Description of problem: Ansible remediations of the following rules don't work properly: dconf_gnome_screensaver_idle_activation_enabled dconf_gnome_screensaver_idle_delay dconf_gnome_disable_automount_open Most likely the Ansible remediations are not aligned with the respective OVAL checks. Version-Release number of selected component (if applicable): scap-security-guide-0.1.54-6.el7_9 How reproducible: always Steps to Reproduce: 1. Generate Ansible fix for the 3 mentioned rules. 2. Apply generated Ansible playbook(s). 3. Evaluate these rules using openscap. Actual results: The rules are failing after the evaluation with openscap. Expected results: The rules are passing after the evaluation with openscap. Additional info:
The following rules should be fixed by these PRs dconf_gnome_screensaver_idle_activation_enabled https://github.com/ComplianceAsCode/content/pull/7047 dconf_gnome_screensaver_idle_delay https://github.com/ComplianceAsCode/content/pull/6770
The rule dconf_gnome_disable_automount_open is fixed by: https://github.com/ComplianceAsCode/content/pull/7150
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (scap-security-guide bug fix and enhancement update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2021:4781
Thanks Vojtech for the comment. I adjusted the doc text slightly, but I don't have any more information I could provide. Is there any other info missing?