Bug 2152208
Summary: | The stig rule xccdf_org.ssgproject.content_rule_sudo_require_reauthentication fails due to space in in the "timestamp_timeout" value | |||
---|---|---|---|---|
Product: | Red Hat Enterprise Linux 8 | Reporter: | Ameya Patil <amepatil> | |
Component: | scap-security-guide | Assignee: | Vojtech Polasek <vpolasek> | |
Status: | CLOSED ERRATA | QA Contact: | Jiri Jaburek <jjaburek> | |
Severity: | medium | Docs Contact: | Jan Fiala <jafiala> | |
Priority: | medium | |||
Version: | 8.7 | CC: | ggasparb, jafiala, jjaburek, mhaicman, mlysonek, peter.vreman, rmetrich, vpolasek, wsato | |
Target Milestone: | rc | Keywords: | AutoVerified, Triaged, ZStream | |
Target Release: | --- | |||
Hardware: | All | |||
OS: | Linux | |||
Whiteboard: | ||||
Fixed In Version: | scap-security-guide-0.1.66-1.el8 | Doc Type: | Bug Fix | |
Doc Text: |
.The `sudo_require_reauthentication` SCAP Security Guide rule accepts correct spacing in `sudoers`
Previously, a bug in the checking of the `xccdf_org.ssgproject.content_rule_sudo_require_reauthentication` rule caused it to require specific spacing between the `timestamp_timeout` key and its value in the `/etc/sudoers` file and the `/etc/sudoers.d` directory. Consequently, valid and compliant syntax caused the rule to fail incorrectly. With this update, the check for `xccdf_org.ssgproject.content_rule_sudo_require_reauthentication` has been updated to accept blank spaces around the equal sign. As a result, the rule accepts correct and compliant definitions of `timestamp_timeout` with any of the following spacing formats:
* `Defaults timestamp_timeout = 5`
* `Defaults timestamp_timeout= 5`
* `Defaults timestamp_timeout =5`
* `Defaults timestamp_timeout=5`
|
Story Points: | --- | |
Clone Of: | ||||
: | 2168066 2168067 2168068 (view as bug list) | Environment: | ||
Last Closed: | 2023-05-16 08:39:27 UTC | Type: | Bug | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 2168066, 2168067, 2168068 |
Description
Ameya Patil
2022-12-09 18:41:29 UTC
Moving to post: https://github.com/ComplianceAsCode/content/pull/9923 Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (scap-security-guide bug fix and enhancement update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2023:2869 |