Skip to content

Commit

Permalink
add references for bsi.app.4.4.a4+a3
Browse files Browse the repository at this point in the history
  • Loading branch information
@sluetze
sluetze committed Jan 10, 2024
1 parent d09c503 commit 54f4122
Show file tree
Hide file tree
Showing 7 changed files with 9 additions and 0 deletions.
1 change: 1 addition & 0 deletions applications/openshift/api-server/api_server_anonymous_auth/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -35,6 +35,7 @@ rationale: |-
severity: medium

references:
bsi: APP.4.4.A3
cis@ocp4: 1.2.1
nerc-cip: CIP-003-8 R6,CIP-004-6 R3,CIP-007-3 R6.1
nist: CM-6,CM-6(1)
Expand Down
1 change: 1 addition & 0 deletions applications/openshift/general/kubeadmin_removed/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,7 @@ identifiers:
cce@ocp4: CCE-90387-2

references:
bsi: APP.4.4.A3
cis@ocp4: 3.1.1,5.1.1
nerc-cip: CIP-004-6 R2.2.2,CIP-004-6 R2.2.3,CIP-007-3 R.1.3,CIP-007-3 R2,CIP-007-3 R5,CIP-007-3 R5.1.1,CIP-007-3 R5.1.3,CIP-007-3 R5.2.1,CIP-007-3 R5.2.3,CIP-007-3 R6.1,CIP-007-3 R6.2,CIP-007-3 R6.3,CIP-007-3 R6.4
nist: AC-2(2),AC-2(7),AC-2(9),AC-2(10),AC-12(1),IA-2(5),MA-4,SC-12(1)
Expand Down
1 change: 1 addition & 0 deletions applications/openshift/kubelet/kubelet_anonymous_auth/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,7 @@ rationale: |-
severity: medium

references:
bsi: APP.4.4.A3
cis@eks: 3.2.1
cis@ocp4: 4.2.2
nerc-cip: CIP-003-8 R6,CIP-004-6 R3,CIP-007-3 R6.1
Expand Down
1 change: 1 addition & 0 deletions applications/openshift/rbac/rbac_least_privilege/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,6 +27,7 @@ identifiers:
cce@ocp4: CCE-90678-4

references:
bsi: APP.4.4.A3
cis@ocp4: 5.2.10
nist: AC-3,CM-5(6),IA-2,IA-2(5),AC-6(10),CM-11(2),CM-5(1),CM-7(5)(b)
srg: SRG-APP-000033-CTR-000090,SRG-APP-000033-CTR-000095,SRG-APP-000033-CTR-000100,SRG-APP-000133-CTR-000290,SRG-APP-000133-CTR-000295,SRG-APP-000133-CTR-000300,SRG-APP-000133-CTR-000305,SRG-APP-000133-CTR-000310,SRG-APP-000148-CTR-000350,SRG-APP-000153-CTR-000375,SRG-APP-000340-CTR-000770,SRG-APP-000378-CTR-000880,SRG-APP-000378-CTR-000885,SRG-APP-000378-CTR-000890,SRG-APP-000380-CTR-000900,SRG-APP-000386-CTR-000920
Expand Down
1 change: 1 addition & 0 deletions linux_os/guide/system/selinux/coreos_enable_selinux_kernel_argument/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,6 +20,7 @@ identifiers:
cce@rhcos4: CCE-83899-5

references:
bsi: APP.4.4.A4
cis-csc: 1,11,12,13,14,15,16,18,3,4,5,6,8,9
cobit5: APO01.06,APO11.04,APO13.01,BAI03.05,DSS01.05,DSS03.01,DSS05.02,DSS05.04,DSS05.05,DSS05.07,DSS06.02,DSS06.03,DSS06.06,MEA02.01
cui: 3.1.2,3.7.2
Expand Down
1 change: 1 addition & 0 deletions linux_os/guide/system/selinux/selinux_policytype/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -37,6 +37,7 @@ identifiers:

references:
anssi: BP28(R66)
bsi: APP.4.4.A4
ccn@rhel9: A.6.SEC-RHEL1
cis-csc: 1,11,12,13,14,15,16,18,3,4,5,6,8,9
cis@alinux2: 1.6.1.3
Expand Down
3 changes: 3 additions & 0 deletions tests/unit/ssg-module/test_build_ovals_data/guide/selinux_state/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,9 @@ rationale: |-
severity: high

references:
bsi: APP.4.4.A4

ocil_clause: 'SELINUX is not set to enforcing'

ocil: |-
Expand Down

0 comments on commit 54f4122

Please sign in to comment.