The HTML report seems ok, not info there on the issues
** Attachment added: "usg-report-20240311.1551.html"
https://bugs.launchpad.net/ubuntu/+source/openscap/+bug/2056775/+attachment/5754839/+files/usg-report-20240311.1551.html
** Description changed:
Hi,
We had a lot of issue when hardening with CIS level 1 server on
Openstack hyperconverged node (with ceph).
- So I tried to the audit on clean Jammy. I also received a lot of errors
- like
+ So I tried to do the audit on clean Jammy. I also received a lot of
+ errors (but this time not fatal) like
root@cis-test:~# usg audit --tailoring-file /root/cis-l1.xml
USG will execute the following command for auditing: oscap xccdf eval
--profile xccdf_org.ssgproject.content_profile_cis_level1_server_customized
--cpe
/usr/share/ubuntu-scap-security-guides/current/benchmarks/ssg-ubuntu2204-cpe-dictionary.xml
--results /var/lib/usg/usg-results-20240311.1551.xml --tailoring-file
/root/cis-l1.xml
/usr/share/ubuntu-scap-security-guides/current/benchmarks/ssg-ubuntu2204-xccdf.xml
...
Title Enable Randomized Layout of Virtual Address Space
Rulexccdf_org.ssgproject.content_rule_sysctl_kernel_randomize_va_space
W: oscap: Obtrusive data from probe!
W: oscap: Obtrusive data from probe!
W: oscap: Obtrusive data from probe!
Result fail
...
Title Ensure all users last password change date is in the past
Rule
xccdf_org.ssgproject.content_rule_accounts_password_last_change_is_in_past
W: oscap: Entity name 'value' from state (id:
'oval:ssg-state_accounts_password_last_change_time_diff:ste:1') not found in
item (id: '1247279').
Result pass
...
This is on clean Jammy VM spawned by lxd
$ lxc launch ubuntu:22.04 cis-test --vm
I attached the tailoring file.
-
- Could you help to figure out what is wrong with tool, why I cannot use it ?
+ Could you help to figure out what is wrong with tool, why I cannot use
+ it ?
** Description changed:
Hi,
We had a lot of issue when hardening with CIS level 1 server on
Openstack hyperconverged node (with ceph).
So I tried to do the audit on clean Jammy. I also received a lot of
errors (but this time not fatal) like
root@cis-test:~# usg audit --tailoring-file /root/cis-l1.xml
USG will execute the following command for auditing: oscap xccdf eval
--profile xccdf_org.ssgproject.content_profile_cis_level1_server_customized
--cpe
/usr/share/ubuntu-scap-security-guides/current/benchmarks/ssg-ubuntu2204-cpe-dictionary.xml
--results /var/lib/usg/usg-results-20240311.1551.xml --tailoring-file
/root/cis-l1.xml
/usr/share/ubuntu-scap-security-guides/current/benchmarks/ssg-ubuntu2204-xccdf.xml
...
Title Enable Randomized Layout of Virtual Address Space
Rulexccdf_org.ssgproject.content_rule_sysctl_kernel_randomize_va_space
W: oscap: Obtrusive data from probe!
W: oscap: Obtrusive data from probe!
W: oscap: Obtrusive data from probe!
Result fail
...
Title Ensure all users last password change date is in the past
Rule
xccdf_org.ssgproject.content_rule_accounts_password_last_change_is_in_past
W: oscap: Entity name 'value' from state (id:
'oval:ssg-state_accounts_password_last_change_time_diff:ste:1') not found in
item (id: '1247279').
Result pass
...
This is on clean Jammy VM spawned by lxd
$ lxc launch ubuntu:22.04 cis-test --vm
I attached the tailoring file.
- Could you help to figure out what is wrong with tool, why I cannot use
- it ?
+ Could you help to figure out what is wrong with tool, why it fails in
multiple place ?
+ I am going to fill another bug with the fatal error.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2056775
Title:
openscap fails in multiple tests when auditing on fresh Jammy
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openscap/+bug/2056775/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs