Back to bug 2228443
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Red Hat Bugzilla | 2023-08-02 12:10:06 UTC | Pool ID | sst_security_compliance_rhel_8 | |
| Red Hat One Jira (issues.redhat.com) | 2023-08-02 12:22:16 UTC | Link ID | Red Hat Issue Tracker RHELPLAN-164139 | |
| Milan Lysonek | 2023-08-02 14:00:30 UTC | Doc Text | Cause: Default permissions of uefi files were not accepted and where not possible to be changed via chmod when /boot/efi was using a vfat file system. Consequence: The file_permissions_efi_user_cfg rule was failing and the remediation was ineffective. Fix: Allow the "0700" permission for files in /boot/efi instead of only "0600". "0700" is the default permission and is accepted by CIS, so the assessment and remediation are not better aligned to CIS. Result: The file_permissions_efi_user_cfg rule should no longer fail if /boot/efi is mounted using the default permissions. | |
| Doc Type | If docs needed, set a value | Bug Fix | ||
| Vojtech Polasek | 2023-08-04 07:23:29 UTC | Status | NEW | POST |
| Matěj Týč | 2023-08-11 12:29:45 UTC | CC | matyc | |
| Status | POST | MODIFIED |
Back to bug 2228443