Blame SOURCES/scap-security-guide-0.1.61-update_RHEL_08_010030-PR_8183.patch
|
|
ff1465 |
From 92b0f4069bced7d9e1e459db0799d7d2fb9faa59 Mon Sep 17 00:00:00 2001
|
|
|
ff1465 |
From: Gabriel Becker <ggasparb@redhat.com>
|
|
|
ff1465 |
Date: Wed, 9 Feb 2022 14:47:52 +0100
|
|
|
ff1465 |
Subject: [PATCH] Update ocil_clause of encrypt_partitions to exclude boot
|
|
|
ff1465 |
partition.
|
|
|
ff1465 |
|
|
|
ff1465 |
Boot partitions are not part of required partitions to be encrypted.
|
|
|
ff1465 |
---
|
|
|
ff1465 |
.../software/disk_partitioning/encrypt_partitions/rule.yml | 3 ++-
|
|
|
ff1465 |
1 file changed, 2 insertions(+), 1 deletion(-)
|
|
|
ff1465 |
|
|
|
ff1465 |
diff --git a/linux_os/guide/system/software/disk_partitioning/encrypt_partitions/rule.yml b/linux_os/guide/system/software/disk_partitioning/encrypt_partitions/rule.yml
|
|
|
ff1465 |
index e9d25a34fbd..13231dc2cc9 100644
|
|
|
ff1465 |
--- a/linux_os/guide/system/software/disk_partitioning/encrypt_partitions/rule.yml
|
|
|
ff1465 |
+++ b/linux_os/guide/system/software/disk_partitioning/encrypt_partitions/rule.yml
|
|
|
ff1465 |
@@ -90,6 +90,7 @@ ocil: |-
|
|
|
ff1465 |
/dev/sda2: UUID=" bc98d7ef-6g54-321h-1d24-9870de2ge1a2
|
|
|
ff1465 |
" TYPE="crypto_LUKS"
|
|
|
ff1465 |
|
|
|
ff1465 |
- Pseudo-file systems, such as /proc, /sys, and tmpfs, are not required to use disk encryption and are not a finding.
|
|
|
ff1465 |
+ The boot partition and pseudo-file systems, such as /proc, /sys, and tmpfs,
|
|
|
ff1465 |
+ are not required to use disk encryption and are not a finding.
|
|
|
ff1465 |
|
|
|
ff1465 |
platform: machine
|