Bug 2050232

Summary: Rule password_set_min|max_life_existing failing.
Product: Red Hat Enterprise Linux 9 Reporter: Achilleas Yfantis <ayfantis>
Component: openscapAssignee: Jan Černý <jcerny>
Status: CLOSED WONTFIX QA Contact: BaseOS QE Security Team <qe-baseos-security>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 9.0CC: ekolesni, ggasparb, maburgha, mhaicman, mmarhefk, openscap-maint, vpolasek
Target Milestone: rcKeywords: Triaged
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: No Doc Update
Doc Text:
Story Points: ---
Clone Of:
: 2059300 (view as bug list) Environment:
Last Closed: 2023-08-03 07:28:35 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 2059300    

Description Achilleas Yfantis 2022-02-03 14:02:23 UTC 
Description of problem:

Rule: password_set_min|max_life_existing fails during regression when testing: stig profile remediations


Version-Release number of selected component (if applicable):

openscap: 1:1.3.5-13.el9
scap-security guide: 0.1.61-1.git935a955.el9

How reproducible:

every time


Steps to Reproduce:
1.Have a rhel-9 machine
2.Run the stig profile

Actual results:

rules failing

Expected results:

rules passing


Additional info:
This issue has been noted again in this issue: https://github.com/ComplianceAsCode/content/pull/8107
After a discussion its related with the order of the rule execution.
Issue has also been reported on github here: https://github.com/ComplianceAsCode/content/issues/8144
Comment 7 RHEL Program Management 2023-08-03 07:28:35 UTC 
After evaluating this issue, there are no plans to address it further or fix it in an upcoming release.  Therefore, it is being closed.  If plans change such that this issue will be fixed in an upcoming release, then the bug can be reopened.