Comments (4)
Unless someone beats me to it I will provide patch for this during this weekend. This is VALID case
which needs care. See below:
[root@localhost ~]# cat /etc/redhat-release
Red Hat Enterprise Linux Server release 7.0 (Maipo)
[root@localhost ~]# cat /usr/src/kernels/3.10.0-123.6.3.el7.x86_64/.config | grep SCTP
CONFIG_NF_CT_PROTO_SCTP=m
CONFIG_NF_NAT_PROTO_SCTP=m
CONFIG_NETFILTER_XT_MATCH_SCTP=m
CONFIG_IP_VS_PROTO_SCTP=y
CONFIG_IP_SCTP=m
CONFIG_NET_SCTPPROBE=m
CONFIG_SCTP_DBG_MSG is not set
CONFIG_SCTP_DBG_OBJCNT is not set
CONFIG_SCTP_DEFAULT_COOKIE_HMAC_MD5 is not set
CONFIG_SCTP_DEFAULT_COOKIE_HMAC_SHA1=y
CONFIG_SCTP_DEFAULT_COOKIE_HMAC_NONE is not set
CONFIG_SCTP_COOKIE_HMAC_MD5=y
CONFIG_SCTP_COOKIE_HMAC_SHA1=y
[root@localhost ~]# modprobe sctp && echo $?
0
[root@localhost ~]# rpm -ql kernel | grep sctp.ko
/lib/modules/3.10.0-123.el7.x86_64/kernel/net/netfilter/nf_conntrack_proto_sctp.ko
/lib/modules/3.10.0-123.el7.x86_64/kernel/net/netfilter/nf_nat_proto_sctp.ko
/lib/modules/3.10.0-123.el7.x86_64/kernel/net/netfilter/xt_sctp.ko
/lib/modules/3.10.0-123.el7.x86_64/kernel/net/sctp/sctp.ko
[root@localhost ~]#
from content.
@iankko p.s., if you wrap code with four ticks (`), GitHub will autoconvert to code stanzas and take care of formatting for you (went ahead and made the change above). helpful for those who monitor GH via EMails
from content.
Corresponding PR: #222
from content.
PR #222 merged, resolving ticket
from content.
Related Issues (20)
- file_permission_user_init_files_root is misaligned with RHEL 9 STIG HOT 2
- R38 ANSSI wrong file permissions HOT 2
- PCI-DSS generated blueprint missing `firewalld` package
- Scap Security Guide for Amazon Linux 2/ 2023 versions HOT 3
- compare_results.py: show rule ID in case one of results is "not applicable"
- Bash remediation against STIG for RHEL9 (maybe others) in Image Builder creates a bogus `/etc/fstab` entry
- Chronyd rules' link http://chrony.tuxfamily.org link times out HOT 2
- CCE-88173-0 is `notchecked` by SSG, however for DISA STIG it `fail` HOT 3
- CCE-90811-1 is `notselected` by SSG, however for DISA STIG it `fail` HOT 1
- harden_sshd_ciphers_openssh_conf_crypto_policy is misaligned with DISA HOT 2
- ANSSI profile configures unsupported password hashing algorithm on RHEL 8 HOT 1
- Content is not SCAP valid HOT 2
- [BUG] RHEL-related automation should not inject log-collector hostname into /etc/rsyslog.conf HOT 2
- Ansible remediation on Ubuntu looks for wrong PAM files HOT 1
- Assistance Needed with Locating SCAP Files HOT 1
- Investigate if other banners have the same behavior of /etc/motd banner as described in #11826
- rhel8-playbook-stig.yml and rhel9-playbook-stig.yml using stale ansible_facts
- content_rule_verify_use_mappers regular expression needs improvement
- Failed to build rhel8 content in lab1 environment
- Allow to change Security Context from values.yaml for installation via Helm Chart
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from content.