Merge pull request #12252 from teacup-on-rockingchair/slmicro5_permis…

…sions_dirs_rules_stig Add STIG rules for slmicro5 covering lib dirs root ownership
ComplianceAsCode · Aug 5, 2024 · d8170c6 · d8170c6
2 parents 0c4f15e + 0dd2c92
commit d8170c6
Show file tree

Hide file tree

Showing 8 changed files with 14 additions and 8 deletions.
diff --git a/controls/stig_slmicro5.yml b/controls/stig_slmicro5.yml
@@ -286,8 +286,14 @@ controls:
       levels:
           - medium
       title: SLEM 5 library directories must be owned by root.
-      rules: []
-      status: pending
+      rules:
+        - dir_group_ownership_library_dirs
+        - dir_ownership_library_dirs
+        - dir_permissions_library_dirs
+        - file_ownership_library_dirs
+        - file_permissions_library_dirs
+        - root_permissions_syslibrary_files
+      status: automated
 
     - id: SLEM-05-232065
       levels:

diff --git a/...issions/files/permissions_within_important_dirs/dir_group_ownership_library_dirs/rule.yml b/...issions/files/permissions_within_important_dirs/dir_group_ownership_library_dirs/rule.yml
@@ -33,6 +33,7 @@ identifiers:
     cce@rhel10: CCE-88290-2
     cce@sle12: CCE-83238-6
     cce@sle15: CCE-85737-5
+    cce@slmicro5: CCE-94069-2
 
 references:
     disa: CCI-001499

diff --git a/...m/permissions/files/permissions_within_important_dirs/dir_ownership_library_dirs/rule.yml b/...m/permissions/files/permissions_within_important_dirs/dir_ownership_library_dirs/rule.yml
@@ -32,6 +32,7 @@ identifiers:
     cce@rhel10: CCE-89745-4
     cce@sle12: CCE-83236-0
     cce@sle15: CCE-85735-9
+    cce@slmicro5: CCE-94068-4
 
 references:
     disa: CCI-001499

diff --git a/...permissions/files/permissions_within_important_dirs/dir_permissions_library_dirs/rule.yml b/...permissions/files/permissions_within_important_dirs/dir_permissions_library_dirs/rule.yml
@@ -36,6 +36,7 @@ identifiers:
     cce@rhel10: CCE-87731-6
     cce@sle12: CCE-83234-5
     cce@sle15: CCE-85753-2
+    cce@slmicro5: CCE-94067-6
 
 severity: medium
 

diff --git a/.../permissions/files/permissions_within_important_dirs/file_ownership_library_dirs/rule.yml b/.../permissions/files/permissions_within_important_dirs/file_ownership_library_dirs/rule.yml
@@ -31,6 +31,7 @@ identifiers:
     cce@rhel10: CCE-87988-2
     cce@sle12: CCE-83235-2
     cce@sle15: CCE-85756-5
+    cce@slmicro5: CCE-94066-8
 
 references:
     cis-csc: 12,13,14,15,16,18,3,5

diff --git a/...ermissions/files/permissions_within_important_dirs/file_permissions_library_dirs/rule.yml b/...ermissions/files/permissions_within_important_dirs/file_permissions_library_dirs/rule.yml
@@ -31,6 +31,7 @@ identifiers:
     cce@rhel10: CCE-88771-1
     cce@sle12: CCE-83233-7
     cce@sle15: CCE-85670-8
+    cce@slmicro5: CCE-94065-0
 
 references:
     cis-csc: 12,13,14,15,16,18,3,5

diff --git a/...ssions/files/permissions_within_important_dirs/root_permissions_syslibrary_files/rule.yml b/...ssions/files/permissions_within_important_dirs/root_permissions_syslibrary_files/rule.yml
@@ -37,6 +37,7 @@ identifiers:
     cce@rhel10: CCE-86440-5
     cce@sle12: CCE-83237-8
     cce@sle15: CCE-85736-7
+    cce@slmicro5: CCE-94064-3
 
 references:
     disa: CCI-001499

diff --git a/shared/references/cce-slmicro5-avail.txt b/shared/references/cce-slmicro5-avail.txt
@@ -427,12 +427,6 @@ CCE-94060-1
 CCE-94061-9
 CCE-94062-7
 CCE-94063-5
-CCE-94064-3
-CCE-94065-0
-CCE-94066-8
-CCE-94067-6
-CCE-94068-4
-CCE-94069-2
 CCE-94070-0
 CCE-94072-6
 CCE-94073-4