1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
|
<?xml version="1.0" encoding="UTF-8"?>
<Benchmark xmlns="http://checklists.nist.gov/xccdf/1.2" id="xccdf_moc.elpmaxe.www_benchmark_test">
<status>incomplete</status>
<title>Security Benchmark</title>
<description xml:lang="en-US">A sample benchmark</description>
<version>1.0</version>
<model system="urn:xccdf:scoring:default"/>
<model system="urn:xccdf:scoring:flat"/>
<model system="urn:xccdf:scoring:flat-unweighted"/>
<model system="urn:xccdf:scoring:absolute"/>
<Profile id="xccdf_moc.elpmaxe.www_profile_standard">
<title xml:lang="en-US">Standard System Security Profile</title>
<description xml:lang="en-US">This profile contains rules to ensure standard security baseline of your system.</description>
<select idref="xccdf_moc.elpmaxe.www_rule_1" selected="true"/>
<select idref="xccdf_moc.elpmaxe.www_rule_2" selected="true"/>
</Profile>
<Rule selected="false" id="xccdf_moc.elpmaxe.www_rule_1">
<title>Passing rule</title>
<fix id="bash_fix_for_passing_rule" system="urn:xccdf:fix:script:sh">echo this_is_ok</fix>
<fix id="ansible_fix_for_passing_rule" system="urn:xccdf:fix:script:ansible">- name: ensure everything passes
shell: /bin/true</fix>
<check system="http://oval.mitre.org/XMLSchema/oval-definitions-5">
<check-content-ref href="oval/pass/oval.xml" name="oval:moc.elpmaxe.www:def:1"/>
</check>
</Rule>
<Rule selected="false" id="xccdf_moc.elpmaxe.www_rule_2">
<title>Failing rule</title>
<fix id="fix_for_failing_rule" system="urn:xccdf:fix:script:sh">echo fix_me_please</fix>
<fix id="ansible_fix_for_failing_rule" system="urn:xccdf:fix:script:ansible">- name: correct the failing case
shell: /bin/false</fix>
<check system="http://oval.mitre.org/XMLSchema/oval-definitions-5">
<check-content-ref href="oval/fail/oval.xml" name="oval:moc.elpmaxe.www:def:1"/>
</check>
</Rule>
</Benchmark>
|
