Benchmark Version 1 Release 6

STIG Benchmark Version: Version 1 Release 6
STIG Benchmark Release Date: Apr 27, 2022

Issues Fixed:

• #104 - README Update - Cloudint bug when/var noexec

Enhancements:

• Benchmark 1.6 updates

2.4.0

STIG Benchmark Version: Version 1 Release 5
STIG Benchmark Release Date: Jan 27, 2022

Issues Fixed:

• #72 - Prelim SSSD Bug
• #75 - Typo in RHEL-08-040259 and RHEL-08-040260 notify
• #87 - RHEL-08-020027 failed
• #88 - RHEL-08-04017 not applying on RHEL8 Workstation
• #93 - Error with RHEL-08-040137 - Failed
• #99 - RHEL-08-010292 failing

Enhancements:

• Workflows and testing improvements
• #79 - Permit the use of service name or protocol port.
• #81 - Version number inconsistencies causing Galaxy issue
• #90 - Added additional conditionals to template to align with conditionals
• #97 - ability to skip supported os check
• #101 - Container updates

2.3.1

STIG Benchmark Version: 1.3
STIG Benchmark Release Date: July 23, 2021

Issues Fixed:

• #62 - Blacklisted module names should be lowercase
• #64 - RHEL-08-020024 is not using the rhel8stig_maxlogins variable
• #65 - RHEL-08-010201 task is replacing ClientAliveInterval value with ClientaliveCountMax.

Enhancements:

• Misc. Rule updates
• Added fapolicy white list
• Added attributes file
• fapolicy handler updates
• tag name and backwards compatibility for notify

2.3.0

STIG Version: 1.3

Issues Addressed:
#57 - RHEL-08-030650 missing rule for rsyslogd
#58 - RHEL-08-010421 Same grubby behavior than on other tasks
#59 - RHEL-08-010400 - lineinfile task with state:present fails due to missing line: entry
PR #51 - Fix superuser for EFI boo
PR #56 - Fix Masked nftables Service

Enhancements:

• Updated to Version 1 Release 3 of benchmarks

Added Issue/PR Templates and Issue Fix

STIG Version: 1.2.0

Issues Addressed:
#46 - RNG packages not installed causes control to fail

Enhancements:

• Added issue templates
• Added PR template

Benchmark update, issue fixes, and enhancements

STIG version: 1.2.0

Issues Addressed:
#26 - Errors on IPv6 disabled systems
#30 - Script overwriting new mount options
#40 - ssd.conf issues

Enhancements:

• Updates for benchmark version 1 release 2
• Improvements to controls requiring reboots
• Improved FIPS logic
• Rocky and Alma support
• Updates to support Audit feature
• Improved postfix logic
• Updated to use package module instead of dnf module

Final Benchmark 1.0.0 Release

STIG Version: 1.0.0

Issues Addressed:

• #14 - Typo in resolv.conf configuration
• #26 - Errors on ipv6 disabled systems.
• #29 - Error applying playbooks referencing changes in sssd.conf
• #31 - Script creating a new line in

Enhancements:

• Linting for galaxy

Minor Fixes and Adjustments

STIG Version: 1.0.0
Issues Address:

• Fixed typos in control names

Enhancements:

• Added /etc/issue.net option for banner
• Removed un-needed comments

Version 1 Release 1 RHEL8 DISA STIG

This update brings the draft DISA STIG to the first release of the DISA STIG

Initial Release

RHEL 8 STIG Role