From shawn at redhat.com Thu Aug 20 11:31:30 2015 Content-Type: multipart/mixed; boundary="===============2106115332199954661==" MIME-Version: 1.0 From: Shawn Wells To: scap-security-guide at lists.fedorahosted.org Subject: Re: [PATCH 18/21] Mapped CCI-001129 to network_ssl. Date: Tue, 03 Jul 2012 19:59:31 -0400 Message-ID: <4FF38763.2060109@redhat.com> In-Reply-To: 1341355961-5773-19-git-send-email-wsantos@redhat.com --===============2106115332199954661== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable On 7/3/12 6:52 PM, Willy Santos wrote: > CCI-001129 requires maintaining integrity of information during aggregati= on, packaging and transformation in preparation for transmission. This can = be accomplished via SSL/TLS. > > Signed-off-by: Willy Santos > --- > rhel6/src/input/system/network/ssl.xml | 2 +- > 1 files changed, 1 insertions(+), 1 deletions(-) > > diff --git a/rhel6/src/input/system/network/ssl.xml b/rhel6/src/input/sys= tem/network/ssl.xml > index 4a54343..9f59483 100644 > --- a/rhel6/src/input/system/network/ssl.xml > +++ b/rhel6/src/input/system/network/ssl.xml > @@ -34,7 +34,7 @@ can be appropriate. The major steps in this process are: >
  • Enable client support by distributing the CA=E2=80=99s certificate<= /li> > > > - > + > = > > Create a CA to Sign Certificates SRG-OS-000159 CCI-001129 The operating system must maintain the = integrity of information during aggregation, packaging, and = transformation in preparation for transmission. Ensuring the = confidentiality of transmitted information requires the operating system = take measures in preparing information for transmission. This can be = accomplished via access control _*or encryption.*_ Given that encryption is an accepted method for this, Ack. --===============2106115332199954661== Content-Type: text/html MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="attachment.html" PGh0bWw+CiAgPGhlYWQ+CiAgICA8bWV0YSBjb250ZW50PSJ0ZXh0L2h0bWw7IGNoYXJzZXQ9VVRG LTgiIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZSI+CiAgPC9oZWFkPgogIDxib2R5IGJnY29sb3I9 IiNGRkZGRkYiIHRleHQ9IiMwMDAwMDAiPgogICAgPGRpdiBjbGFzcz0ibW96LWNpdGUtcHJlZml4 Ij5PbiA3LzMvMTIgNjo1MiBQTSwgV2lsbHkgU2FudG9zIHdyb3RlOjxicj4KICAgIDwvZGl2Pgog ICAgPGJsb2NrcXVvdGUKICAgICAgY2l0ZT0ibWlkOjEzNDEzNTU5NjEtNTc3My0xOS1naXQtc2Vu ZC1lbWFpbC13c2FudG9zQHJlZGhhdC5jb20iCiAgICAgIHR5cGU9ImNpdGUiPgogICAgICA8cHJl IHdyYXA9IiI+Q0NJLTAwMTEyOSByZXF1aXJlcyBtYWludGFpbmluZyBpbnRlZ3JpdHkgb2YgaW5m b3JtYXRpb24gZHVyaW5nIGFnZ3JlZ2F0aW9uLCBwYWNrYWdpbmcgYW5kIHRyYW5zZm9ybWF0aW9u IGluIHByZXBhcmF0aW9uIGZvciB0cmFuc21pc3Npb24uIFRoaXMgY2FuIGJlIGFjY29tcGxpc2hl ZCB2aWEgU1NML1RMUy4KClNpZ25lZC1vZmYtYnk6IFdpbGx5IFNhbnRvcyA8YSBjbGFzcz0ibW96 LXR4dC1saW5rLXJmYzIzOTZFIiBocmVmPSJtYWlsdG86d3NhbnRvc0ByZWRoYXQuY29tIj4mbHQ7 d3NhbnRvc0ByZWRoYXQuY29tJmd0OzwvYT4KLS0tCiByaGVsNi9zcmMvaW5wdXQvc3lzdGVtL25l dHdvcmsvc3NsLnhtbCB8ICAgIDIgKy0KIDEgZmlsZXMgY2hhbmdlZCwgMSBpbnNlcnRpb25zKCsp LCAxIGRlbGV0aW9ucygtKQoKZGlmZiAtLWdpdCBhL3JoZWw2L3NyYy9pbnB1dC9zeXN0ZW0vbmV0 d29yay9zc2wueG1sIGIvcmhlbDYvc3JjL2lucHV0L3N5c3RlbS9uZXR3b3JrL3NzbC54bWwKaW5k ZXggNGE1NDM0My4uOWY1OTQ4MyAxMDA2NDQKLS0tIGEvcmhlbDYvc3JjL2lucHV0L3N5c3RlbS9u ZXR3b3JrL3NzbC54bWwKKysrIGIvcmhlbDYvc3JjL2lucHV0L3N5c3RlbS9uZXR3b3JrL3NzbC54 bWwKQEAgLTM0LDcgKzM0LDcgQEAgY2FuIGJlIGFwcHJvcHJpYXRlLiBUaGUgbWFqb3Igc3RlcHMg aW4gdGhpcyBwcm9jZXNzIGFyZToKICZsdDtsaSZndDtFbmFibGUgY2xpZW50IHN1cHBvcnQgYnkg ZGlzdHJpYnV0aW5nIHRoZSBDQeKAmXMgY2VydGlmaWNhdGUmbHQ7L2xpJmd0OwogJmx0Oy9vbCZn dDsKICZsdDsvZGVzY3JpcHRpb24mZ3Q7Ci0mbHQ7cmVmIGRpc2E9IjExNDEsMTE0OCwxMTMwLDEx MzEsMTEyNywxMTI4LDExMzUiIC8mZ3Q7CismbHQ7cmVmIGRpc2E9IjExNDEsMTE0OCwxMTMwLDEx MzEsMTEyNywxMTI4LDExMzUsMTEyOSIgLyZndDsKIAogJmx0O1J1bGUgaWQ9Im5ldHdvcmtfc3Ns X2NyZWF0ZV9jYSImZ3Q7CiAmbHQ7dGl0bGUmZ3Q7Q3JlYXRlIGEgQ0EgdG8gU2lnbiBDZXJ0aWZp Y2F0ZXMmbHQ7L3RpdGxlJmd0Owo8L3ByZT4KICAgIDwvYmxvY2txdW90ZT4KICAgIDxicj4KICAg IDxtZXRhIGNoYXJzZXQ9InV0Zi04Ij4KICAgIDx0YWJsZSBzdHlsZT0iYm9yZGVyLWNvbGxhcHNl OiBjb2xsYXBzZTsgYm9yZGVyOiAxcHggc29saWQgYmxhY2s7CiAgICAgIHZlcnRpY2FsLWFsaWdu OiB0b3A7IHBhZGRpbmc6IDNweDsgZm9udC1mYW1pbHk6IFRpbWVzOwogICAgICBsZXR0ZXItc3Bh Y2luZzogbm9ybWFsOyBvcnBoYW5zOiAyOyB0ZXh0LWluZGVudDogMHB4OwogICAgICB0ZXh0LXRy YW5zZm9ybTogbm9uZTsgd2lkb3dzOiAyOyB3b3JkLXNwYWNpbmc6IDBweDsKICAgICAgLXdlYmtp dC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7 ICI+CiAgICAgIDx0Ym9keT4KICAgICAgICA8dHI+CiAgICAgICAgICA8dGQgc3R5bGU9ImJvcmRl cjogMXB4IHNvbGlkIGJsYWNrOyB2ZXJ0aWNhbC1hbGlnbjogdG9wOwogICAgICAgICAgICBwYWRk aW5nOiAzcHg7ICI+U1JHLU9TLTAwMDE1OTwvdGQ+CiAgICAgICAgICA8dGQgc3R5bGU9ImJvcmRl cjogMXB4IHNvbGlkIGJsYWNrOyB2ZXJ0aWNhbC1hbGlnbjogdG9wOwogICAgICAgICAgICBwYWRk aW5nOiAzcHg7ICI+Q0NJLTAwMTEyOTwvdGQ+CiAgICAgICAgICA8dGQgc3R5bGU9ImJvcmRlcjog MXB4IHNvbGlkIGJsYWNrOyB2ZXJ0aWNhbC1hbGlnbjogdG9wOwogICAgICAgICAgICBwYWRkaW5n OiAzcHg7ICI+VGhlIG9wZXJhdGluZyBzeXN0ZW0gbXVzdCBtYWludGFpbiB0aGUKICAgICAgICAg ICAgaW50ZWdyaXR5IG9mIGluZm9ybWF0aW9uIGR1cmluZyBhZ2dyZWdhdGlvbiwgcGFja2FnaW5n LCBhbmQKICAgICAgICAgICAgdHJhbnNmb3JtYXRpb24gaW4gcHJlcGFyYXRpb24gZm9yIHRyYW5z bWlzc2lvbi48L3RkPgogICAgICAgICAgPHRkIHN0eWxlPSJib3JkZXI6IDFweCBzb2xpZCBibGFj azsgdmVydGljYWwtYWxpZ246IHRvcDsKICAgICAgICAgICAgcGFkZGluZzogM3B4OyAiPkVuc3Vy aW5nIHRoZSBjb25maWRlbnRpYWxpdHkgb2YgdHJhbnNtaXR0ZWQKICAgICAgICAgICAgaW5mb3Jt YXRpb24gcmVxdWlyZXMgdGhlIG9wZXJhdGluZyBzeXN0ZW0gdGFrZSBtZWFzdXJlcyBpbgogICAg ICAgICAgICBwcmVwYXJpbmcgaW5mb3JtYXRpb24gZm9yIHRyYW5zbWlzc2lvbi4gVGhpcyBjYW4g YmUKICAgICAgICAgICAgYWNjb21wbGlzaGVkIHZpYSBhY2Nlc3MgY29udHJvbCA8dT48Yj5vciBl bmNyeXB0aW9uLjwvYj48L3U+PC90ZD4KICAgICAgICA8L3RyPgogICAgICA8L3Rib2R5PgogICAg PC90YWJsZT4KICAgIDxicj4KICAgIEdpdmVuIHRoYXQgZW5jcnlwdGlvbiBpcyBhbiBhY2NlcHRl ZCBtZXRob2QgZm9yIHRoaXMsIEFjay48YnI+CiAgPC9ib2R5Pgo8L2h0bWw+Cg== --===============2106115332199954661==--