1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
|
documentation_complete: true
title: 'Ensure rsyslog is Installed'
description: 'Rsyslog is installed by default. {{{ describe_package_install(package="rsyslog") }}}'
rationale: |-
The rsyslog package provides the rsyslog daemon, which provides
system logging services.
severity: medium
identifiers:
cce@rhel8: CCE-80847-7
cce@rhel9: CCE-84063-7
cce@rhel10: CCE-90353-4
cce@sle12: CCE-91455-6
cce@sle15: CCE-91161-0
references:
cis-csc: 1,14,15,16,3,5,6
cis@sle12: 4.2.1.1
cis@sle15: 4.2.1.1
cobit5: APO11.04,BAI03.05,DSS05.04,DSS05.07,MEA02.01
hipaa: 164.312(a)(2)(ii)
isa-62443-2009: 4.3.3.3.9,4.3.3.5.8,4.3.4.4.7,4.4.2.1,4.4.2.2,4.4.2.4
isa-62443-2013: 'SR 2.10,SR 2.11,SR 2.12,SR 2.8,SR 2.9'
iso27001-2013: A.12.4.1,A.12.4.2,A.12.4.3,A.12.4.4,A.12.7.1
nist: CM-6(a)
nist-csf: PR.PT-1
srg: SRG-OS-000479-GPOS-00224,SRG-OS-000051-GPOS-00024,SRG-OS-000480-GPOS-00227
stigid@ol8: OL08-00-030670
ocil_clause: 'the package is not installed'
ocil: '{{{ ocil_package(package="rsyslog") }}}'
fixtext: |-
Configure {{{ full_name }}} to offload audit logs by installing the required packages with the following command:
{{{ describe_package_install(package="rsyslog") }}}
srg_requirement: |-
{{{ full_name }}} must have the packages required for offloading audit logs installed.
template:
name: package_installed
vars:
pkgname: rsyslog
|
