-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-openeuler2203-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-openeuler2203-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for openEuler 22.03 LTS
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:openEuler:openEuler:22.03LTS_SP1:ga:server
  • cpe:/o:openEuler:openEuler:22.03LTS_SP2:ga:server
  • cpe:/o:openEuler:openEuler:22.03LTS:ga:server

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. LDAP
    8. NFS and RPC
    9. Network Time Protocol
    10. Obsolete Services
    11. Print Support
    12. Samba(SMB) Microsoft Windows File Sharing Server
    13. SNMP Server
    14. SSH Server
    15. X Window System

Checklist

Group   Guide to the Secure Configuration of openEuler 2203   Group contains 95 groups and 258 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - ANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_enhanced

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Mail Server Software
    2. Network Time Protocol
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 50 groups and 156 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - ANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_high

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. Mail Server Software
    2. Network Time Protocol
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 51 groups and 200 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - ANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_intermediary

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Mail Server Software
    2. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 37 groups and 92 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - ANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_minimal

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks
  2. Services
    1. Mail Server Software

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 11 groups and 8 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-bsi.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-bsi.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-bsi.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - BSI APP.4.4. and SYS.1.6
Profile IDxccdf_org.ssgproject.content_profile_bsi

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. SELinux

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 2 groups and 3 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-e8.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleAustralian Cyber Security Centre (ACSC) Essential Eight
Profile IDxccdf_org.ssgproject.content_profile_e8

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. File Permissions and Masks
    5. SELinux
  2. Services
    1. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 23 groups and 51 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-high-rev-4.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-high-rev-4.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-high-rev-4.html 2024-02-13 16:02:48.000000000 +0000 @@ -87,7 +87,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleNIST 800-53 High-Impact Baseline for Red Hat Enterprise Linux CoreOS
Profile IDxccdf_org.ssgproject.content_profile_high-rev-4

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Network Time Protocol
    2. SSH Server
    3. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 52 groups and 242 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-high.html 2024-02-13 16:02:48.000000000 +0000 @@ -87,7 +87,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleNIST 800-53 High-Impact Baseline for Red Hat Enterprise Linux CoreOS
Profile IDxccdf_org.ssgproject.content_profile_high

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Network Time Protocol
    2. SSH Server
    3. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 52 groups and 242 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-moderate-rev-4.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-moderate-rev-4.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-moderate-rev-4.html 2024-02-13 16:02:48.000000000 +0000 @@ -87,7 +87,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleNIST 800-53 Moderate-Impact Baseline for Red Hat Enterprise Linux CoreOS
Profile IDxccdf_org.ssgproject.content_profile_moderate-rev-4

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Network Time Protocol
    2. SSH Server
    3. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 52 groups and 241 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-moderate.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-moderate.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-moderate.html 2024-02-13 16:02:48.000000000 +0000 @@ -87,7 +87,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleNIST 800-53 Moderate-Impact Baseline for Red Hat Enterprise Linux CoreOS
Profile IDxccdf_org.ssgproject.content_profile_moderate

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Network Time Protocol
    2. SSH Server
    3. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 52 groups and 241 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-nerc-cip.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-nerc-cip.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-nerc-cip.html 2024-02-13 16:02:48.000000000 +0000 @@ -76,7 +76,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleNorth American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP) cybersecurity standards profile for Red Hat Enterprise Linux CoreOS
Profile IDxccdf_org.ssgproject.content_profile_nerc-cip

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Network Time Protocol
    2. SSH Server
    3. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 52 groups and 241 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-stig-v1r1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-stig-v1r1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-stig-v1r1.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG for Red Hat Enterprise Linux CoreOS
Profile IDxccdf_org.ssgproject.content_profile_stig-v1r1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. File Permissions and Masks
    6. SELinux
  2. Services
    1. Network Time Protocol
    2. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 29 groups and 107 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhcos4-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG for Red Hat Enterprise Linux CoreOS
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:redhat:enterprise_linux_coreos:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. File Permissions and Masks
    6. SELinux
  2. Services
    1. Network Time Protocol
    2. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4   Group contains 29 groups and 107 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-C2S.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-C2S.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-C2S.html 2024-02-13 16:02:48.000000000 +0000 @@ -75,7 +75,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleC2S for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_C2S

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Base Services
    3. Cron and At Daemons
    4. DHCP
    5. DNS Server
    6. FTP Server
    7. Web Server
    8. IMAP and POP3 Server
    9. LDAP
    10. Mail Server Software
    11. NFS and RPC
    12. Network Time Protocol
    13. Obsolete Services
    14. Print Support
    15. Proxy Server
    16. Samba(SMB) Microsoft Windows File Sharing Server
    17. SNMP Server
    18. SSH Server
    19. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 101 groups and 234 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_nt28_enhanced

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 69 groups and 234 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_nt28_high

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 70 groups and 290 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_nt28_intermediary

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 55 groups and 160 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-anssi_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_nt28_minimal

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 26 groups and 42 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 7 Benchmark for Level 2 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Print Support
    14. Proxy Server
    15. Samba(SMB) Microsoft Windows File Sharing Server
    16. SNMP Server
    17. SSH Server
    18. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 116 groups and 391 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_server_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 7 Benchmark for Level 1 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis_server_l1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. Mail Server Software
    9. NFS and RPC
    10. Network Time Protocol
    11. Obsolete Services
    12. Print Support
    13. Proxy Server
    14. Samba(SMB) Microsoft Windows File Sharing Server
    15. SNMP Server
    16. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 98 groups and 298 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_workstation_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 7 Benchmark for Level 1 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Cron and At Daemons
    2. DHCP
    3. DNS Server
    4. FTP Server
    5. Web Server
    6. IMAP and POP3 Server
    7. Mail Server Software
    8. NFS and RPC
    9. Network Time Protocol
    10. Obsolete Services
    11. Proxy Server
    12. Samba(SMB) Microsoft Windows File Sharing Server
    13. SNMP Server
    14. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 93 groups and 290 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_workstation_l2.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 7 Benchmark for Level 2 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l2

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Proxy Server
    14. Samba(SMB) Microsoft Windows File Sharing Server
    15. SNMP Server
    16. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 113 groups and 385 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cjis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cjis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cjis.html 2024-02-13 16:02:48.000000000 +0000 @@ -69,7 +69,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCriminal Justice Information Services (CJIS) Security Policy
Profile IDxccdf_org.ssgproject.content_profile_cjis

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
  2. Services
    1. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 47 groups and 102 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 @@ -81,7 +81,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleUnclassified Information in Non-federal Information Systems and Organizations (NIST 800-171)
Profile IDxccdf_org.ssgproject.content_profile_cui

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Base Services
    2. NFS and RPC
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 50 groups and 103 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-e8.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleAustralian Cyber Security Centre (ACSC) Essential Eight
Profile IDxccdf_org.ssgproject.content_profile_e8

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Obsolete Services
    3. Proxy Server
    4. Network Routing
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 46 groups and 94 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-hipaa.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleHealth Insurance Portability and Accountability Act (HIPAA)
Profile IDxccdf_org.ssgproject.content_profile_hipaa

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. NFS and RPC
    4. Obsolete Services
    5. Network Routing
    6. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 54 groups and 142 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-ncp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-ncp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-ncp.html 2024-02-13 16:02:48.000000000 +0000 @@ -92,7 +92,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleNIST National Checklist Program Security Guide
Profile IDxccdf_org.ssgproject.content_profile_ncp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. LDAP
    4. NFS and RPC
    5. Network Time Protocol
    6. Obsolete Services
    7. Network Routing
    8. SSH Server
    9. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 105 groups and 385 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-ospp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 @@ -72,7 +72,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleOSPP - Protection Profile for General Purpose Operating Systems v4.2.1
Profile IDxccdf_org.ssgproject.content_profile_ospp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Base Services
    2. NFS and RPC
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 50 groups and 103 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v4.0 Control Baseline for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. FTP Server
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. SNMP Server
    10. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 87 groups and 257 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rhelh-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rhelh-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rhelh-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleRHV hardening based on STIG for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_rhelh-stig

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. FTP Server
    4. LDAP
    5. NFS and RPC
    6. Network Time Protocol
    7. Obsolete Services
    8. Network Routing
    9. SSH Server
    10. System Security Services Daemon
    11. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 100 groups and 377 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rhelh-vpp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rhelh-vpp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rhelh-vpp.html 2024-02-13 16:02:48.000000000 +0000 @@ -90,7 +90,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleVPP - Protection Profile for Virtualization v. 1.0 for Red Hat Virtualization
Profile IDxccdf_org.ssgproject.content_profile_rhelh-vpp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. SSH Server
    2. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 48 groups and 142 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rht-ccp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rht-ccp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-rht-ccp.html 2024-02-13 16:02:48.000000000 +0000 @@ -68,7 +68,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleRed Hat Corporate Profile for Certified Cloud Providers (RH CCP)
Profile IDxccdf_org.ssgproject.content_profile_rht-ccp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Base Services
    2. Obsolete Services
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 38 groups and 68 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. File Permissions and Masks
  2. Services
    1. Base Services
    2. Cron and At Daemons

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 32 groups and 74 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -76,7 +76,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. FTP Server
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. Obsolete Services
    8. SNMP Server
    9. SSH Server
    10. System Security Services Daemon
    11. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 103 groups and 281 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-stig_gui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel7-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 @@ -82,7 +82,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG with GUI for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_stig_gui

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. FTP Server
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. Obsolete Services
    8. SNMP Server
    9. SSH Server
    10. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 101 groups and 280 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_enhanced

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 68 groups and 240 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_high

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 70 groups and 314 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_intermediary

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 55 groups and 169 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_minimal

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 26 groups and 47 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 8 Benchmark for Level 2 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Print Support
    14. Proxy Server
    15. Samba(SMB) Microsoft Windows File Sharing Server
    16. SNMP Server
    17. SSH Server
    18. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 115 groups and 392 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_server_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 8 Benchmark for Level 1 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis_server_l1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. Mail Server Software
    9. NFS and RPC
    10. Network Time Protocol
    11. Obsolete Services
    12. Print Support
    13. Proxy Server
    14. Samba(SMB) Microsoft Windows File Sharing Server
    15. SNMP Server
    16. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 97 groups and 295 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_workstation_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 8 Benchmark for Level 1 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Cron and At Daemons
    2. DHCP
    3. DNS Server
    4. FTP Server
    5. Web Server
    6. IMAP and POP3 Server
    7. Mail Server Software
    8. NFS and RPC
    9. Network Time Protocol
    10. Obsolete Services
    11. Proxy Server
    12. Samba(SMB) Microsoft Windows File Sharing Server
    13. SNMP Server
    14. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 92 groups and 289 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_workstation_l2.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 8 Benchmark for Level 2 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l2

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Proxy Server
    14. Samba(SMB) Microsoft Windows File Sharing Server
    15. SNMP Server
    16. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 112 groups and 386 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cjis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cjis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cjis.html 2024-02-13 16:02:48.000000000 +0000 @@ -69,7 +69,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCriminal Justice Information Services (CJIS) Security Policy
Profile IDxccdf_org.ssgproject.content_profile_cjis

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
  2. Services
    1. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 48 groups and 105 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 @@ -81,7 +81,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleUnclassified Information in Non-federal Information Systems and Organizations (NIST 800-171)
Profile IDxccdf_org.ssgproject.content_profile_cui

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. zIPL bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Kerberos
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. SSH Server
    8. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 62 groups and 210 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-e8.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleAustralian Cyber Security Centre (ACSC) Essential Eight
Profile IDxccdf_org.ssgproject.content_profile_e8

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Application Whitelisting Daemon
    3. Obsolete Services
    4. Proxy Server
    5. Network Routing
    6. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 48 groups and 98 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-hipaa.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleHealth Insurance Portability and Accountability Act (HIPAA)
Profile IDxccdf_org.ssgproject.content_profile_hipaa

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. NFS and RPC
    4. Obsolete Services
    5. Network Routing
    6. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 54 groups and 137 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-ism_o.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-ism_o.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-ism_o.html 2024-02-13 16:02:48.000000000 +0000 @@ -75,7 +75,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleAustralian Cyber Security Centre (ACSC) ISM Official
Profile IDxccdf_org.ssgproject.content_profile_ism_o

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Application Whitelisting Daemon
    3. Network Time Protocol
    4. Obsolete Services
    5. Proxy Server
    6. Network Routing
    7. SNMP Server
    8. SSH Server
    9. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 71 groups and 151 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-ospp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 @@ -72,7 +72,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProtection Profile for General Purpose Operating Systems
Profile IDxccdf_org.ssgproject.content_profile_ospp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. zIPL bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Kerberos
    4. Mail Server Software
    5. NFS and RPC
    6. Network Time Protocol
    7. SSH Server
    8. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 62 groups and 210 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v4.0 Control Baseline for Red Hat Enterprise Linux 8
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. FTP Server
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. SNMP Server
    10. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 85 groups and 255 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-rht-ccp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-rht-ccp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-rht-ccp.html 2024-02-13 16:02:48.000000000 +0000 @@ -68,7 +68,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleRed Hat Corporate Profile for Certified Cloud Providers (RH CCP)
Profile IDxccdf_org.ssgproject.content_profile_rht-ccp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Base Services
    2. Obsolete Services
    3. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 39 groups and 71 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Red Hat Enterprise Linux 8
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. File Permissions and Masks
  2. Services
    1. Base Services
    2. Cron and At Daemons

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 33 groups and 79 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -76,7 +76,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG for Red Hat Enterprise Linux 8
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. FTP Server
    4. Kerberos
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. Hardware RNG Entropy Gatherer Daemon
    10. SSH Server
    11. System Security Services Daemon
    12. USBGuard daemon
    13. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 106 groups and 410 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-stig_gui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel8-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 @@ -82,7 +82,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG with GUI for Red Hat Enterprise Linux 8
Profile IDxccdf_org.ssgproject.content_profile_stig_gui

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8.0
  • cpe:/o:redhat:enterprise_linux:8.1
  • cpe:/o:redhat:enterprise_linux:8.10
  • cpe:/o:redhat:enterprise_linux:8.2
  • cpe:/o:redhat:enterprise_linux:8.3
  • cpe:/o:redhat:enterprise_linux:8.4
  • cpe:/o:redhat:enterprise_linux:8.5
  • cpe:/o:redhat:enterprise_linux:8.6
  • cpe:/o:redhat:enterprise_linux:8.7
  • cpe:/o:redhat:enterprise_linux:8.8
  • cpe:/o:redhat:enterprise_linux:8.9
  • cpe:/o:redhat:enterprise_linux:8

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. FTP Server
    4. Kerberos
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. Hardware RNG Entropy Gatherer Daemon
    10. SSH Server
    11. System Security Services Daemon
    12. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 8   Group contains 104 groups and 407 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_enhanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_enhanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (enhanced)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_enhanced

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 67 groups and 235 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (high)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_high

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Kernel Configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
    9. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Network Time Protocol
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 69 groups and 313 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_intermediary.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_intermediary.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (intermediary)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_intermediary

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 55 groups and 166 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-anssi_bp28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleANSSI-BP-028 (minimal)
Profile IDxccdf_org.ssgproject.content_profile_anssi_bp28_minimal

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. File Permissions and Masks
  2. Services
    1. DHCP
    2. Mail Server Software
    3. Obsolete Services

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 26 groups and 47 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_advanced.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_advanced.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_advanced.html 2024-02-13 16:02:48.000000000 +0000 @@ -69,7 +69,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCCN Red Hat Enterprise Linux 9 - Advanced
Profile IDxccdf_org.ssgproject.content_profile_ccn_advanced

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DNS Server
    2. FTP Server
    3. IMAP and POP3 Server
    4. Network Time Protocol
    5. Obsolete Services
    6. Proxy Server
    7. SNMP Server
    8. SSH Server
    9. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 67 groups and 140 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_basic.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_basic.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_basic.html 2024-02-13 16:02:48.000000000 +0000 @@ -69,7 +69,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCCN Red Hat Enterprise Linux 9 - Basic
Profile IDxccdf_org.ssgproject.content_profile_ccn_basic

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
  2. Services
    1. SSH Server
    2. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 39 groups and 89 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_intermediate.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_intermediate.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ccn_intermediate.html 2024-02-13 16:02:48.000000000 +0000 @@ -69,7 +69,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCCN Red Hat Enterprise Linux 9 - Intermediate
Profile IDxccdf_org.ssgproject.content_profile_ccn_intermediate

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. DNS Server
    2. FTP Server
    3. IMAP and POP3 Server
    4. Network Time Protocol
    5. Obsolete Services
    6. Proxy Server
    7. SNMP Server
    8. SSH Server
    9. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 61 groups and 127 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 9 Benchmark for Level 2 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Print Support
    14. Proxy Server
    15. Samba(SMB) Microsoft Windows File Sharing Server
    16. SNMP Server
    17. SSH Server
    18. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 112 groups and 357 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_server_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_server_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 9 Benchmark for Level 1 - Server
Profile IDxccdf_org.ssgproject.content_profile_cis_server_l1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. DNS Server
    5. FTP Server
    6. Web Server
    7. IMAP and POP3 Server
    8. LDAP
    9. Mail Server Software
    10. NFS and RPC
    11. Network Time Protocol
    12. Obsolete Services
    13. Print Support
    14. Proxy Server
    15. Samba(SMB) Microsoft Windows File Sharing Server
    16. SNMP Server
    17. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 96 groups and 272 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_workstation_l1.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_workstation_l1.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 9 Benchmark for Level 1 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l1

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Cron and At Daemons
    2. DHCP
    3. DNS Server
    4. FTP Server
    5. Web Server
    6. IMAP and POP3 Server
    7. LDAP
    8. Mail Server Software
    9. NFS and RPC
    10. Network Time Protocol
    11. Obsolete Services
    12. Proxy Server
    13. Samba(SMB) Microsoft Windows File Sharing Server
    14. SNMP Server
    15. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 91 groups and 268 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_workstation_l2.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cis_workstation_l2.html 2024-02-13 16:02:48.000000000 +0000 @@ -70,7 +70,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Red Hat Enterprise Linux 9 Benchmark for Level 2 - Workstation
Profile IDxccdf_org.ssgproject.content_profile_cis_workstation_l2

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Cron and At Daemons
    2. DHCP
    3. DNS Server
    4. FTP Server
    5. Web Server
    6. IMAP and POP3 Server
    7. LDAP
    8. Mail Server Software
    9. NFS and RPC
    10. Network Time Protocol
    11. Obsolete Services
    12. Proxy Server
    13. Samba(SMB) Microsoft Windows File Sharing Server
    14. SNMP Server
    15. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 105 groups and 351 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-cui.html 2024-02-13 16:02:48.000000000 +0000 @@ -81,7 +81,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - Unclassified Information in Non-federal Information Systems and Organizations (NIST 800-171)
Profile IDxccdf_org.ssgproject.content_profile_cui

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. zIPL bootloader configuration
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Network Time Protocol
    4. SSH Server
    5. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 46 groups and 144 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-e8.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-e8.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleAustralian Cyber Security Centre (ACSC) Essential Eight
Profile IDxccdf_org.ssgproject.content_profile_e8

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Application Whitelisting Daemon
    3. Obsolete Services
    4. Proxy Server
    5. Network Routing
    6. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 47 groups and 96 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-hipaa.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-hipaa.html 2024-02-13 16:02:48.000000000 +0000 @@ -74,7 +74,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleHealth Insurance Portability and Accountability Act (HIPAA)
Profile IDxccdf_org.ssgproject.content_profile_hipaa

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. NFS and RPC
    4. Obsolete Services
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 51 groups and 131 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ism_o.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ism_o.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ism_o.html 2024-02-13 16:02:48.000000000 +0000 @@ -75,7 +75,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleAustralian Cyber Security Centre (ACSC) ISM Official
Profile IDxccdf_org.ssgproject.content_profile_ism_o

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. Avahi Server
    2. Application Whitelisting Daemon
    3. Network Time Protocol
    4. Obsolete Services
    5. Proxy Server
    6. Network Routing
    7. SNMP Server
    8. SSH Server
    9. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 70 groups and 146 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ospp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-ospp.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProtection Profile for General Purpose Operating Systems
Profile IDxccdf_org.ssgproject.content_profile_ospp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. zIPL bootloader configuration
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Application Whitelisting Daemon
    3. Network Time Protocol
    4. SSH Server
    5. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 46 groups and 144 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -71,7 +71,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v4.0 Control Baseline for Red Hat Enterprise Linux 9
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. FTP Server
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. SNMP Server
    10. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 84 groups and 247 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -76,7 +76,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG for Red Hat Enterprise Linux 9
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. Application Whitelisting Daemon
    4. FTP Server
    5. Kerberos
    6. Mail Server Software
    7. NFS and RPC
    8. Network Time Protocol
    9. Obsolete Services
    10. Network Routing
    11. SSH Server
    12. System Security Services Daemon
    13. USBGuard daemon
    14. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 113 groups and 493 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-stig_gui.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhel9-guide-stig_gui.html 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDISA STIG with GUI for Red Hat Enterprise Linux 9
Profile IDxccdf_org.ssgproject.content_profile_stig_gui

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:9

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. Application Whitelisting Daemon
    4. FTP Server
    5. Kerberos
    6. Mail Server Software
    7. NFS and RPC
    8. Network Time Protocol
    9. Obsolete Services
    10. Network Routing
    11. SSH Server
    12. System Security Services Daemon
    13. USBGuard daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 9   Group contains 111 groups and 490 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v3.2.1 Control Baseline for Red Hat Virtualization Host (RHVH)
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8::hypervisor
  • cpe:/a:redhat:enterprise_virtualization_manager:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. File Permissions and Masks
  2. Services
    1. Network Time Protocol
    2. SSH Server
    3. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Virtualization 4   Group contains 45 groups and 116 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-rhvh-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-rhvh-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-rhvh-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleDRAFT - DISA STIG for Red Hat Virtualization Host (RHVH)
Profile IDxccdf_org.ssgproject.content_profile_rhvh-stig

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8::hypervisor
  • cpe:/a:redhat:enterprise_virtualization_manager:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Base Services
    2. Cron and At Daemons
    3. FTP Server
    4. LDAP
    5. NFS and RPC
    6. Network Time Protocol
    7. Obsolete Services
    8. Network Routing
    9. SSH Server
    10. System Security Services Daemon
    11. X Window System

Checklist

Group   Guide to the Secure Configuration of Red Hat Virtualization 4   Group contains 101 groups and 375 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-rhvh-vpp.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-rhvh-vpp.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-rhv4-guide-rhvh-vpp.html 2024-02-13 16:02:48.000000000 +0000 @@ -90,7 +90,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleVPP - Protection Profile for Virtualization v. 1.0 for Red Hat Virtualization Host (RHVH)
Profile IDxccdf_org.ssgproject.content_profile_rhvh-vpp

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:8::hypervisor
  • cpe:/a:redhat:enterprise_virtualization_manager:4

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Network Configuration and Firewalls
    6. File Permissions and Masks
    7. SELinux
  2. Services
    1. SSH Server
    2. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Red Hat Virtualization 4   Group contains 49 groups and 144 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sl7-guide-pci-dss.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sl7-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sl7-guide-pci-dss.html 2024-02-13 16:02:48.000000000 +0000 @@ -80,7 +80,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitlePCI-DSS v4.0 Control Baseline for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_pci-dss

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:scientificlinux:scientificlinux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
    8. SELinux
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. DHCP
    4. FTP Server
    5. Mail Server Software
    6. NFS and RPC
    7. Network Time Protocol
    8. Obsolete Services
    9. SNMP Server
    10. SSH Server

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 87 groups and 257 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-sl7-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-sl7-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-sl7-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -76,7 +76,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Red Hat Enterprise Linux 7
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:redhat:enterprise_linux:7::client
  • cpe:/o:redhat:enterprise_linux:7::computenode
  • cpe:/o:redhat:enterprise_linux:7::server
  • cpe:/o:redhat:enterprise_linux:7::workstation
  • cpe:/o:redhat:enterprise_linux:7
  • cpe:/o:scientificlinux:scientificlinux:7

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. File Permissions and Masks
  2. Services
    1. Base Services
    2. Cron and At Daemons

Checklist

Group   Guide to the Secure Configuration of Red Hat Enterprise Linux 7   Group contains 32 groups and 74 rules
Group   /usr/share/scap-security-guide/tailoring/rhel7_stig_delta_tailoring.xml differs (ASCII text, with very long lines) --- old//usr/share/scap-security-guide/tailoring/rhel7_stig_delta_tailoring.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/scap-security-guide/tailoring/rhel7_stig_delta_tailoring.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,4 +1,4 @@ -1DISA STIG for Red Hat Enterprise Linux 7 +1DISA STIG for Red Hat Enterprise Linux 7 This profile contains configuration checks that align to the DISA STIG for Red Hat Enterprise Linux V3R14. /usr/share/scap-security-guide/tailoring/rhel8_stig_delta_tailoring.xml differs (ASCII text, with very long lines) --- old//usr/share/scap-security-guide/tailoring/rhel8_stig_delta_tailoring.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/scap-security-guide/tailoring/rhel8_stig_delta_tailoring.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,4 +1,4 @@ -1DISA STIG for Red Hat Enterprise Linux 8 +1DISA STIG for Red Hat Enterprise Linux 8 This profile contains configuration checks that align to the DISA STIG for Red Hat Enterprise Linux 8 V1R13. /usr/share/xml/scap/ssg/content/ssg-centos7-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-centos7-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-centos7-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -53,7 +53,7 @@ - draft + draft Guide to the Secure Configuration of Red Hat Enterprise Linux 7 This guide presents a catalog of security-relevant configuration settings for Red Hat Enterprise Linux 7. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-centos7-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-centos7-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-centos7-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -55,7 +55,7 @@ - draft + draft Guide to the Secure Configuration of Red Hat Enterprise Linux 7 This guide presents a catalog of security-relevant configuration settings for Red Hat Enterprise Linux 7. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-centos7-xccdf.xml differs (ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-centos7-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-centos7-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,5 +1,5 @@ - draft + draft Guide to the Secure Configuration of Red Hat Enterprise Linux 7 This guide presents a catalog of security-relevant configuration settings for Red Hat Enterprise Linux 7. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-centos8-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-centos8-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-centos8-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -81,7 +81,7 @@ - draft + draft Guide to the Secure Configuration of Red Hat Enterprise Linux 8 This guide presents a catalog of security-relevant configuration settings for Red Hat Enterprise Linux 8. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-centos8-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-centos8-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-centos8-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -83,7 +83,7 @@ - draft + draft Guide to the Secure Configuration of Red Hat Enterprise Linux 8 This guide presents a catalog of security-relevant configuration settings for Red Hat Enterprise Linux 8. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-centos8-xccdf.xml differs (ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-centos8-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-centos8-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,5 +1,5 @@ - draft + draft Guide to the Secure Configuration of Red Hat Enterprise Linux 8 This guide presents a catalog of security-relevant configuration settings for Red Hat Enterprise Linux 8. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-cs9-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-cs9-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-cs9-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -37,7 +37,7 @@ - draft + draft Guide to the Secure Configuration of Red Hat Enterprise Linux 9 This guide presents a catalog of security-relevant configuration settings for Red Hat Enterprise Linux 9. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-cs9-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-cs9-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-cs9-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -39,7 +39,7 @@ - draft + draft Guide to the Secure Configuration of Red Hat Enterprise Linux 9 This guide presents a catalog of security-relevant configuration settings for Red Hat Enterprise Linux 9. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-cs9-xccdf.xml differs (ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-cs9-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-cs9-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,5 +1,5 @@ - draft + draft Guide to the Secure Configuration of Red Hat Enterprise Linux 9 This guide presents a catalog of security-relevant configuration settings for Red Hat Enterprise Linux 9. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-fedora-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-fedora-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-fedora-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -49,7 +49,7 @@ - draft + draft Guide to the Secure Configuration of Fedora This guide presents a catalog of security-relevant configuration settings for Fedora. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-fedora-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-fedora-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-fedora-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -49,7 +49,7 @@ - draft + draft Guide to the Secure Configuration of Fedora This guide presents a catalog of security-relevant configuration settings for Fedora. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-fedora-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-fedora-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-fedora-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of Fedora This guide presents a catalog of security-relevant configuration settings for Fedora. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ol7-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ol7-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ol7-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Oracle Linux 7 This guide presents a catalog of security-relevant configuration settings for Oracle Linux 7. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ol7-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ol7-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ol7-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -35,7 +35,7 @@ - draft + draft Guide to the Secure Configuration of Oracle Linux 7 This guide presents a catalog of security-relevant configuration settings for Oracle Linux 7. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ol7-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ol7-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ol7-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of Oracle Linux 7 This guide presents a catalog of security-relevant configuration settings for Oracle Linux 7. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ol8-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ol8-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ol8-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Oracle Linux 8 This guide presents a catalog of security-relevant configuration settings for Oracle Linux 8. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ol8-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ol8-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ol8-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -35,7 +35,7 @@ - draft + draft Guide to the Secure Configuration of Oracle Linux 8 This guide presents a catalog of security-relevant configuration settings for Oracle Linux 8. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ol8-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ol8-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ol8-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of Oracle Linux 8 This guide presents a catalog of security-relevant configuration settings for Oracle Linux 8. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ol9-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ol9-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ol9-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Oracle Linux 9 This guide presents a catalog of security-relevant configuration settings for Oracle Linux 9. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ol9-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ol9-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ol9-ds.xml 2024-03-26 17:50:44.184393971 +0000 @@ -35,7 +35,7 @@ - draft + draft Guide to the Secure Configuration of Oracle Linux 9 This guide presents a catalog of security-relevant configuration settings for Oracle Linux 9. It is a rendering of @@ -234117,39574 +234117,4 @@ Specify the hash to use when signing modules - ocil:ssg-kernel_config_module_sig_hash_action:testaction:1 - - - - Specify module signing key to use - - ocil:ssg-kernel_config_module_sig_key_action:testaction:1 - - - - Sign kernel modules with SHA-512 - - ocil:ssg-kernel_config_module_sig_sha512_action:testaction:1 - - - - Enable poison of pages after freeing - - ocil:ssg-kernel_config_page_poisoning_action:testaction:1 - - - - Enable poison without sanity check - - ocil:ssg-kernel_config_page_poisoning_no_sanity_action:testaction:1 - - - - Use zero for poisoning instead of debugging value - - ocil:ssg-kernel_config_page_poisoning_zero_action:testaction:1 - - - - Remove the kernel mapping in user mode - - ocil:ssg-kernel_config_page_table_isolation_action:testaction:1 - - - - Kernel panic oops - - ocil:ssg-kernel_config_panic_on_oops_action:testaction:1 - - - - Kernel panic timeout - - ocil:ssg-kernel_config_panic_timeout_action:testaction:1 - - - - Disable support for /proc/kkcore - - ocil:ssg-kernel_config_proc_kcore_action:testaction:1 - - - - Randomize the address of the kernel image (KASLR) - - ocil:ssg-kernel_config_randomize_base_action:testaction:1 - - - - Randomize the kernel memory sections - - ocil:ssg-kernel_config_randomize_memory_action:testaction:1 - - - - Perform full reference count validation - - ocil:ssg-kernel_config_refcount_full_action:testaction:1 - - - - Avoid speculative indirect branches in kernel - - ocil:ssg-kernel_config_retpoline_action:testaction:1 - - - - Detect stack corruption on calls to schedule() - - ocil:ssg-kernel_config_sched_stack_end_check_action:testaction:1 - - - - Enable seccomp to safely compute untrusted bytecode - - ocil:ssg-kernel_config_seccomp_action:testaction:1 - - - - Enable use of Berkeley Packet Filter with seccomp - - ocil:ssg-kernel_config_seccomp_filter_action:testaction:1 - - - - Enable different security models - - ocil:ssg-kernel_config_security_action:testaction:1 - - - - Restrict unprivileged access to the kernel syslog - - ocil:ssg-kernel_config_security_dmesg_restrict_action:testaction:1 - - - - Disable mutable hooks - - ocil:ssg-kernel_config_security_writable_hooks_action:testaction:1 - - - - Enable Yama support - - ocil:ssg-kernel_config_security_yama_action:testaction:1 - - - - Harden slab freelist metadata - - ocil:ssg-kernel_config_slab_freelist_hardened_action:testaction:1 - - - - Randomize slab freelist - - ocil:ssg-kernel_config_slab_freelist_random_action:testaction:1 - - - - Disallow merge of slab caches - - ocil:ssg-kernel_config_slab_merge_default_action:testaction:1 - - - - Enable SLUB debugging support - - ocil:ssg-kernel_config_slub_debug_action:testaction:1 - - - - Stack Protector buffer overlow detection - - ocil:ssg-kernel_config_stackprotector_action:testaction:1 - - - - Strong Stack Protector - - ocil:ssg-kernel_config_stackprotector_strong_action:testaction:1 - - - - Make the kernel text and rodata read-only - - ocil:ssg-kernel_config_strict_kernel_rwx_action:testaction:1 - - - - Make the module text and rodata read-only - - ocil:ssg-kernel_config_strict_module_rwx_action:testaction:1 - - - - Enable TCP/IP syncookie support - - ocil:ssg-kernel_config_syn_cookies_action:testaction:1 - - - - Unmap kernel when running in userspace (aka KAISER) - - ocil:ssg-kernel_config_unmap_kernel_at_el0_action:testaction:1 - - - - User a virtually-mapped stack Missing in new package: /usr/share/xml/scap/ssg/content/ssg-ol9-xccdf.xml /usr/share/xml/scap/ssg/content/ssg-ol9-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-openeuler2203-ds-1.2.xml /usr/share/xml/scap/ssg/content/ssg-openeuler2203-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-openeuler2203-ds.xml /usr/share/xml/scap/ssg/content/ssg-openeuler2203-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-openeuler2203-xccdf.xml /usr/share/xml/scap/ssg/content/ssg-openeuler2203-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-rhcos4-ds-1.2.xml /usr/share/xml/scap/ssg/content/ssg-rhcos4-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-rhcos4-ds.xml /usr/share/xml/scap/ssg/content/ssg-rhcos4-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-rhcos4-xccdf.xml /usr/share/xml/scap/ssg/content/ssg-rhcos4-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-rhel7-ds-1.2.xml /usr/share/xml/scap/ssg/content/ssg-rhel7-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-rhel7-ds.xml /usr/share/xml/scap/ssg/content/ssg-rhel7-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-rhel7-xccdf.xml /usr/share/xml/scap/ssg/content/ssg-rhel7-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-rhel8-ds-1.2.xml /usr/share/xml/scap/ssg/content/ssg-rhel8-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-rhel8-ds.xml /usr/share/xml/scap/ssg/content/ssg-rhel8-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-rhel8-xccdf.xml /usr/share/xml/scap/ssg/content/ssg-rhel8-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-rhel9-ds-1.2.xml /usr/share/xml/scap/ssg/content/ssg-rhel9-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-rhel9-ds.xml /usr/share/xml/scap/ssg/content/ssg-rhel9-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in new package: /usr/share/xml/scap/ssg/content/ssg-rhel9-xccdf.xml /usr/share/xml/scap/ssg/content/ssg-rhel9-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) Missing in old package: /usr/share/xml/scap/ssg/content/ssg-rhv4-ds-1.2.xml Missing in old package: /usr/share/xml/scap/ssg/content/ssg-rhv4-ds-1.2.xml Missing in old package: /usr/share/xml/scap/ssg/content/ssg-rhv4-ds.xml Missing in old package: /usr/share/xml/scap/ssg/content/ssg-rhv4-ds.xml Missing in old package: /usr/share/xml/scap/ssg/content/ssg-rhv4-xccdf.xml Missing in old package: /usr/share/xml/scap/ssg/content/ssg-rhv4-xccdf.xml Missing in old package: /usr/share/xml/scap/ssg/content/ssg-sl7-ds-1.2.xml Missing in old package: /usr/share/xml/scap/ssg/content/ssg-sl7-ds-1.2.xml Missing in old package: /usr/share/xml/scap/ssg/content/ssg-sl7-ds.xml Missing in old package: /usr/share/xml/scap/ssg/content/ssg-sl7-ds.xml Missing in old package: /usr/share/xml/scap/ssg/content/ssg-sl7-xccdf.xml Missing in old package: /usr/share/xml/scap/ssg/content/ssg-sl7-xccdf.xml RPMS.2017/scap-security-guide-ubuntu-0.1.72-1.1.noarch.rpm RPMS/scap-security-guide-ubuntu-0.1.72-1.1.noarch.rpm differ: byte 225, line 1 Comparing scap-security-guide-ubuntu-0.1.72-1.1.noarch.rpm to scap-security-guide-ubuntu-0.1.72-1.1.noarch.rpm comparing the rpm tags of scap-security-guide-ubuntu --- old-rpm-tags +++ new-rpm-tags @@ -202,4 +202,4 @@ -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_average.html 0aea741d005a31525e9953a449e63b96e7d0466d96199c505e32b2f1d004d5e8 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_high.html 50220f9654549c4efa94a60a49cae76de076d884b65c7d3adab906d3971f25af 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_minimal.html 02812466fd9d383deb42596c76f15d8a58263c1d68ddc70aecb516ec1cbb049c 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_restrictive.html 32507645fda9df4037bc40682253e434172c5689c52f690675255123f4c9c866 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_average.html 8ca4782059bc81bc426179ede2cdbe6216e3b2a59f57e95402f0db09e2d225ae 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_high.html 66a7fa766615e233663d87f819144d82215dcf68e09c6936e3f2cf3cf4b417d1 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_minimal.html 45f3ad0c097d04f4ef8935cb38f0d85260baab6de9a056fdfbd80ee9a375a6f7 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_restrictive.html 91a00bf5d741df8b83639139244c7cb96477493841b32d04b154813c9dfdc7e3 2 @@ -207,6 +207,6 @@ -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-standard.html a6bdb21739ad10be3b2b21eea3ebdffbebccd00f505c5264f19db3472256bc66 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_average.html fac05800bb5e39e131c79eccb4e3883b4b9690ff2e85b4add0eebd14c052e1c7 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_high.html 807971599af18bc96a89a14883165bc3058c8b44ea079488db6f6bfc9dddab52 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_minimal.html f581b8b5f7f44b0ae4becac0dd9dfa2d84e829eb2ac49585f40d461e4bb8634e 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_restrictive.html 23445b1a9d1bc0f7954fae3008e120f04f73364bf3d195b40078c077af7c390a 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-cis.html 3c52e46dbc7526413e2e834bacaf0a093f6479668ada6209bbc421a16ef12feb 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-standard.html 8535907d3ce0c66a0639497137a554722f3193b2bc7d67a18eb162f4a4b15365 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_average.html 7ed802e54d660cd85fb442b0388dee4ccb31e0c029edf06eae018fc48dc02d9d 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_high.html b83a88b8cd8c0dcba3d1c6936da462c37cb13978c31a68dc1a96088d7225c419 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_minimal.html 028c458bd6ef66cca0070d2e22c24e149e9e3b197c5d3df0faaff85cf6e85806 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_restrictive.html 3f9142918a6aca035a46952d3217cfc803b9cd74d1b999544f7b463a6b5adcab 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-cis.html 29089517811d45e56f05440ea4725fd654e3b3f698e037fd90b47f62215fec34 2 @@ -214,5 +214,5 @@ -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-standard.html 277478bd603570802288b2397d95e3b2e538e9161bfa688651637f922da41f18 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level1_server.html 01a414c262e8f4514cd7c7cc2332c39f529af8c2a23b2644e249b7c1b09e2a9e 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level1_workstation.html 795dd449340d704d576b29efaf83901580a1d4e4b0d9e2bea7b61e582a1c2913 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level2_server.html c806c985bef81643f09d352f3f5b243e0ab1070e4f28c4212f5353c6e6cafdc0 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level2_workstation.html 14f404f5c4f294b005dcd03663b540809e2048fed41ab6ce28a1b4f4c4e72fa9 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-standard.html 44fab042fd324995a646f61f4d8773bacd0a80cc46042919cc911f28d987065c 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level1_server.html b11f8a7f1fbc0b1b58a0928f9d287325cdd5091c2c969f2c359f0b78bf940412 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level1_workstation.html f6ee57d1758bcfb530231ed2b799161449d26b3adb7bb28585e450ff8f805dd1 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level2_server.html 72df1689248ccddc8c50c2215a0fafbbc3c08dc1b0e8c274bbfd1123816c3a92 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level2_workstation.html ef1733d5514aefb32f79f858e954cf2863bb14c2be6772baea2aac895d15e4ca 2 @@ -220,6 +220,6 @@ -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-standard.html f5bb849139cd2d1351d7d88c6571c08e4809f14e5c4911e7a3f0fa23c9b1c464 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-stig.html fcd1d9fd31d440381d97c3bce11eff1f121478b4eeb5ba2992172f615f98769b 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level1_server.html 315cd8da748e9c267c61c30f5d8481be93628f459a4a80175b5fd4f8c6810bc5 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level1_workstation.html c13700d133a93c847bc2c55df4df679bcc8e68d5008bbb7d9493825974dd2ee0 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level2_server.html b399ae583353c35a8c5deb71e8ce83c1ce03790ccc853857a3d9e2296f6b358d 2 -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level2_workstation.html 298486abd3ece40bc2cefb4ff66e11fa6efbf97f3eaa6c437cd0ea932af557e2 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-standard.html dfb743a24033c5f4e9b772e6199db79bcd847a082cc694119b884a24a9f36ab1 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-stig.html f010cda1bd62b789aaa85f61e7a35d600fa26372702b1d8b50d3977405f3975e 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level1_server.html aa962c8b0f0c173e2163f8fcaead6c59a8b71dda147150915bf998951c3b24d1 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level1_workstation.html 570e7f4d176915d97af90c5603ff8d2a3443268e112a5feaf2fd51759d05fad5 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level2_server.html e4a332d3bbf62d1db2f3f1468fe7fcd4f26f56042c82418286be133b1f626c4e 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level2_workstation.html 2ac8e1d536c7c03aaae8b04e491f227c67b8e61c4ffabc414354a715edd69545 2 @@ -227 +227 @@ -/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-standard.html 99e2bcf89de62d6581691e1b8b36ed75d536b7bf5df374f9c4c3161b82c79553 2 +/usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-standard.html 666c489f78b641f8266a00a02454ab809b9fc930c2d71cde218dc3e9a2a5dd5b 2 @@ -284,2 +284,2 @@ -/usr/share/xml/scap/ssg/content/ssg-ubuntu1604-ds-1.2.xml d5924d54916271cdd9ae45daf69cf9f3581508fcb3da7e9f65fedcfe5d0e946f 0 -/usr/share/xml/scap/ssg/content/ssg-ubuntu1604-ds.xml 51f55a5324ff611bfca070530cc36b67f96b91327a48a6fe3debbfa65fdeaf1b 0 +/usr/share/xml/scap/ssg/content/ssg-ubuntu1604-ds-1.2.xml 2765e2344eb17797f974473baf4b0d44a53914b64c44f08043241ee1328bd7a6 0 +/usr/share/xml/scap/ssg/content/ssg-ubuntu1604-ds.xml 2aa598dd6ce1780b7d580a9e65cd162e07ed10bd14b80ce6282d263dc316df6e 0 @@ -288 +288 @@ -/usr/share/xml/scap/ssg/content/ssg-ubuntu1604-xccdf.xml 557094585f78d46a6a8e35c9759541eed4f4797efd0ef520054dbc236b323ac2 0 +/usr/share/xml/scap/ssg/content/ssg-ubuntu1604-xccdf.xml 19475fdee1065b398dc9a419fd324e7f5c740cef72fe2413cc755f9b23d63602 0 @@ -291,2 +291,2 @@ -/usr/share/xml/scap/ssg/content/ssg-ubuntu1804-ds-1.2.xml 5c1a12814e78cf6cb956c09589bdc2a384d7799ff53231f571a963d03be8d655 0 -/usr/share/xml/scap/ssg/content/ssg-ubuntu1804-ds.xml 38ee4558d4017099ee701d2fb4b11a73338439de5546a8958de7e808ed59d480 0 +/usr/share/xml/scap/ssg/content/ssg-ubuntu1804-ds-1.2.xml 04f80d7e0ae4f864cdbe7878c302bf7c3a6b10425c42a7cb55bc102815a08e2f 0 +/usr/share/xml/scap/ssg/content/ssg-ubuntu1804-ds.xml d973a63e177f62c662804c4d3a0ad040fc92ede1b610c3ef2b0f8d9be51186a0 0 @@ -295 +295 @@ -/usr/share/xml/scap/ssg/content/ssg-ubuntu1804-xccdf.xml a4ed344c6b967846a2252233152345ecf09c705a2aee20c2732f2ce83e900b6b 0 +/usr/share/xml/scap/ssg/content/ssg-ubuntu1804-xccdf.xml 46a57f317723f20651bf1008c2188858caf3f1e74608d02db96413931ece9bb0 0 @@ -298,2 +298,2 @@ -/usr/share/xml/scap/ssg/content/ssg-ubuntu2004-ds-1.2.xml c82f40c885cd7dc0d86a5bc7fdf9c3a8a5ae812e1e61fc614e4d52b3afb04920 0 -/usr/share/xml/scap/ssg/content/ssg-ubuntu2004-ds.xml fc9480aa971bc41d79e0ab3968dfae2de7deab66b1196ce366a1f5c0d867f18e 0 +/usr/share/xml/scap/ssg/content/ssg-ubuntu2004-ds-1.2.xml 785d9a80901115a40c28e7b9aa67b244b5e358b7952295e3f6ba79daecd5ba17 0 +/usr/share/xml/scap/ssg/content/ssg-ubuntu2004-ds.xml 476ba1aa30f7800ec7d58628280d24b2287b65cd17ae428b122b478b10d1807a 0 @@ -302 +302 @@ -/usr/share/xml/scap/ssg/content/ssg-ubuntu2004-xccdf.xml 668cfc51330eec5ef9f42f25352afe3fc3893bf2ecfdacdcc835a178156214a2 0 +/usr/share/xml/scap/ssg/content/ssg-ubuntu2004-xccdf.xml 19e01981cc3c53d2afa2d00c4d3efea450803bf6c967d505f805a209846afed9 0 @@ -305,2 +305,2 @@ -/usr/share/xml/scap/ssg/content/ssg-ubuntu2204-ds-1.2.xml fea1c6801d5334c137cf059f70b8dff1f6a8dd36f4174dba0be9dd8c739b7535 0 -/usr/share/xml/scap/ssg/content/ssg-ubuntu2204-ds.xml 91caf6f7f42e4e0ebabd7d7583368285a9a60f04adfd72d43e2a74281892f639 0 +/usr/share/xml/scap/ssg/content/ssg-ubuntu2204-ds-1.2.xml 77e92208c941204b9c4917b847b5f9e4c2786266155fb2aaca1ab5d84ae24ecc 0 +/usr/share/xml/scap/ssg/content/ssg-ubuntu2204-ds.xml e7f3c7240776e0df2314f43a4ac4c8c4fd36a95f5cffe4184d06adeb77b39e74 0 @@ -309 +309 @@ -/usr/share/xml/scap/ssg/content/ssg-ubuntu2204-xccdf.xml 0b67b45a8775f4956e200ebd1dadf13257a1e43ce542f8e18c6e12663fe19a28 0 +/usr/share/xml/scap/ssg/content/ssg-ubuntu2204-xccdf.xml e4b7b8299a27ff0b037f5c49b5b3ecc47c9c77177488fd4722894db01f5bc50d 0 comparing rpmtags comparing RELEASE comparing PROVIDES comparing scripts comparing filelist comparing file checksum creating rename script RPM file checksum differs. Extracting packages /usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_average.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_average.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_average.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Average (Intermediate) Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_average

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:16.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Configure Syslog
    3. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Deprecated services
    3. Network Time Protocol
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 16.04   Group contains 19 groups and 40 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 High (Enforced) Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_high

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:16.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Cron and At Daemons
    3. Deprecated services
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 16.04   Group contains 22 groups and 46 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Minimal Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_minimal

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:16.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Deprecated services

Checklist

Group   Guide to the Secure Configuration of Ubuntu 16.04   Group contains 9 groups and 19 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_restrictive.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_restrictive.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-anssi_np_nt28_restrictive.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Restrictive Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_restrictive

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:16.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. Configure Syslog
    4. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Cron and At Daemons
    3. Deprecated services
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 16.04   Group contains 21 groups and 45 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1604-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Ubuntu 16.04
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:16.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. Configure Syslog
    4. File Permissions and Masks
  2. Services
    1. Cron and At Daemons
    2. Deprecated services
    3. Network Time Protocol
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 16.04   Group contains 19 groups and 45 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_average.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_average.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_average.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Average (Intermediate) Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_average

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:18.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Configure Syslog
    3. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Deprecated services
    3. Network Time Protocol
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 18.04   Group contains 19 groups and 40 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_high.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_high.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 High (Enforced) Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_high

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:18.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. GRUB2 bootloader configuration
    4. Configure Syslog
    5. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Cron and At Daemons
    3. Deprecated services
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 18.04   Group contains 22 groups and 46 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_minimal.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_minimal.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Minimal Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_minimal

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:18.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Deprecated services

Checklist

Group   Guide to the Secure Configuration of Ubuntu 18.04   Group contains 9 groups and 19 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_restrictive.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_restrictive.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-anssi_np_nt28_restrictive.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleProfile for ANSSI DAT-NT28 Restrictive Level
Profile IDxccdf_org.ssgproject.content_profile_anssi_np_nt28_restrictive

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:18.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. Configure Syslog
    4. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Cron and At Daemons
    3. Deprecated services
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 18.04   Group contains 21 groups and 45 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-cis.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-cis.html 2024-02-13 16:02:48.000000000 +0000 @@ -67,7 +67,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Ubuntu 18.04 LTS Benchmark
Profile IDxccdf_org.ssgproject.content_profile_cis

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:18.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. Network Configuration and Firewalls
    4. File Permissions and Masks
  2. Services
    1. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 18.04   Group contains 21 groups and 71 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu1804-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Ubuntu 18.04
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:18.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. System Accounting with auditd
    3. Configure Syslog
    4. File Permissions and Masks
  2. Services
    1. Cron and At Daemons
    2. Deprecated services
    3. Network Time Protocol
    4. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 18.04   Group contains 19 groups and 45 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level1_server.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level1_server.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level1_server.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Ubuntu 20.04 Level 1 Server Benchmark
Profile IDxccdf_org.ssgproject.content_profile_cis_level1_server

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:20.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. AppArmor
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. Deprecated services
    4. DHCP
    5. DNS Server
    6. FTP Server
    7. Web Server
    8. IMAP and POP3 Server
    9. LDAP
    10. Mail Server Software
    11. NFS and RPC
    12. Network Time Protocol
    13. Obsolete Services
    14. Print Support
    15. Proxy Server
    16. Samba(SMB) Microsoft Windows File Sharing Server
    17. SNMP Server
    18. SSH Server
    19. X Window System

Checklist

Group   Guide to the Secure Configuration of Ubuntu 20.04   Group contains 93 groups and 260 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level1_workstation.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level1_workstation.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level1_workstation.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Ubuntu 20.04 Level 1 Workstation Benchmark
Profile IDxccdf_org.ssgproject.content_profile_cis_level1_workstation

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:20.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. AppArmor
    4. GRUB2 bootloader configuration
    5. Configure Syslog
    6. Network Configuration and Firewalls
    7. File Permissions and Masks
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. Deprecated services
    4. DHCP
    5. DNS Server
    6. FTP Server
    7. Web Server
    8. IMAP and POP3 Server
    9. LDAP
    10. Mail Server Software
    11. NFS and RPC
    12. Network Time Protocol
    13. Obsolete Services
    14. Print Support
    15. Proxy Server
    16. Samba(SMB) Microsoft Windows File Sharing Server
    17. SNMP Server
    18. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 20.04   Group contains 91 groups and 259 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level2_server.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level2_server.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level2_server.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Ubuntu 20.04 Level 2 Server Benchmark
Profile IDxccdf_org.ssgproject.content_profile_cis_level2_server

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:20.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. Deprecated services
    4. DHCP
    5. DNS Server
    6. FTP Server
    7. Web Server
    8. IMAP and POP3 Server
    9. LDAP
    10. Mail Server Software
    11. NFS and RPC
    12. Network Time Protocol
    13. Obsolete Services
    14. Print Support
    15. Proxy Server
    16. Samba(SMB) Microsoft Windows File Sharing Server
    17. SNMP Server
    18. SSH Server
    19. X Window System

Checklist

Group   Guide to the Secure Configuration of Ubuntu 20.04   Group contains 104 groups and 345 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level2_workstation.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level2_workstation.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-cis_level2_workstation.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Ubuntu 20.04 Level 2 Workstation Benchmark
Profile IDxccdf_org.ssgproject.content_profile_cis_level2_workstation

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:20.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Avahi Server
    2. Cron and At Daemons
    3. Deprecated services
    4. DHCP
    5. DNS Server
    6. FTP Server
    7. Web Server
    8. IMAP and POP3 Server
    9. LDAP
    10. Mail Server Software
    11. NFS and RPC
    12. Network Time Protocol
    13. Obsolete Services
    14. Print Support
    15. Proxy Server
    16. Samba(SMB) Microsoft Windows File Sharing Server
    17. SNMP Server
    18. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 20.04   Group contains 104 groups and 347 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Ubuntu 20.04
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:20.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. File Permissions and Masks
  2. Services
    1. Apport Service
    2. Cron and At Daemons
    3. Deprecated services
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 20.04   Group contains 22 groups and 45 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-stig.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2004-guide-stig.html 2024-02-13 16:02:48.000000000 +0000 @@ -68,7 +68,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCanonical Ubuntu 20.04 LTS Security Technical Implementation Guide (STIG) V1R9
Profile IDxccdf_org.ssgproject.content_profile_stig

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:20.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. APT service configuration
    2. Base Services
    3. Deprecated services
    4. Network Time Protocol
    5. Obsolete Services
    6. SSH Server
    7. System Security Services Daemon

Checklist

Group   Guide to the Secure Configuration of Ubuntu 20.04   Group contains 76 groups and 203 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level1_server.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level1_server.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level1_server.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Ubuntu 22.04 Level 1 Server Benchmark
Profile IDxccdf_org.ssgproject.content_profile_cis_level1_server

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:22.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Apport Service
    2. Avahi Server
    3. Cron and At Daemons
    4. Deprecated services
    5. DHCP
    6. DNS Server
    7. FTP Server
    8. Web Server
    9. IMAP and POP3 Server
    10. LDAP
    11. Mail Server Software
    12. NFS and RPC
    13. Network Time Protocol
    14. Obsolete Services
    15. Print Support
    16. Proxy Server
    17. Samba(SMB) Microsoft Windows File Sharing Server
    18. SNMP Server
    19. SSH Server
    20. X Window System

Checklist

Group   Guide to the Secure Configuration of Ubuntu 22.04   Group contains 102 groups and 291 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level1_workstation.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level1_workstation.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level1_workstation.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Ubuntu 22.04 Level 1 Workstation Benchmark
Profile IDxccdf_org.ssgproject.content_profile_cis_level1_workstation

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:22.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Apport Service
    2. Avahi Server
    3. Cron and At Daemons
    4. Deprecated services
    5. DHCP
    6. DNS Server
    7. FTP Server
    8. Web Server
    9. IMAP and POP3 Server
    10. LDAP
    11. Mail Server Software
    12. NFS and RPC
    13. Network Time Protocol
    14. Obsolete Services
    15. Print Support
    16. Proxy Server
    17. Samba(SMB) Microsoft Windows File Sharing Server
    18. SNMP Server
    19. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 22.04   Group contains 98 groups and 285 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level2_server.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level2_server.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level2_server.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Ubuntu 22.04 Level 2 Server Benchmark
Profile IDxccdf_org.ssgproject.content_profile_cis_level2_server

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:22.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Apport Service
    2. Avahi Server
    3. Cron and At Daemons
    4. Deprecated services
    5. DHCP
    6. DNS Server
    7. FTP Server
    8. Web Server
    9. IMAP and POP3 Server
    10. LDAP
    11. Mail Server Software
    12. NFS and RPC
    13. Network Time Protocol
    14. Obsolete Services
    15. Print Support
    16. Proxy Server
    17. Samba(SMB) Microsoft Windows File Sharing Server
    18. SNMP Server
    19. SSH Server
    20. X Window System

Checklist

Group   Guide to the Secure Configuration of Ubuntu 22.04   Group contains 113 groups and 387 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level2_workstation.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level2_workstation.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-cis_level2_workstation.html 2024-02-13 16:02:48.000000000 +0000 @@ -66,7 +66,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleCIS Ubuntu 22.04 Level 2 Workstation Benchmark
Profile IDxccdf_org.ssgproject.content_profile_cis_level2_workstation

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:22.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. AppArmor
    5. GRUB2 bootloader configuration
    6. Configure Syslog
    7. Network Configuration and Firewalls
    8. File Permissions and Masks
  2. Services
    1. Apport Service
    2. Avahi Server
    3. Cron and At Daemons
    4. Deprecated services
    5. DHCP
    6. DNS Server
    7. FTP Server
    8. Web Server
    9. IMAP and POP3 Server
    10. LDAP
    11. Mail Server Software
    12. NFS and RPC
    13. Network Time Protocol
    14. Obsolete Services
    15. Print Support
    16. Proxy Server
    17. Samba(SMB) Microsoft Windows File Sharing Server
    18. SNMP Server
    19. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 22.04   Group contains 111 groups and 385 rules
Group   /usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-standard.html differs (HTML document, UTF-8 Unicode text, with very long lines) --- old//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/doc/scap-security-guide/guides/ssg-ubuntu2204-guide-standard.html 2024-02-13 16:02:48.000000000 +0000 @@ -65,7 +65,7 @@ other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.

Profile Information

Profile TitleStandard System Security Profile for Ubuntu 22.04
Profile IDxccdf_org.ssgproject.content_profile_standard

CPE Platforms

  • cpe:/o:canonical:ubuntu_linux:22.04::~~lts~~~

Revision History

Current version: 0.1.72

  • draft - (as of 2024-03-26) + (as of 2040-04-28)

Table of Contents

  1. System Settings
    1. Installing and Maintaining Software
    2. Account and Access Control
    3. System Accounting with auditd
    4. Configure Syslog
    5. File Permissions and Masks
  2. Services
    1. Apport Service
    2. Cron and At Daemons
    3. Deprecated services
    4. Network Time Protocol
    5. SSH Server

Checklist

Group   Guide to the Secure Configuration of Ubuntu 22.04   Group contains 22 groups and 45 rules
Group   /usr/share/xml/scap/ssg/content/ssg-ubuntu1604-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ubuntu1604-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ubuntu1604-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Ubuntu 16.04 This guide presents a catalog of security-relevant configuration settings for Ubuntu 16.04. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ubuntu1604-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ubuntu1604-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ubuntu1604-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -35,7 +35,7 @@ - draft + draft Guide to the Secure Configuration of Ubuntu 16.04 This guide presents a catalog of security-relevant configuration settings for Ubuntu 16.04. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ubuntu1604-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ubuntu1604-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ubuntu1604-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of Ubuntu 16.04 This guide presents a catalog of security-relevant configuration settings for Ubuntu 16.04. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ubuntu1804-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ubuntu1804-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ubuntu1804-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Ubuntu 18.04 This guide presents a catalog of security-relevant configuration settings for Ubuntu 18.04. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ubuntu1804-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ubuntu1804-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ubuntu1804-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Ubuntu 18.04 This guide presents a catalog of security-relevant configuration settings for Ubuntu 18.04. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ubuntu1804-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ubuntu1804-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ubuntu1804-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of Ubuntu 18.04 This guide presents a catalog of security-relevant configuration settings for Ubuntu 18.04. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ubuntu2004-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ubuntu2004-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ubuntu2004-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Ubuntu 20.04 This guide presents a catalog of security-relevant configuration settings for Ubuntu 20.04. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ubuntu2004-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ubuntu2004-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ubuntu2004-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Ubuntu 20.04 This guide presents a catalog of security-relevant configuration settings for Ubuntu 20.04. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ubuntu2004-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ubuntu2004-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ubuntu2004-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of Ubuntu 20.04 This guide presents a catalog of security-relevant configuration settings for Ubuntu 20.04. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ubuntu2204-ds-1.2.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ubuntu2204-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ubuntu2204-ds-1.2.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Ubuntu 22.04 This guide presents a catalog of security-relevant configuration settings for Ubuntu 22.04. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ubuntu2204-ds.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ubuntu2204-ds.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ubuntu2204-ds.xml 2024-02-13 16:02:48.000000000 +0000 @@ -33,7 +33,7 @@ - draft + draft Guide to the Secure Configuration of Ubuntu 22.04 This guide presents a catalog of security-relevant configuration settings for Ubuntu 22.04. It is a rendering of /usr/share/xml/scap/ssg/content/ssg-ubuntu2204-xccdf.xml differs (XML 1.0 document, ASCII text, with very long lines) --- old//usr/share/xml/scap/ssg/content/ssg-ubuntu2204-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 +++ new//usr/share/xml/scap/ssg/content/ssg-ubuntu2204-xccdf.xml 2024-02-13 16:02:48.000000000 +0000 @@ -1,6 +1,6 @@ - draft + draft Guide to the Secure Configuration of Ubuntu 22.04 This guide presents a catalog of security-relevant configuration settings for Ubuntu 22.04. It is a rendering of overalldiffered=4 (number of pkgs that are not bit-by-bit identical: 0 is good) overall=1