On Fri, Sep 30, 2016 at 2:19 AM, <[email protected]> wrote: > Hello, > > I am trying to test how new rules can be added to SUSE. I could not find > any documentation so this is what I have done so far: > > 1) Added a new file input/xccdf/system/permissions/files.xml with a > couple of rules to check file ownership and permissions of the passwd file. > These are copies on the same in RHEL/6 folder. > 2) Updated the guide.xslt file for including this group. > 3) Added "<platform>multi_platform_sle</platform>" to the appropriate > OVAL checks in shared/oval. > 4) Added "# platform = multi_platform_sle" to the appropriate fix scripts > in /shared/templates/static/bash. >
Make sure that fix scripts match the XCCDF content you added in xccdf/system/permissions/files.xml > 5) Modified Make to remove CentOS related operations from derivatives, > guide and validate because they were breaking and are possibly not relevant > to SUSE anyhow. > > With this I am able to complete the build without errors and generate the > output files. [Make fails for the latest sources fetched from the git repo] > If possible, it needs to work with the latest master, but in this case since SUSE is not incorporated into the build process, it might be okay to just submit a PR. > > I would like to start contributing the rules into SUSE directory. Would > the above process be alright? Also, I do not know what needs to be done for > the reference and ident tags in XCCDF. Please advise. > Leave references alone for now. Remove any ident tags or change them to TBD and change any stigid tags to TBD. > > Thank you. > > Regards, > Gautam. > _______________________________________________ > scap-security-guide mailing list -- scap-security-guide@lists. > fedorahosted.org > To unsubscribe send an email to scap-security-guide-leave@ > lists.fedorahosted.org >
_______________________________________________ scap-security-guide mailing list -- [email protected] To unsubscribe send an email to [email protected]
