Bug 1569425
Summary: | False positive rule violation when bootloader password is set for C2S for Red Hat Enterprise Linux 7 profile | ||||||
---|---|---|---|---|---|---|---|
Product: | Red Hat Enterprise Linux 7 | Reporter: | Sagar Lutade <slutade> | ||||
Component: | scap-security-guide | Assignee: | Watson Yuuma Sato <wsato> | ||||
Status: | CLOSED NOTABUG | QA Contact: | BaseOS QE Security Team <qe-baseos-security> | ||||
Severity: | medium | Docs Contact: | |||||
Priority: | unspecified | ||||||
Version: | 7.0 | CC: | jcerny, mhaicman, mhulan, mpreisle, openscap-maint, oprazak, vijsingh, wsato | ||||
Target Milestone: | pre-dev-freeze | ||||||
Target Release: | --- | ||||||
Hardware: | x86_64 | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | If docs needed, set a value | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2018-05-18 11:45:28 UTC | Type: | Bug | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Attachments: |
|
Description
Sagar Lutade
2018-04-19 09:22:12 UTC
Created attachment 1423971 [details]
error_screenshot
Thank you for reporting this, however this is not a problem with Sat6 but rather how openscap evaluates the given rule. Therefore I will move this to a different component. *** Bug 1576874 has been marked as a duplicate of this bug. *** Hello, I see in SOS report that "superusers" in /boot/grub2/grub.cf is set to "root", and although Rule "bootloader_password" recommends to not use common names as superuser (i.e. root, admin, administrator), it is actually required that they are not root, nor admin nor administrator. Please, try to set a different superuser account name, and scan again. I'm closing this, if the problem persists, please reopen. |