2155793 – Update ANSSI BP-028 in RHEL7 to v2.0

Bug 2155793 - Update ANSSI BP-028 in RHEL7 to v2.0

Summary: Update ANSSI BP-028 in RHEL7 to v2.0

Keywords:
Status:	VERIFIED
Alias:	None
Product:	Red Hat Enterprise Linux 7
Classification:	Red Hat
Component:	scap-security-guide
Sub Component:
Version:	7.9
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	rc
Target Release:	---
Assignee:	Vojtech Polasek
QA Contact:	Milan Lysonek
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2022-12-22 11:59 UTC by Watson Yuuma Sato
Modified:	2023-08-14 07:50 UTC (History)
CC List:	5 users (show)
Fixed In Version:	scap-security-guide-0.1.69-1.el7_9
Doc Type:	Enhancement
Doc Text:	.ANSSI-BP-028 security profiles updated to version 2.0 The following ANSSI-BP-028 profiles in the scap-security-guide were updated to be aligned with version 2.0: - ANSSI-BP-028 (minimal) - ANSSI-BP-028 (intermediary) - ANSSI-BP-028 (enhanced) - ANSSI-BP-028 (high)
Clone Of:
Environment:
Last Closed:
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	RHELPLAN-143086	0	None	None	None	2022-12-22 12:12:23 UTC

Description Watson Yuuma Sato 2022-12-22 11:59:00 UTC

Description of problem:

Version 2.0 of the policy ANSSI BP-028 is available.
RHEL7's ANSSI BP-028 profiles are aligned with version 1.2.

Expected results:
ANSSI profiles in RHEL7 are aligned to the new version of the policy

Additional info:
- https://www.ssi.gouv.fr/guide/recommandations-de-securite-relatives-a-un-systeme-gnulinux/
- Note that the ANSSI profiles in RHEL7 still use the old nomenclature: NT-28

Comment 4 Jan Černý 2023-06-14 15:27:19 UTC

https://github.com/ComplianceAsCode/content/pull/10334/ has been merged upstream

Note You need to log in before you can comment on or make changes to this bug.