CCI-000416 requires the use of automated mechanisms, at organization-defined frequency, to detect the addition of unauthorized components into the OS, which is met by aide_periodic_cron_checking.
Signed-off-by: Willy Santos <[email protected]> --- rhel6/src/input/system/software/integrity.xml | 1 + 1 files changed, 1 insertions(+), 0 deletions(-) diff --git a/rhel6/src/input/system/software/integrity.xml b/rhel6/src/input/system/software/integrity.xml index dea8b37..157152e 100644 --- a/rhel6/src/input/system/software/integrity.xml +++ b/rhel6/src/input/system/software/integrity.xml @@ -93,6 +93,7 @@ By default, AIDE does not install itself for periodic execution. Periodically running AIDE may reveal unexpected changes in installed files. </rationale> <ref nist="CM-6, SC-28, SI-7" /> +<ident cci="CCI-000416" /> </Rule> <Rule id="aide_verify_integrity_manually"> -- 1.7.7.6 _______________________________________________ scap-security-guide mailing list [email protected] https://fedorahosted.org/mailman/listinfo/scap-security-guide
