content icon indicating copy to clipboard operation
content copied to clipboard
verified publisher icon ComplianceAsCode

rpm_verify_permissions is failing in RHEL after pci-dss hardening

Open marcusburghardt opened this issue 2 years ago • 0 comments

Description of problem:

This error was caught in test-farm tests using the pci-dss v4 profile. By looking the tests logs it was not found which file was making the rpm_verify_permissions rule to fail after pci-dss remediation and reboot.

More tests are needed to clarify and solve this issue.

SCAP Security Guide Version:

During the tests with PR #11267

Operating System Version:

RHEL 7, RHEL 8 and RHEL 9

Steps to Reproduce:

  1. Scan a RHEL system using pci-dss profile. 1.1. The rpm_verify_permissions rule pass while many other rules fail, as expected.
  2. Remediate the system using pci-dss profile
  3. Reboot the system
  4. Scan a RHEL system using pci-dss profile.
    1. The rpm_verify_permissions rule fails

Actual Results:

rpm_verify_permissions fails after pci-dss remediation

Expected Results:

rpm_verify_permissions pass after pci-dss remediation

Additional Information/Debugging Steps:

marcusburghardt avatar Nov 17 '23 12:11 marcusburghardt