From shawn at redhat.com Thu Aug 20 11:34:31 2015 Content-Type: multipart/mixed; boundary="===============8464214512177116783==" MIME-Version: 1.0 From: Shawn Wells To: scap-security-guide at lists.fedorahosted.org Subject: Re: [PATCH 2/2] new versions of unauth suid/sgid OVAL checks Date: Mon, 15 Jul 2013 09:12:33 -0400 Message-ID: <51E3F541.6000905@redhat.com> In-Reply-To: 1373855996-1305-3-git-send-email-blank@eclipse.ncsc.mil --===============8464214512177116783== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable On 7/14/13 10:39 PM, Jeffrey Blank wrote: > diff --git a/RHEL6/input/checks/file_permissions_unauthorized_sgid.xml b/= RHEL6/input/checks/file_permissions_unauthorized_sgid.xml > index 5f10e5d..36d40d5 100644 > --- a/RHEL6/input/checks/file_permissions_unauthorized_sgid.xml > +++ b/RHEL6/input/checks/file_permissions_unauthorized_sgid.xml > @@ -1,31 +1,73 @@ > > > > - Find Unauthorized SGID System Executables > + Find setgid files system packages Assuming you meant "Find setgid files _/from/_ system packages" --===============8464214512177116783== Content-Type: text/html MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="attachment.html" PGh0bWw+CiAgPGhlYWQ+CiAgICA8bWV0YSBjb250ZW50PSJ0ZXh0L2h0bWw7IGNoYXJzZXQ9VVRG LTgiIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZSI+CiAgPC9oZWFkPgogIDxib2R5IGJnY29sb3I9 IiNGRkZGRkYiIHRleHQ9IiMwMDAwMDAiPgogICAgPGRpdiBjbGFzcz0ibW96LWNpdGUtcHJlZml4 Ij5PbiA3LzE0LzEzIDEwOjM5IFBNLCBKZWZmcmV5IEJsYW5rCiAgICAgIHdyb3RlOjxicj4KICAg IDwvZGl2PgogICAgPGJsb2NrcXVvdGUKICAgICAgY2l0ZT0ibWlkOjEzNzM4NTU5OTYtMTMwNS0z LWdpdC1zZW5kLWVtYWlsLWJsYW5rQGVjbGlwc2UubmNzYy5taWwiCiAgICAgIHR5cGU9ImNpdGUi PgogICAgICA8cHJlIHdyYXA9IiI+ZGlmZiAtLWdpdCBhL1JIRUw2L2lucHV0L2NoZWNrcy9maWxl X3Blcm1pc3Npb25zX3VuYXV0aG9yaXplZF9zZ2lkLnhtbCBiL1JIRUw2L2lucHV0L2NoZWNrcy9m aWxlX3Blcm1pc3Npb25zX3VuYXV0aG9yaXplZF9zZ2lkLnhtbAppbmRleCA1ZjEwZTVkLi4zNmQ0 MGQ1IDEwMDY0NAotLS0gYS9SSEVMNi9pbnB1dC9jaGVja3MvZmlsZV9wZXJtaXNzaW9uc191bmF1 dGhvcml6ZWRfc2dpZC54bWwKKysrIGIvUkhFTDYvaW5wdXQvY2hlY2tzL2ZpbGVfcGVybWlzc2lv bnNfdW5hdXRob3JpemVkX3NnaWQueG1sCkBAIC0xLDMxICsxLDczIEBACiAmbHQ7ZGVmLWdyb3Vw Jmd0OwogICAmbHQ7ZGVmaW5pdGlvbiBjbGFzcz0iY29tcGxpYW5jZSIgaWQ9ImZpbGVfcGVybWlz c2lvbnNfdW5hdXRob3JpemVkX3NnaWQiIHZlcnNpb249IjEiJmd0OwogICAgICZsdDttZXRhZGF0 YSZndDsKLSAgICAgICZsdDt0aXRsZSZndDtGaW5kIFVuYXV0aG9yaXplZCBTR0lEIFN5c3RlbSBF eGVjdXRhYmxlcyZsdDsvdGl0bGUmZ3Q7CisgICAgICAmbHQ7dGl0bGUmZ3Q7RmluZCBzZXRnaWQg ZmlsZXMgc3lzdGVtIHBhY2thZ2VzJmx0Oy90aXRsZSZndDs8L3ByZT4KICAgIDwvYmxvY2txdW90 ZT4KICAgIDxicj4KICAgIEFzc3VtaW5nIHlvdSBtZWFudCAiRmluZCBzZXRnaWQgZmlsZXMgPHU+ PGk+ZnJvbTwvaT48L3U+IHN5c3RlbQogICAgcGFja2FnZXMiPGJyPgogICAgPGJyPgogIDwvYm9k eT4KPC9odG1sPgo= --===============8464214512177116783==--