[PATCH 0/3] Couple of stabilization fixes for issues reported by verify-references & verify-input-sanity scripts
From 03e874118dcb54f48f2a92609d091d6650ca671a Mon Sep 17 00:00:00 2001 From: Jan Lieskovsky jlieskov@redhat.com Date: Thu, 22 May 2014 18:59:06 +0200 Subject: [PATCH 0/3] Couple of stabilization fixes for issues reported by verify-references & verify-input-sanity scripts
This patchset provides couple of stabilization fixes for issues reported by verify-references & verify input sanity scripts. All three patches have been tested on RHEL-6 (& RHEL-7 where appropriate), the packages build & work properly.
Please review.
Thank you && Regards, Jan. -- Jan iankko Lieskovsky / Red Hat Security Technologies Team
Jan Lieskovsky (3): [RHEL/6, RHEL/7, shared] Fix "Invalid OVAL definition referenced by XCCDF Rule: install_vsftpd" utils/verify-references.py issue [RHEL/6] Fix "Invalid OVAL definition referenced by XCCDF Rule: root_path_no_dot" ../utils/verify-references.py warning message [RHEL/6] Fix couple of XML syntax errors in files: * src/input/profiles/nist-CL-IL-AL.xml * RHEL/6/input/auxiliary/nist_support.xml as reported by verify-input-sanity.py script (the other two files currently reported too are red herrings)
RHEL/6/input/auxiliary/nist_support.xml | 10 +- RHEL/6/input/checks/package_vsftpd_installed.xml | 1 + RHEL/6/input/checks/root_path_no_dot.xml | 18 +- .../input/checks/templates/packages_installed.csv | 1 + RHEL/6/input/profiles/ftp.xml | 2 +- RHEL/6/input/profiles/nist-CL-IL-AL.xml | 467 ++++++++++----------- RHEL/6/input/services/ftp.xml | 2 +- RHEL/7/input/checks/package_vsftpd_installed.xml | 1 + RHEL/7/input/services/ftp.xml | 2 +- shared/fixes/bash/package_vsftpd_installed.sh | 1 + shared/oval/package_vsftpd_installed.xml | 27 ++ 11 files changed, 280 insertions(+), 252 deletions(-) create mode 120000 RHEL/6/input/checks/package_vsftpd_installed.xml create mode 120000 RHEL/7/input/checks/package_vsftpd_installed.xml create mode 100644 shared/fixes/bash/package_vsftpd_installed.sh create mode 100644 shared/oval/package_vsftpd_installed.xml
These look great - ack to the set!
On Thu, May 22, 2014 at 1:16 PM, Jan Lieskovsky jlieskov@redhat.com wrote:
From 03e874118dcb54f48f2a92609d091d6650ca671a Mon Sep 17 00:00:00 2001 From: Jan Lieskovsky jlieskov@redhat.com Date: Thu, 22 May 2014 18:59:06 +0200 Subject: [PATCH 0/3] Couple of stabilization fixes for issues reported by verify-references & verify-input-sanity scripts
This patchset provides couple of stabilization fixes for issues reported by verify-references & verify input sanity scripts. All three patches have been tested on RHEL-6 (& RHEL-7 where appropriate), the packages build & work properly.
Please review.
Thank you && Regards, Jan.
Jan iankko Lieskovsky / Red Hat Security Technologies Team
Jan Lieskovsky (3): [RHEL/6, RHEL/7, shared] Fix "Invalid OVAL definition referenced by XCCDF Rule: install_vsftpd" utils/verify-references.py issue [RHEL/6] Fix "Invalid OVAL definition referenced by XCCDF Rule: root_path_no_dot" ../utils/verify-references.py warning message [RHEL/6] Fix couple of XML syntax errors in files: * src/input/profiles/nist-CL-IL-AL.xml * RHEL/6/input/auxiliary/nist_support.xml as reported by verify-input-sanity.py script (the other two files currently reported too are red herrings)
RHEL/6/input/auxiliary/nist_support.xml | 10 +- RHEL/6/input/checks/package_vsftpd_installed.xml | 1 + RHEL/6/input/checks/root_path_no_dot.xml | 18 +- .../input/checks/templates/packages_installed.csv | 1 + RHEL/6/input/profiles/ftp.xml | 2 +- RHEL/6/input/profiles/nist-CL-IL-AL.xml | 467 ++++++++++----------- RHEL/6/input/services/ftp.xml | 2 +- RHEL/7/input/checks/package_vsftpd_installed.xml | 1 + RHEL/7/input/services/ftp.xml | 2 +- shared/fixes/bash/package_vsftpd_installed.sh | 1 + shared/oval/package_vsftpd_installed.xml | 27 ++ 11 files changed, 280 insertions(+), 252 deletions(-) create mode 120000 RHEL/6/input/checks/package_vsftpd_installed.xml create mode 120000 RHEL/7/input/checks/package_vsftpd_installed.xml create mode 100644 shared/fixes/bash/package_vsftpd_installed.sh create mode 100644 shared/oval/package_vsftpd_installed.xml
-- 1.8.3.1
scap-security-guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
----- Original Message -----
From: "David Smith" dsmith@secure-innovations.net To: "SCAP Security Guide" scap-security-guide@lists.fedorahosted.org Sent: Thursday, May 22, 2014 7:31:08 PM Subject: Re: [PATCH 0/3] Couple of stabilization fixes for issues reported by verify-references & verify-input-sanity scripts
These look great - ack to the set!
Thank you, David. All three pushed to master.
Regards, Jan. -- Jan iankko Lieskovsky / Red Hat Security Technologies Team
P.S.: Should there be any further action / patch needed wrt to Shawn's review: https://lists.fedorahosted.org/pipermail/scap-security-guide/2014-May/005544... I will come with another patch.
On Thu, May 22, 2014 at 1:16 PM, Jan Lieskovsky < jlieskov@redhat.com > wrote:
From 03e874118dcb54f48f2a92609d091d 6650ca671a Mon Sep 17 00:00:00 2001 From: Jan Lieskovsky < jlieskov@redhat.com > Date: Thu, 22 May 2014 18:59:06 +0200 Subject: [PATCH 0/3] Couple of stabilization fixes for issues reported by verify-references & verify-input-sanity scripts
This patchset provides couple of stabilization fixes for issues reported by verify-references & verify input sanity scripts. All three patches have been tested on RHEL-6 (& RHEL-7 where appropriate), the packages build & work properly.
Please review.
Thank you && Regards, Jan.
Jan iankko Lieskovsky / Red Hat Security Technologies Team
Jan Lieskovsky (3): [RHEL/6, RHEL/7, shared] Fix "Invalid OVAL definition referenced by XCCDF Rule: install_vsftpd" utils/verify-references.py issue [RHEL/6] Fix "Invalid OVAL definition referenced by XCCDF Rule: root_path_no_dot" ../utils/verify-references.py warning message [RHEL/6] Fix couple of XML syntax errors in files: * src/input/profiles/nist-CL-IL- AL.xml * RHEL/6/input/auxiliary/nist_ support.xml as reported by verify-input-sanity.py script (the other two files currently reported too are red herrings)
RHEL/6/input/auxiliary/nist_ support.xml | 10 +- RHEL/6/input/checks/package_ vsftpd_installed.xml | 1 + RHEL/6/input/checks/root_path_ no_dot.xml | 18 +- .../input/checks/templates/ packages_installed.csv | 1 + RHEL/6/input/profiles/ftp.xml | 2 +- RHEL/6/input/profiles/nist-CL- IL-AL.xml | 467 ++++++++++----------- RHEL/6/input/services/ftp.xml | 2 +- RHEL/7/input/checks/package_ vsftpd_installed.xml | 1 + RHEL/7/input/services/ftp.xml | 2 +- shared/fixes/bash/package_ vsftpd_installed.sh | 1 + shared/oval/package_vsftpd_ installed.xml | 27 ++ 11 files changed, 280 insertions(+), 252 deletions(-) create mode 120000 RHEL/6/input/checks/package_ vsftpd_installed.xml create mode 120000 RHEL/7/input/checks/package_ vsftpd_installed.xml create mode 100644 shared/fixes/bash/package_ vsftpd_installed.sh create mode 100644 shared/oval/package_vsftpd_ installed.xml
-- 1.8.3.1
scap-security-guide mailing list scap-security-guide@lists. fedorahosted.org https://lists.fedorahosted. org/mailman/listinfo/scap- security-guide
-- David Smith Sr. Information Security Engineer Secure Innovations, LLC
scap-security-guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
scap-security-guide@lists.fedorahosted.org
-
David Smith -
Jan Lieskovsky