Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

scap-security-guide-0.1.75-2.2 RPM for noarch

From OpenSuSE Tumbleweed for noarch

Name: scap-security-guide Distribution: openSUSE Tumbleweed
Version: 0.1.75 Vendor: openSUSE
Release: 2.2 Build date: Thu Dec 5 21:18:21 2024
Group: Productivity/Security Build host: reproducible
Size: 215578655 Source RPM: scap-security-guide-0.1.75-2.2.src.rpm
Packager: https://bugs.opensuse.org
Url: https://github.com/ComplianceAsCode/content
Summary: XCCDF files for SUSE Linux and openSUSE
 
Security Content Automation Protocol (SCAP) Security Guide for SUSE Linux.

This package contains XCCDF (Extensible Configuration Checklist
Description Format), OVAL (Open Vulnerability and Assessment
Language), CPE (Common Platform Enumeration) and DS (Data Stream)
files to run a compliance test on SLE12, SLE15, SLEM5 and openSUSE

SUSE supported in this version of scap-security-guide:

- DISA STIG profile for SUSE Linux Enterprise Server 12 and 15
- DISA STIG profile for SUSE Linux Enterprise Micro 5
- ANSSI-BP-028 profile for SUSE Linux Enterprise Server 12 and 15
- PCI-DSS profile for SUSE Linux Enterprise Server 12 and 15
- HIPAA profile for SUSE Linux Enterprise Server 12 and 15
- CIS profile for SUSE Linux Enterprise Server 12 and 15
- Hardening for Public Cloud Image of SUSE Linux Enterprise Server for SAP Applications 15
- Public Cloud Hardening for SUSE Linux Enterprise 15

Other profiles, like the Standard System Security Profile for SUSE Linux Enterprise 12 and 15,
are community supplied and not officially supported by SUSE.

Provides

Requires

License

BSD-3-Clause

Changelog

* Thu Dec 05 2024 Marcus Meissner <meissner@suse.com>
  - ssg-reproducable.patch: replace two date injections by SOURCE_DATE_EPOCH
    to make reproducible. bsc#1230361
* Wed Dec 04 2024 Rumen Chikov <rumen.chikov@suse.com>
  - updated to 0.1.75 (jsc#ECO-3319)
    - Add new product kylinserver10
    - Create OL10 product
    - Update PCI-DSS control file for version 4.0.1
    - Add Ism profile for ol8, ol9
    - Release SLMicro5 product
    - Various updates for SLE 12/15
* Mon Sep 02 2024 Rumen Chikov <rumen.chikov@suse.com>
  - updated to 0.1.74 (jsc#ECO-3319)
    - Add Amazon Linux 2023 product (#12006)
    - Introduce new remediation type Kickstart (#12144)
    - Make PAM macros more flexible to variables (#12133)
    - Remove Debian 10 Product (#12205)
    - Remove Red Hat Enterprise Linux 7 product (#12093)
    - Update CIS RHEL9 control file to v2.0.0 (#12067)
* Fri May 31 2024 Rumen Chikov <rumen.chikov@suse.com>
  - updated to 0.1.73 (jsc#ECO-3319)
    - CMP 2417: Implement PCI-DSS v4.0 outline for OpenShift (#11651)
    - Update all RHEL ANSSI BP028 profiles to be aligned with configuration recommendations version 2.0
    - Generate rule references from control files (#11540)
    - Initial implementation of STIG V1R1 profile for Ubuntu 22.04 LTS (#11820)
* Tue Feb 13 2024 Marcus Meissner <meissner@suse.com>
  - updated to 0.1.72 (jsc#ECO-3319)
    - ANSSI BP 028 profile for debian12 (#11368)
    - Building on Windows (#11406)
    - Control for BSI APP.4.4 (#11342)
    - update to CIS RHEL 7 and RHEL 8 profiles aligning them with the latest benchmarks
    - various fixes to SLE profiles
  - add openeuler to -redhat package
  - removed ssg-fix-journald.patch: fixed upstream
* Tue Dec 19 2023 Marcus Meissner <meissner@suse.com>
  - updated to 0.1.71 (jsc#ECO-3319)
    - Add RHEL 9 STIG
    - Add support for Debian 12
    - Update PCI-DSS profile for RHEL
    - lots of bugfixes and improvements for SLE
  - removed left over file
    0001-Revert-fix-aide-remediations-add-crontabs.patch upstreamed in 0.1.69
* Wed Dec 06 2023 Marcus Meissner <meissner@suse.com>
  - ssg-fix-journald.patch: switch buggy journald plugindir remediation
    to write into journald.conf. (bsc#1217832)
* Tue Oct 17 2023 Marcus Meissner <meissner@suse.com>
  - updated to 0.1.70 (jsc#ECO-3319)
    - Add openembedded distro support (#10793)
    - Remove DRAFT wording for OpenShift STIG (#11100)
    - Remove test-function-check_playbook_file_removed_and_added test (#10982)
    - scap-security-guide: Add Poky support (#11046)
* Wed Aug 02 2023 Marcus Meissner <meissner@suse.com>
  - updated to 0.1.69 (jsc#ECO-3319)
    - Introduce a JSON build manifest (#10761)
    - Introduce a script to compare ComplianceAsCode versions (#10768)
    - Introduce CCN profiles for RHEL9 (#10860)
    - Map rules to components (#10609)
    - products/anolis23: supports Anolis OS 23 (#10548)
    - Render components to HTML (#10709)
    - Store rendered control files (#10656)
    - Test and use rules to components mapping (#10693)
    - Use distributed product properties (#10554)
  - 0001-Revert-fix-aide-remediations-add-crontabs.patch: removed, upstream
* Thu Jul 27 2023 Marcus Meissner <meissner@suse.com>
  - 0001-Revert-fix-aide-remediations-add-crontabs.patch:
    revert patch that breaks the SLE hardening (bsc#1213691)
* Thu Jun 15 2023 Marcus Meissner <meissner@suse.com>
  - updated to 0.1.68 (jsc#ECO-3319)
    - Bump OL8 STIG version to V1R6
    - Introduce a Product class, make the project work with it
    - Introduce Fedora and Firefox CaC profiles for common workstation users
    - OL7 DISA STIG v2r11 update
    - Publish rendered policy artifacts
    - Update ANSSI BP-028 to version 2.0
  - updated to 0.1.67 (jsc#ECO-3319)
    - Add utils/controlrefcheck.py
    - RHEL 9 STIG Update Q1 2023
    - Include warning for NetworkManager keyfiles in RHEL9
    - OL7 stig v2r10 update
    - Bump version of OL8 STIG to V1R5
  - various enhancements to SLE profiles
  - scap-security-guide-UnicodeEncodeError-character-fix.patch: fixed upstream
* Mon Feb 06 2023 Marcus Meissner <meissner@suse.com>
  - updated to 0.1.66 (jsc#ECO-3319)
     - Ubuntu 22.04 CIS
     - OL7 stig v2r9 update
     - Bump OL8 STIG version to V1R4
     - Update RHEL7 STIG to V3R10
     - Update RHEL8 STIG to V1R9
     - Introduce CIS RHEL9 profiles
  - also various SUSE profile fixes were done
* Mon Dec 05 2022 Marcus Meissner <meissner@suse.com>
  - updated to 0.1.65 (jsc#ECO-3319)
    - Introduce cui profile for OL9
    - Remove Support for OVAL 5.10
    - Rename account_passwords_pam_faillock_audit
    - CI ansible hardening and rename of existing Bash hardening
    - Update contributors list for v0.1.65 release
    - various SUSE profile specific fixes
* Fri Nov 25 2022 Marcus Meissner <meissner@suse.com>
  - require sudo, as remediations touch sudo config or use sudo.
* Wed Oct 05 2022 Marcus Meissner <meissner@suse.com>
  - enable ubuntu 2204 build
* Sat Oct 01 2022 Marcus Meissner <meissner@suse.com>
  - updated to 0.1.64 (jsc#ECO-3319)
    - Introduce ol9 stig profile
    - Introduce Ol9 anssi profiles
    - Update RHEL8 STIG to V1R7
    - Introduce e8 profile for OL9
    - Update RHEL7 STIG to V3R8
    - some SUSE profile fixes
* Wed Sep 21 2022 Marcus Meissner <meissner@suse.com>
  - Added several RPM requires that are needed by the SUSE remediation
    scripts. (e.g. awk is not necessary installed)
* Sat Jul 30 2022 Marcus Meissner <meissner@suse.com>
  - updated to 0.1.63 (jsc#ECO-3319)
    - multiple bugfixes in SUSE profiles
    - Expand project guidelines
    - Add Draft OCP4 STIG profile
    - Add anssi_bp28_intermediary profile
    - add products/uos20 to support UnionTech OS Server 20
    - products/alinux3: Add CIS Alibaba Cloud Linux 3 profiles
    - Remove WRLinux Products
    - Update CIS RHEL8 Benchmark for v2.0.0
  - removed fix-bash-template.patch: fixed upstream
  - Fixed: stig: /etc/shadow group owner should not be root but shadow (bsc#1200149)
  - Fixed: sles15_script-stig.sh: remediation_functions: No such file or directory (bsc#1200163)
  - Fixed: SLES-15-010130 - The SUSE operating system must initiate a session lock after a 15-minute period of inactivity (bsc#1200122)
* Fri Jul 15 2022 Julio González Gil <jgonzalez@suse.com>
  - Fix the build for RHEL 7 and clones (python-setuptools is used)
* Wed Jul 06 2022 Julio González Gil <jgonzalez@suse.com>
  - Fix the build for RHEL 9 and clones
* Mon Jun 27 2022 Marcus Meissner <meissner@suse.com>
  - fix-bash-template.patch: convert one bash emitter to new jinja method.
    (bsc#1200163)
* Thu Jun 09 2022 Marcus Meissner <meissner@suse.com>
  - add python3-setuptools for all builds (so it is also used on debian
    and centos flavors)
* Mon May 30 2022 Marcus Meissner <meissner@suse.com>
  - updated to 0.1.62 (jsc#ECO-3319)
    - Update rhel8 stig to v1r6
    - OL7 STIG v2r7 update
    - Initial definition of ANSSI BP28 minmal profile for SLE
* Mon Apr 04 2022 Marcus Meissner <meissner@suse.com>
  - updated to 0.1.61 (jsc#ECO-3319)
    - Stop building PCI-DSS-centric XCCDF benchmark for RHEL 7
    - Introduce OL9 product
    - Implement handling of logical expressions in platform definitions
* Tue Feb 22 2022 Marcus Meissner <meissner@suse.com>
  - bump disk size constraints to 7gb to avoid occasional disk fulls failures.
* Thu Jan 27 2022 Marcus Meissner <meissner@suse.com>
  - updated to 0.1.60 (jsc#ECO-3319)
    - New draft stig profile v1r1 for OL8
    - New product Amazon EKS platform and initial CIS profiles
    - New product CentOS Stream 9, as a derivative from RHEL9 product

Files

/usr/share/doc/scap-security-guide
/usr/share/doc/scap-security-guide/Contributors.md
/usr/share/doc/scap-security-guide/LICENSE
/usr/share/doc/scap-security-guide/README.md
/usr/share/doc/scap-security-guide/guides
/usr/share/doc/scap-security-guide/guides/ssg-opensuse-guide-index.html
/usr/share/doc/scap-security-guide/guides/ssg-opensuse-guide-standard.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_enhanced.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_high.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_intermediary.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-anssi_bp28_minimal.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_server_l1.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_workstation_l1.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-cis_workstation_l2.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-index.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-pci-dss-4.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-pci-dss.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-standard.html
/usr/share/doc/scap-security-guide/guides/ssg-sle12-guide-stig.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_enhanced.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_high.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_intermediary.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-anssi_bp28_minimal.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_server_l1.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_workstation_l1.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-cis_workstation_l2.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-hipaa.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-index.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pci-dss-4.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pcs-hardening-sap.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-pcs-hardening.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-standard.html
/usr/share/doc/scap-security-guide/guides/ssg-sle15-guide-stig.html
/usr/share/doc/scap-security-guide/guides/ssg-slmicro5-guide-index.html
/usr/share/doc/scap-security-guide/guides/ssg-slmicro5-guide-stig.html
/usr/share/doc/scap-security-guide/tables
/usr/share/doc/scap-security-guide/tables/table-sle12-stig-testinfo.html
/usr/share/doc/scap-security-guide/tables/table-sle12-stig.html
/usr/share/doc/scap-security-guide/tables/table-sle15-cces.html
/usr/share/doc/scap-security-guide/tables/table-sle15-nistrefs-standard.html
/usr/share/doc/scap-security-guide/tables/table-sle15-stig-testinfo.html
/usr/share/doc/scap-security-guide/tables/table-sle15-stig.html
/usr/share/doc/scap-security-guide/tables/table-slmicro5-cces.html
/usr/share/doc/scap-security-guide/tables/table-slmicro5-stig-testinfo.html
/usr/share/doc/scap-security-guide/tables/table-slmicro5-stig.html
/usr/share/licenses/scap-security-guide
/usr/share/licenses/scap-security-guide/LICENSE
/usr/share/man/man8/scap-security-guide.8.gz
/usr/share/scap-security-guide
/usr/share/scap-security-guide/ansible
/usr/share/scap-security-guide/ansible/opensuse-playbook-standard.yml
/usr/share/scap-security-guide/ansible/sle12-playbook-anssi_bp28_enhanced.yml
/usr/share/scap-security-guide/ansible/sle12-playbook-anssi_bp28_high.yml
/usr/share/scap-security-guide/ansible/sle12-playbook-anssi_bp28_intermediary.yml
/usr/share/scap-security-guide/ansible/sle12-playbook-anssi_bp28_minimal.yml
/usr/share/scap-security-guide/ansible/sle12-playbook-cis.yml
/usr/share/scap-security-guide/ansible/sle12-playbook-cis_server_l1.yml
/usr/share/scap-security-guide/ansible/sle12-playbook-cis_workstation_l1.yml
/usr/share/scap-security-guide/ansible/sle12-playbook-cis_workstation_l2.yml
/usr/share/scap-security-guide/ansible/sle12-playbook-pci-dss-4.yml
/usr/share/scap-security-guide/ansible/sle12-playbook-pci-dss.yml
/usr/share/scap-security-guide/ansible/sle12-playbook-standard.yml
/usr/share/scap-security-guide/ansible/sle12-playbook-stig.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-anssi_bp28_enhanced.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-anssi_bp28_high.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-anssi_bp28_intermediary.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-anssi_bp28_minimal.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-cis.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-cis_server_l1.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-cis_workstation_l1.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-cis_workstation_l2.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-hipaa.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-pci-dss-4.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-pcs-hardening-sap.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-pcs-hardening.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-standard.yml
/usr/share/scap-security-guide/ansible/sle15-playbook-stig.yml
/usr/share/scap-security-guide/ansible/slmicro5-playbook-stig.yml
/usr/share/scap-security-guide/bash
/usr/share/scap-security-guide/bash/opensuse-script-standard.sh
/usr/share/scap-security-guide/bash/sle12-script-anssi_bp28_enhanced.sh
/usr/share/scap-security-guide/bash/sle12-script-anssi_bp28_high.sh
/usr/share/scap-security-guide/bash/sle12-script-anssi_bp28_intermediary.sh
/usr/share/scap-security-guide/bash/sle12-script-anssi_bp28_minimal.sh
/usr/share/scap-security-guide/bash/sle12-script-cis.sh
/usr/share/scap-security-guide/bash/sle12-script-cis_server_l1.sh
/usr/share/scap-security-guide/bash/sle12-script-cis_workstation_l1.sh
/usr/share/scap-security-guide/bash/sle12-script-cis_workstation_l2.sh
/usr/share/scap-security-guide/bash/sle12-script-pci-dss-4.sh
/usr/share/scap-security-guide/bash/sle12-script-pci-dss.sh
/usr/share/scap-security-guide/bash/sle12-script-standard.sh
/usr/share/scap-security-guide/bash/sle12-script-stig.sh
/usr/share/scap-security-guide/bash/sle15-script-anssi_bp28_enhanced.sh
/usr/share/scap-security-guide/bash/sle15-script-anssi_bp28_high.sh
/usr/share/scap-security-guide/bash/sle15-script-anssi_bp28_intermediary.sh
/usr/share/scap-security-guide/bash/sle15-script-anssi_bp28_minimal.sh
/usr/share/scap-security-guide/bash/sle15-script-cis.sh
/usr/share/scap-security-guide/bash/sle15-script-cis_server_l1.sh
/usr/share/scap-security-guide/bash/sle15-script-cis_workstation_l1.sh
/usr/share/scap-security-guide/bash/sle15-script-cis_workstation_l2.sh
/usr/share/scap-security-guide/bash/sle15-script-hipaa.sh
/usr/share/scap-security-guide/bash/sle15-script-pci-dss-4.sh
/usr/share/scap-security-guide/bash/sle15-script-pcs-hardening-sap.sh
/usr/share/scap-security-guide/bash/sle15-script-pcs-hardening.sh
/usr/share/scap-security-guide/bash/sle15-script-standard.sh
/usr/share/scap-security-guide/bash/sle15-script-stig.sh
/usr/share/scap-security-guide/bash/slmicro5-script-stig.sh
/usr/share/scap-security-guide/kickstart
/usr/share/xml/scap
/usr/share/xml/scap/ssg
/usr/share/xml/scap/ssg/content
/usr/share/xml/scap/ssg/content/ssg-opensuse-cpe-dictionary.xml
/usr/share/xml/scap/ssg/content/ssg-opensuse-cpe-oval.xml
/usr/share/xml/scap/ssg/content/ssg-opensuse-ds.xml
/usr/share/xml/scap/ssg/content/ssg-opensuse-ocil.xml
/usr/share/xml/scap/ssg/content/ssg-opensuse-oval.xml
/usr/share/xml/scap/ssg/content/ssg-opensuse-xccdf.xml
/usr/share/xml/scap/ssg/content/ssg-sle12-cpe-dictionary.xml
/usr/share/xml/scap/ssg/content/ssg-sle12-cpe-oval.xml
/usr/share/xml/scap/ssg/content/ssg-sle12-ds.xml
/usr/share/xml/scap/ssg/content/ssg-sle12-ocil.xml
/usr/share/xml/scap/ssg/content/ssg-sle12-oval.xml
/usr/share/xml/scap/ssg/content/ssg-sle12-xccdf.xml
/usr/share/xml/scap/ssg/content/ssg-sle15-cpe-dictionary.xml
/usr/share/xml/scap/ssg/content/ssg-sle15-cpe-oval.xml
/usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml
/usr/share/xml/scap/ssg/content/ssg-sle15-ocil.xml
/usr/share/xml/scap/ssg/content/ssg-sle15-oval.xml
/usr/share/xml/scap/ssg/content/ssg-sle15-xccdf.xml
/usr/share/xml/scap/ssg/content/ssg-slmicro5-cpe-dictionary.xml
/usr/share/xml/scap/ssg/content/ssg-slmicro5-cpe-oval.xml
/usr/share/xml/scap/ssg/content/ssg-slmicro5-ds.xml
/usr/share/xml/scap/ssg/content/ssg-slmicro5-ocil.xml
/usr/share/xml/scap/ssg/content/ssg-slmicro5-oval.xml
/usr/share/xml/scap/ssg/content/ssg-slmicro5-xccdf.xml

Generated by rpm2html 1.8.1

Fabrice Bellet, Sun Jan 12 00:30:25 2025