File: rule.yml

package info (click to toggle)
scap-security-guide 0.1.76-1
  • links: PTS, VCS
  • area: main
  • in suites: trixie
  • size: 110,644 kB
  • sloc: xml: 241,883; sh: 73,777; python: 32,527; makefile: 27
file content (52 lines) | stat: -rw-r--r-- 1,215 bytes parent folder | download
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
documentation_complete: true


title: 'Install sudo Package'

description: |-
    {{{ describe_package_install(package="sudo") }}}

rationale: |-
    <tt>sudo</tt> is a program designed to allow a system administrator to give
    limited root privileges to users and log root activity. The basic philosophy
    is to give as few privileges as possible but still allow system users to
    get their work done.

severity: medium

identifiers:
    cce@rhcos4: CCE-82523-2
    cce@rhel8: CCE-82214-8
    cce@rhel9: CCE-83523-1
    cce@rhel10: CCE-87100-4
    cce@sle12: CCE-91491-1
    cce@sle15: CCE-91183-4
    cce@slmicro5: CCE-94075-9

references:
    cis@sle12: 1.3.1
    cis@sle15: 1.3.1
    cis@slmicro5: 1.3.1
    cis@ubuntu2004: 1.3.1
    cis@ubuntu2204: 5.3.1
    disa: CCI-002235
    ism: 1382,1384,1386
    nist: CM-6(a)
    ospp: FMT_MOF_EXT.1
    srg: SRG-OS-000324-GPOS-00125

ocil_clause: 'the package is not installed'

ocil: '{{{ ocil_package(package="sudo") }}}'

fixtext: |-
    {{{ describe_package_install(package="sudo") }}}

srg_requirement: '{{{ srg_requirement_package_installed("sudo") }}}'

template:
    name: package_installed
    vars:
        pkgname: sudo

platform: system_with_kernel