From shawn at redhat.com Thu Aug 20 11:31:30 2015 Content-Type: multipart/mixed; boundary="===============7406970493418206687==" MIME-Version: 1.0 From: Shawn Wells To: scap-security-guide at lists.fedorahosted.org Subject: Re: [PATCH 19/21] Mapped CCI-001132 to network_ssl. Date: Tue, 03 Jul 2012 20:00:27 -0400 Message-ID: <4FF3879B.7060502@redhat.com> In-Reply-To: 1341355961-5773-20-git-send-email-wsantos@redhat.com --===============7406970493418206687== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable On 7/3/12 6:52 PM, Willy Santos wrote: > CCI-001132 requires maintaining integrity of information during aggregati= on, packaging and transformation in preparation for transmission. This can = be accomplished via SSL/TLS. > > Signed-off-by: Willy Santos > --- > rhel6/src/input/system/network/ssl.xml | 2 +- > 1 files changed, 1 insertions(+), 1 deletions(-) > > diff --git a/rhel6/src/input/system/network/ssl.xml b/rhel6/src/input/sys= tem/network/ssl.xml > index 9f59483..50f5b0b 100644 > --- a/rhel6/src/input/system/network/ssl.xml > +++ b/rhel6/src/input/system/network/ssl.xml > @@ -34,7 +34,7 @@ can be appropriate. The major steps in this process are: >
  • Enable client support by distributing the CA=E2=80=99s certificate<= /li> > > > - > + > = > > Create a CA to Sign Certificates SRG-OS-000162 CCI-001132 The operating system must maintain the = confidentiality of information during aggregation, packaging, and = transformation in preparation for transmission. Confidentiality of the = data must be maintained to ensure unauthorized users or processes do not = have access to it. This can be accomplished via access control = mechanisms _*or encryption.*_ Given that encryption is an accepted method for this, Ack. --===============7406970493418206687== Content-Type: text/html MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="attachment.html" PGh0bWw+CiAgPGhlYWQ+CiAgICA8bWV0YSBjb250ZW50PSJ0ZXh0L2h0bWw7IGNoYXJzZXQ9VVRG LTgiIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZSI+CiAgPC9oZWFkPgogIDxib2R5IGJnY29sb3I9 IiNGRkZGRkYiIHRleHQ9IiMwMDAwMDAiPgogICAgPGRpdiBjbGFzcz0ibW96LWNpdGUtcHJlZml4 Ij5PbiA3LzMvMTIgNjo1MiBQTSwgV2lsbHkgU2FudG9zIHdyb3RlOjxicj4KICAgIDwvZGl2Pgog ICAgPGJsb2NrcXVvdGUKICAgICAgY2l0ZT0ibWlkOjEzNDEzNTU5NjEtNTc3My0yMC1naXQtc2Vu ZC1lbWFpbC13c2FudG9zQHJlZGhhdC5jb20iCiAgICAgIHR5cGU9ImNpdGUiPgogICAgICA8cHJl IHdyYXA9IiI+Q0NJLTAwMTEzMiByZXF1aXJlcyBtYWludGFpbmluZyBpbnRlZ3JpdHkgb2YgaW5m b3JtYXRpb24gZHVyaW5nIGFnZ3JlZ2F0aW9uLCBwYWNrYWdpbmcgYW5kIHRyYW5zZm9ybWF0aW9u IGluIHByZXBhcmF0aW9uIGZvciB0cmFuc21pc3Npb24uIFRoaXMgY2FuIGJlIGFjY29tcGxpc2hl ZCB2aWEgU1NML1RMUy4KClNpZ25lZC1vZmYtYnk6IFdpbGx5IFNhbnRvcyA8YSBjbGFzcz0ibW96 LXR4dC1saW5rLXJmYzIzOTZFIiBocmVmPSJtYWlsdG86d3NhbnRvc0ByZWRoYXQuY29tIj4mbHQ7 d3NhbnRvc0ByZWRoYXQuY29tJmd0OzwvYT4KLS0tCiByaGVsNi9zcmMvaW5wdXQvc3lzdGVtL25l dHdvcmsvc3NsLnhtbCB8ICAgIDIgKy0KIDEgZmlsZXMgY2hhbmdlZCwgMSBpbnNlcnRpb25zKCsp LCAxIGRlbGV0aW9ucygtKQoKZGlmZiAtLWdpdCBhL3JoZWw2L3NyYy9pbnB1dC9zeXN0ZW0vbmV0 d29yay9zc2wueG1sIGIvcmhlbDYvc3JjL2lucHV0L3N5c3RlbS9uZXR3b3JrL3NzbC54bWwKaW5k ZXggOWY1OTQ4My4uNTBmNWIwYiAxMDA2NDQKLS0tIGEvcmhlbDYvc3JjL2lucHV0L3N5c3RlbS9u ZXR3b3JrL3NzbC54bWwKKysrIGIvcmhlbDYvc3JjL2lucHV0L3N5c3RlbS9uZXR3b3JrL3NzbC54 bWwKQEAgLTM0LDcgKzM0LDcgQEAgY2FuIGJlIGFwcHJvcHJpYXRlLiBUaGUgbWFqb3Igc3RlcHMg aW4gdGhpcyBwcm9jZXNzIGFyZToKICZsdDtsaSZndDtFbmFibGUgY2xpZW50IHN1cHBvcnQgYnkg ZGlzdHJpYnV0aW5nIHRoZSBDQeKAmXMgY2VydGlmaWNhdGUmbHQ7L2xpJmd0OwogJmx0Oy9vbCZn dDsKICZsdDsvZGVzY3JpcHRpb24mZ3Q7Ci0mbHQ7cmVmIGRpc2E9IjExNDEsMTE0OCwxMTMwLDEx MzEsMTEyNywxMTI4LDExMzUsMTEyOSIgLyZndDsKKyZsdDtyZWYgZGlzYT0iMTE0MSwxMTQ4LDEx MzAsMTEzMSwxMTI3LDExMjgsMTEzNSwxMTI5LDExMzIiIC8mZ3Q7CiAKICZsdDtSdWxlIGlkPSJu ZXR3b3JrX3NzbF9jcmVhdGVfY2EiJmd0OwogJmx0O3RpdGxlJmd0O0NyZWF0ZSBhIENBIHRvIFNp Z24gQ2VydGlmaWNhdGVzJmx0Oy90aXRsZSZndDsKPC9wcmU+CiAgICA8L2Jsb2NrcXVvdGU+CiAg ICA8bWV0YSBjaGFyc2V0PSJ1dGYtOCI+CiAgICA8dGFibGUgc3R5bGU9ImJvcmRlci1jb2xsYXBz ZTogY29sbGFwc2U7IGJvcmRlcjogMXB4IHNvbGlkIGJsYWNrOwogICAgICB2ZXJ0aWNhbC1hbGln bjogdG9wOyBwYWRkaW5nOiAzcHg7IGZvbnQtZmFtaWx5OiBUaW1lczsKICAgICAgbGV0dGVyLXNw YWNpbmc6IG5vcm1hbDsgb3JwaGFuczogMjsgdGV4dC1pbmRlbnQ6IDBweDsKICAgICAgdGV4dC10 cmFuc2Zvcm06IG5vbmU7IHdpZG93czogMjsgd29yZC1zcGFjaW5nOiAwcHg7CiAgICAgIC13ZWJr aXQtdGV4dC1zaXplLWFkanVzdDogYXV0bzsgLXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDogMHB4 OyAiPgogICAgICA8dGJvZHk+CiAgICAgICAgPHRyPgogICAgICAgICAgPHRkIHN0eWxlPSJib3Jk ZXI6IDFweCBzb2xpZCBibGFjazsgdmVydGljYWwtYWxpZ246IHRvcDsKICAgICAgICAgICAgcGFk ZGluZzogM3B4OyAiPlNSRy1PUy0wMDAxNjI8L3RkPgogICAgICAgICAgPHRkIHN0eWxlPSJib3Jk ZXI6IDFweCBzb2xpZCBibGFjazsgdmVydGljYWwtYWxpZ246IHRvcDsKICAgICAgICAgICAgcGFk ZGluZzogM3B4OyAiPkNDSS0wMDExMzI8L3RkPgogICAgICAgICAgPHRkIHN0eWxlPSJib3JkZXI6 IDFweCBzb2xpZCBibGFjazsgdmVydGljYWwtYWxpZ246IHRvcDsKICAgICAgICAgICAgcGFkZGlu ZzogM3B4OyAiPlRoZSBvcGVyYXRpbmcgc3lzdGVtIG11c3QgbWFpbnRhaW4gdGhlCiAgICAgICAg ICAgIGNvbmZpZGVudGlhbGl0eSBvZiBpbmZvcm1hdGlvbiBkdXJpbmcgYWdncmVnYXRpb24sCiAg ICAgICAgICAgIHBhY2thZ2luZywgYW5kIHRyYW5zZm9ybWF0aW9uIGluIHByZXBhcmF0aW9uIGZv cgogICAgICAgICAgICB0cmFuc21pc3Npb24uPC90ZD4KICAgICAgICAgIDx0ZCBzdHlsZT0iYm9y ZGVyOiAxcHggc29saWQgYmxhY2s7IHZlcnRpY2FsLWFsaWduOiB0b3A7CiAgICAgICAgICAgIHBh ZGRpbmc6IDNweDsgIj5Db25maWRlbnRpYWxpdHkgb2YgdGhlIGRhdGEgbXVzdCBiZQogICAgICAg ICAgICBtYWludGFpbmVkIHRvIGVuc3VyZSB1bmF1dGhvcml6ZWQgdXNlcnMgb3IgcHJvY2Vzc2Vz IGRvIG5vdAogICAgICAgICAgICBoYXZlIGFjY2VzcyB0byBpdC4gVGhpcyBjYW4gYmUgYWNjb21w bGlzaGVkIHZpYSBhY2Nlc3MKICAgICAgICAgICAgY29udHJvbCBtZWNoYW5pc21zIDx1PjxiPm9y IGVuY3J5cHRpb24uPC9iPjwvdT48L3RkPgogICAgICAgIDwvdHI+CiAgICAgIDwvdGJvZHk+CiAg ICA8L3RhYmxlPgogICAgPGJyPgogICAgR2l2ZW4gdGhhdCBlbmNyeXB0aW9uIGlzIGFuIGFjY2Vw dGVkIG1ldGhvZCBmb3IgdGhpcywgQWNrLjxicj4KICA8L2JvZHk+CjwvaHRtbD4K --===============7406970493418206687==--