Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Rework SCA Policy for Ubuntu Linux 18.04 LTS #24957

Merged
merged 2 commits into from
Aug 8, 2024
Merged

Rework SCA Policy for Ubuntu Linux 18.04 LTS #24957

merged 2 commits into from
Aug 8, 2024

Conversation

IsExec
Copy link
Member

@IsExec IsExec commented Jul 29, 2024
edited
Loading

Component Action type Main Issue
SCA Rework #17361

Main tasks

  • Use the latest CIS benchmark PDF from https://downloads.cisecurity.org/#/
  • Verify IDs numbers.
  • Verify texts are correct: Title, Description, Rationale and Remediation.
  • Verify Compliance: CIS, CIS_CSC.
  • Verify condtion and rules:
    • To Pass.
    • To Fail.
  • Solve Related issues:

Checks

Syntax and semantic

  • a) ID of each policy must be contiguous.
  • b) The order and format set in Documentation must be respected.
  • c) YML must be valid to avoid errors.

Content

  • a) Compare each check with its analog from CIS Benchmark.
  • b) Try maintaining each rule as similar as possible with the Audit section from the CIS check.
  • c) Check that the commands provide the expected output.
  • d) When a failure is discovered, check similar policies to avoid repetition of the issue.

Unit testing

  • a) Output from agent.log after the SCA scan and a raw output of the result of the checks.
Tests results 

2023/10/06 14:18:58 sca[6028] wm_sca.c:493 at wm_sca_read_files(): DEBUG: Calculating hash for scanned results.
2023/10/06 14:18:58 sca[6028] wm_sca.c:2817 at wm_sca_hash_integrity(): DEBUG: Concatenating check results:
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18500; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18501; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18502; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18503; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18504; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18505; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18506; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18507; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18508; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18509; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18510; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18511; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18512; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18513; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18514; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18515; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18516; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18517; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18518; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18519; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18520; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18521; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18522; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18523; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18524; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18525; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18526; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18527; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18528; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18529; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18530; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18531; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18532; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18533; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18534; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18535; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18536; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18537; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18538; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18539; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18540; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18541; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18542; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18543; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18544; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18545; Result: ''
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18546; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18547; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18548; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18549; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18550; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18551; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18552; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18553; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18554; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18555; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18556; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18557; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18558; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18559; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18560; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18561; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18562; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18563; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18564; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18565; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18566; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18567; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18568; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18569; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18570; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18571; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18572; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18573; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18574; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18575; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18576; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18577; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18578; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18579; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18580; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18581; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18582; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18583; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18584; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18585; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18586; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18587; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18588; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18589; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18590; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18591; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18592; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18593; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18594; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18595; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18596; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18597; Result: ''
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18598; Result: ''
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18599; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18600; Result: ''
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18601; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18602; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18603; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18604; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18605; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18606; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18607; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18608; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18609; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18610; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18611; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18612; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18613; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18614; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18615; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18616; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18617; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18618; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18619; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18620; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18621; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18622; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18623; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18624; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18625; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18626; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18627; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18628; Result: ''
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18629; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18630; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18631; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18632; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18633; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18634; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18635; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18636; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18637; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18638; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18639; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18640; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18641; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18642; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18643; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18644; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18645; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18646; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18647; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18648; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18649; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18650; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18651; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18652; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18653; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18654; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18655; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18656; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18657; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18658; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18659; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18660; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18661; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18662; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18663; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18664; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18665; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18666; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18667; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18668; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18669; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18670; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18671; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18672; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18673; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18674; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18675; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18676; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18677; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18678; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18679; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18680; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18681; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18682; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18683; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18684; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18685; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18686; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18687; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18688; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18689; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18690; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18691; Result: 'failed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18692; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18693; Result: 'passed'
2023/10/06 14:18:58 sca[6028] wm_sca.c:2820 at wm_sca_hash_integrity(): DEBUG: ID: 18694; Result: 'passed'
2023/10/06 14:19:01 sca[6028] wm_sca.c:2450 at wm_sca_send_summary(): DEBUG: Sending summary event for file: 'cis_ubuntu18-04.yml'
2023/10/06 14:19:01 sca[6028] wm_sca.c:270 at wm_sca_send_alert(): DEBUG: Sending event: {"type":"summary","scan_id":1429273235,"name":"CIS Ubuntu Linux 18.04 LTS Benchmark v2.1.0","policy_id":"cis_ubuntu18-04","file":"cis_ubuntu18-04.yml","description":"This document provides prescriptive guidance for establishing a secure configuration posture for Ubuntu Linux 18.04 LTS.","references":"https://www.cisecurity.org/cis-benchmarks/","passed":75,"failed":115,"invalid":5,"total_checks":195,"score":39.473686218261719,"start_time":1696601933,"end_time":1696601938,"hash":"89015673e983566847c893899394b92a5172ea6b798d96958b4e5c909315c32e","hash_file":"7ab5eb7f65e88ecfb2b691a061a3f17b33d653ab2539ad36a802d0c58616d1b3","first_scan":1}

Analysisd (server or local)

analysisd.debug=2

Auth daemon debug (server)

authd.debug=0

Exec daemon debug (server, local, or Unix agent)

execd.debug=0

Monitor daemon debug (server, local, or Unix agent)

monitord.debug=0

Log collector (server, local or Unix agent)

logcollector.debug=0

Integrator daemon debug (server, local or Unix agent)

integrator.debug=0

Unix agentd

agent.debug=2

Deployment

  • a) If the policy it's new, it must be added to the sca.files templates.
  • b) If the OS has many supported SCA policies, a policy must be set as the default policy. (as example)

Documentation

  • a) Ensure documentation SCA list includes the created or updated SCA.

@IsExec IsExec self-assigned this Jul 29, 2024
@IsExec IsExec requested a review from ooniagbi August 8, 2024 12:44
@IsExec
Updated Ubuntu 18.04 SCA
f6dba6f 
Removed check for update to optimize CPU utilization. Updated the id accordingly.
@IsExec IsExec linked an issue Aug 8, 2024 that may be closed by this pull request
Rework SCA Policy for Ubuntu Linux 18.04 LTS #17361
Closed
19 tasks
ooniagbi
ooniagbi approved these changes Aug 8, 2024
View reviewed changes
Copy link
Member

@ooniagbi ooniagbi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@ooniagbi ooniagbi merged commit a63b456 into 4.10.0 Aug 8, 2024
@ooniagbi ooniagbi deleted the 17361-rework-sca-policy-for-ubuntu-linux-1804-lts branch August 8, 2024 13:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ooniagbi ooniagbi ooniagbi approved these changes

Assignees

@IsExec IsExec

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Rework SCA Policy for Ubuntu Linux 18.04 LTS
2 participants
@IsExec @ooniagbi
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy