--- a/RHEL6/input/system/permissions/files.xml +++ b/RHEL6/input/system/permissions/files.xml @@ -118,7 +118,7 @@ correctly.</description> <rationale>The /etc/gshadow file contains group password hashes. Protection of this file is critical for system security.</rationale> <ident cce="3932-1" /> -<oval id="file_owner_etc_shadow" /> +<oval id="file_permissions_etc_gshadow" /> <ref nist="AC-3, CM-6"/> </Rule>
On 8/31/12 2:49 PM, Kenneth Stailey wrote:
--- a/RHEL6/input/system/permissions/files.xml +++ b/RHEL6/input/system/permissions/files.xml @@ -118,7 +118,7 @@ correctly.</description> <rationale>The /etc/gshadow file contains group password hashes. Protection of this file is critical for system security.</rationale>
<ident cce="3932-1" /> -<oval id="file_owner_etc_shadow" /> +<oval id="file_permissions_etc_gshadow" /> <ref nist="AC-3, CM-6"/> </Rule> __________
Excellent find, thanks for the patch!
Ack.
On 8/31/12 3:13 PM, Shawn Wells wrote:
On 8/31/12 2:49 PM, Kenneth Stailey wrote:
--- a/RHEL6/input/system/permissions/files.xml +++ b/RHEL6/input/system/permissions/files.xml @@ -118,7 +118,7 @@ correctly.</description> <rationale>The /etc/gshadow file contains group password hashes. Protection of this file is critical for system security.</rationale>
<ident cce="3932-1" /> -<oval id="file_owner_etc_shadow" /> +<oval id="file_permissions_etc_gshadow" /> <ref nist="AC-3, CM-6"/> </Rule> __________
Excellent find, thanks for the patch!
Ack.
Pushed on behalf of Kenneth
scap-security-guide@lists.fedorahosted.org
-
Kenneth Stailey -
Shawn Wells