Bug 2168066

Summary: The stig rule xccdf_org.ssgproject.content_rule_sudo_require_reauthentication fails due to space in in the "timestamp_timeout" value [rhel-8.7.0.z]
Product: Red Hat Enterprise Linux 8 Reporter: RHEL Program Management Team <pgm-rhel-tools>
Component: scap-security-guideAssignee: Vojtech Polasek <vpolasek>
Status: CLOSED ERRATA QA Contact: Jiri Jaburek <jjaburek>
Severity: medium Docs Contact: Jan Fiala <jafiala>
Priority: unspecified    
Version: 8.7CC: ggasparb, jafiala, jjaburek, mhaicman, mlysonek, wsato
Target Milestone: rcKeywords: AutoVerified, Triaged, ZStream
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: scap-security-guide-0.1.66-1.el8_7 Doc Type: Bug Fix
Doc Text:
.The `sudo_require_reauthentication` SCAP Security Guide rule accepts correct spacing in `sudoers` Previously, a bug in the checking of the `xccdf_org.ssgproject.content_rule_sudo_require_reauthentication` rule caused it to require specific spacing between the `timestamp_timeout` key and its value in the `/etc/sudoers` file and the `/etc/sudoers.d` directory. Consequently, valid and compliant syntax caused the rule to fail incorrectly. With this update, the check for `xccdf_org.ssgproject.content_rule_sudo_require_reauthentication` has been updated to accept blank spaces around the equal sign. As a result, the rule accepts correct and compliant definitions of `timestamp_timeout` with any of the following spacing formats: * `Defaults timestamp_timeout = 5` * `Defaults timestamp_timeout= 5` * `Defaults timestamp_timeout =5` * `Defaults timestamp_timeout=5`
 Story Points: ---
Clone Of: 2152208 Environment:
Last Closed: 2023-02-21 07:15:08 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2152208    
Bug Blocks:    

Comment 14 errata-xmlrpc 2023-02-21 07:15:08 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (scap-security-guide bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2023:0829