Open
Description
Description of problem:
The content is misaligned with an external (third party) content that targets the same policy - typically, this means that a system hardened by our content doesn't pass the scan by the external content.
Details:
This content is not aligned with content from DISA
The misalignment affects these profiles:
- RHEL 9 STIG/ RHEL8 STIG
The misalignment affects these rules:
- rootfiles_configured
This is the OVAL test that is failing:
<h4><span class="label label-primary">The home directories of non-system users have mode 0740 or less permissive.</span>
<span class="label label-default">oval:mil.disa.stig.unix:tst:23032500</span>
<span class="label label-danger">false</span></h4><h5>No items have been found conforming to the following objects:</h5><h5>Object <strong><abbr title="local initialization files of non-system users.">oval:mil.disa.stig.unix:obj:23032500</abbr></strong> of type
<strong>file_object</strong></h5>
Path | Filename
-- | --
/ | ^\.[^\s\.]+
Outcome:
- This project's content can be improved:
- Check needs to be improved.
- Remediation needs to be improved.
- The external content's check is faulty - the other party needs to be notified, they have work to do.
SCAP Security Guide Version:
External Content's Version:
content from f5f543d