Bug 2155793 - Update ANSSI BP-028 in RHEL7 to v2.0
Summary: Update ANSSI BP-028 in RHEL7 to v2.0
Keywords:
Status: VERIFIED
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: scap-security-guide
Version: 7.9
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: rc
: ---
Assignee: Vojtech Polasek
QA Contact: Milan Lysonek
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2022-12-22 11:59 UTC by Watson Yuuma Sato
Modified: 2023-08-14 07:50 UTC (History)
5 users (show)

Fixed In Version: scap-security-guide-0.1.69-1.el7_9
Doc Type: Enhancement
Doc Text:
.ANSSI-BP-028 security profiles updated to version 2.0 The following ANSSI-BP-028 profiles in the scap-security-guide were updated to be aligned with version 2.0: - ANSSI-BP-028 (minimal) - ANSSI-BP-028 (intermediary) - ANSSI-BP-028 (enhanced) - ANSSI-BP-028 (high)
Clone Of:
Environment:
Last Closed:
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker RHELPLAN-143086 0 None None None 2022-12-22 12:12:23 UTC

Description Watson Yuuma Sato 2022-12-22 11:59:00 UTC
Description of problem:

Version 2.0 of the policy ANSSI BP-028 is available.
RHEL7's ANSSI BP-028 profiles are aligned with version 1.2.

Expected results:
ANSSI profiles in RHEL7 are aligned to the new version of the policy

Additional info:
- https://www.ssi.gouv.fr/guide/recommandations-de-securite-relatives-a-un-systeme-gnulinux/
- Note that the ANSSI profiles in RHEL7 still use the old nomenclature: NT-28

Comment 4 Jan Černý 2023-06-14 15:27:19 UTC
https://github.com/ComplianceAsCode/content/pull/10334/ has been merged upstream


Note You need to log in before you can comment on or make changes to this bug.