rpms / scap-security-guide

Clone
Source Code
GIT

Blame SOURCES/scap-security-guide-0.1.50-add_package_libselinux_installed_PR_5312.patch

c7 c7-alt c7-beta c8 c8-beta c8s c9 c9-beta
  1.   c957b4e696e5ecf0a69844b2dd37d073e4d34868
  2.   SOURCES
  3.   scap-security-guide-0.1.50-add_package_libselinux_installed_PR_5312.patch
Blob History Raw
dac76a 
From c10f34d8c3932784d69eb0d7b5cff640139ded52 Mon Sep 17 00:00:00 2001
dac76a 
From: Vojtech Polasek <vpolasek@redhat.com>
dac76a 
Date: Thu, 19 Mar 2020 09:55:24 +0100
dac76a 
Subject: [PATCH 1/3] add new rule
dac76a
dac76a 
---
dac76a 
 .../package_libselinux_installed/rule.yml     | 38 +++++++++++++++++++
dac76a 
 2 files changed, 38 insertions(+), 2 deletions(-)
dac76a 
 create mode 100644 linux_os/guide/system/selinux/package_libselinux_installed/rule.yml
dac76a
dac76a 
diff --git a/linux_os/guide/system/selinux/package_libselinux_installed/rule.yml b/linux_os/guide/system/selinux/package_libselinux_installed/rule.yml
dac76a 
new file mode 100644
dac76a 
index 0000000000..a9970fb2c2
dac76a 
--- /dev/null
dac76a 
+++ b/linux_os/guide/system/selinux/package_libselinux_installed/rule.yml
dac76a 
@@ -0,0 +1,38 @@
dac76a 
+documentation_complete: true
dac76a 
+
dac76a 
+prodtype: fedora,ol7,ol8,rhel7,rhel8,rhv4,ocp4
dac76a 
+
dac76a 
+title: 'Install libselinux Package'
dac76a 
+
dac76a 
+description: |-
dac76a 
+    {{{ describe_package_install(package="libselinux") }}}
dac76a 
+
dac76a 
+rationale: |-
dac76a 
+    Security-enhanced Linux is a feature of the Linux kernel and a number of utilities
dac76a 
+    with enhanced security functionality designed to add mandatory access controls to Linux.
dac76a 
+    The Security-enhanced Linux kernel contains new architectural components originally
dac76a 
+    developed to improve security of the Flask operating system. These architectural components
dac76a 
+    provide general support for the enforcement of many kinds of mandatory access control
dac76a 
+    policies, including those based on the concepts of Type Enforcement, Role-based Access
dac76a 
+    Control, and Multi-level Security.
dac76a 
+
dac76a 
+    The <tt>libselinux</tt> package contains the core library of the Security-enhanced Linux system.
dac76a 
+
dac76a 
+severity: high
dac76a 
+
dac76a 
+identifiers:
dac76a 
+    cce@rhel7: 82876-4
dac76a 
+    cce@rhel8: 82877-2
dac76a 
+
dac76a 
+references:
dac76a 
+    cis@rhel7: 1.6.2
dac76a 
+    cis@rhel8: 1.7.1.1
dac76a 
+
dac76a 
+ocil_clause: 'the package is not installed'
dac76a 
+
dac76a 
+ocil: '{{{ ocil_package(package="libselinux") }}}'
dac76a 
+
dac76a 
+template:
dac76a 
+    name: package_installed
dac76a 
+    vars:
dac76a 
+        pkgname: libselinux
dac76a 
From 80e8674b374cd82510abcf923a18235bae3e5948 Mon Sep 17 00:00:00 2001
dac76a 
From: Vojtech Polasek <vpolasek@redhat.com>
dac76a 
Date: Thu, 19 Mar 2020 15:48:10 +0100
dac76a 
Subject: [PATCH 3/3] change wording of rationale
dac76a
dac76a 
---
dac76a 
 .../system/selinux/package_libselinux_installed/rule.yml     | 5 -----
dac76a 
 1 file changed, 5 deletions(-)
dac76a
dac76a 
diff --git a/linux_os/guide/system/selinux/package_libselinux_installed/rule.yml b/linux_os/guide/system/selinux/package_libselinux_installed/rule.yml
dac76a 
index a9970fb2c2..2855c21c90 100644
dac76a 
--- a/linux_os/guide/system/selinux/package_libselinux_installed/rule.yml
dac76a 
+++ b/linux_os/guide/system/selinux/package_libselinux_installed/rule.yml
dac76a 
@@ -10,11 +10,6 @@ description: |-
dac76a 
 rationale: |-
dac76a 
     Security-enhanced Linux is a feature of the Linux kernel and a number of utilities
dac76a 
     with enhanced security functionality designed to add mandatory access controls to Linux.
dac76a 
-    The Security-enhanced Linux kernel contains new architectural components originally
dac76a 
-    developed to improve security of the Flask operating system. These architectural components
dac76a 
-    provide general support for the enforcement of many kinds of mandatory access control
dac76a 
-    policies, including those based on the concepts of Type Enforcement, Role-based Access
dac76a 
-    Control, and Multi-level Security.
dac76a
dac76a 
     The <tt>libselinux</tt> package contains the core library of the Security-enhanced Linux system.
dac76a

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation