https://iase.disa.mil/ reports "This website is no longer being updat…

…ed."

And "Please click below to visit the DoD Cyber Exchange public" with link
to https://public.cyber.mil/.

DISCLAIMER

@@ -5,7 +5,7 @@ serving as the upstream development environment for Red Hat Product STIGS.
 As a result of the upstream/downstream relationship between the SCAP Security
 Guide project and the official DISA FSO STIG baseline, users should expect
 variance between SSG and DISA FSO content. For official DISA FSO STIG content,
-refer to http://iase.disa.mil/stigs/Pages/index.aspx.
+refer to https://public.cyber.mil/stigs/.
 
 While this profile is packaged by Red Hat as part of the SCAP Security Guide
 package, please note that commercial support of this SCAP content is NOT

build-scripts/verify_references.py

@@ -43,7 +43,7 @@
 
 # we use these strings to look for references within the XCCDF rules
 nist_ref_href = "http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-53r4.pdf"
-disa_ref_href = "http://iase.disa.mil/stigs/cci/Pages/index.aspx"
+disa_ref_href = "https://public.cyber.mil/stigs/cci/"
 
 # default exit value - success
 exit_value = 0

chromium/profiles/stig.profile

@@ -8,7 +8,7 @@ description: |-
 
     As a result of the upstream/downstream relationship between the SCAP Security Guide project
     and the official DISA FSO STIG baseline, users should expect variance between SSG and DISA FSO content.
-    For official DISA FSO STIG content, refer to http://iase.disa.mil/stigs/app-security/browser-guidance/Pages/index.aspx.
+    For official DISA FSO STIG content, refer to https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=app-security%2Cbrowser-guidance.
 
     While this profile is packaged by Red Hat as part of the SCAP Security Guide package, please note
     that commercial support of this SCAP content is NOT available. This profile is provided as example

docs/man_page_template.jinja

@@ -145,11 +145,12 @@ process, the content of the Red Hat Enterprise Linux 6 STIG should mirrot the SC
 content with only minor divergence as updates from multiple sources work through
 the concensus process."
 
-The DoD STIG for Red Hat Enterprise Linux 6 was released June 2013. Currently, the
-DoD Red Hat Enterprise Linux 6 STIG contains only XCCDF content and is available online:
-http://iase.disa.mil/stigs/os/unix-linux/Pages/red-hat.aspx
+The DoD STIG for Red Hat Enterprise Linux 7, revision V2R3, was released in April 2019
+Currently, the DoD Red Hat Enterprise Linux 7 STIG contains only XCCDF content and is
+available online:
+https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=operating-systems%2Cunix-linux
 
-Content published against the iase.disa.mil website is authoritative
+Content published against the public.cyber.mil website is authoritative
 STIG content. The SCAP Security Guide project, as noted in the STIG overview,
 is considered upstream content. Unlike DISA FSO, the SCAP Security Guide project
 does publish OVAL automation content. Individual programs and C&A evaluators

docs/manual/user_guide.adoc

@@ -42,10 +42,11 @@ image::logos-400x400-disa-300x300.jpg[align="left"]
 
 The http://www.disa.mil/About/Our-Organization-Structure/OD-Field-Office/Field-Security-Operations[U.S. Defense Information Systems Agency, Field Security Operations]
 (DISA FSO) authors hardening guidance known as Security Technical
-Implementation Guides (http://iase.disa.mil/stigs/index.html[STIGs]). These
+Implementation Guides (https://public.cyber.mil/stigs/[STIGs]). These
 documents, used throughout the U.S. military to harden systems, establish
 formal security compliance baselines. The ComplianceAsCode project serves as
-the usptream development source for http://iase.disa.mil/stigs/os/unix-linux/Pages/red-hat.aspx[Red Hat STIG content]
+the usptream development source for
+https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=operating-systems%2Cunix-linux[Red Hat STIG content]
 and helps DISA FSO move towards their business objective of utilizing
 SCAP-based formats to automate security compliance across U.S. military
 organizations.

firefox/profiles/stig.profile

@@ -8,7 +8,7 @@ description: |-
 
     As a result of the upstream/downstream relationship between the SCAP Security Guide project
     and the official DISA FSO STIG baseline, users should expect variance between SSG and DISA FSO content.
-    For official DISA FSO STIG content, refer to http://iase.disa.mil/stigs/app-security/browser-guidance/Pages/index.aspx.
+    For official DISA FSO STIG content, refer to https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=app-security%2Cbrowser-guidance.
 
     While this profile is packaged by Red Hat as part of the SCAP Security Guide package, please note
     that commercial support of this SCAP content is NOT available. This profile is provided as example

shared/transforms/shared_constants.xslt

@@ -11,15 +11,15 @@
 <xsl:variable name="cjisd-its-uri">https://www.fbi.gov/file-repository/cjis-security-policy-v5_5_20160601-2-1.pdf</xsl:variable>
 <xsl:variable name="cnss1253uri">http://www.cnss.gov/Assets/pdf/CNSSI-1253.pdf</xsl:variable>
 <xsl:variable name="dcid63uri">not_officially_available</xsl:variable>
-<xsl:variable name="disa-appsrguri">http://iase.disa.mil/stigs/app-security/app-servers/Pages/general.aspx</xsl:variable>
-<xsl:variable name="disa-cciuri">http://iase.disa.mil/stigs/cci/Pages/index.aspx</xsl:variable>
-<xsl:variable name="disa-ossrguri">http://iase.disa.mil/stigs/os/general/Pages/index.aspx</xsl:variable>
-<xsl:variable name="disa-stigs-apps-appsecurity-dev-uri">http://iase.disa.mil/stigs/app-security/app-security/Pages/index.aspx</xsl:variable>
-<xsl:variable name="disa-stigs-apps-appserver-uri">http://iase.disa.mil/stigs/app-security/app-servers/Pages/index.aspx</xsl:variable>
-<xsl:variable name="disa-stigs-apps-browers-uri">http://iase.disa.mil/stigs/app-security/browser-guidance/Pages/index.aspx</xsl:variable>
-<xsl:variable name="disa-stigs-apps-web-server-uri">http://iase.disa.mil/stigs/app-security/web-servers/Pages/index.aspx</xsl:variable>
-<xsl:variable name="disa-stigs-os-mainframe-uri">http://iase.disa.mil/stigs/os/mainframe/Pages/index.aspx</xsl:variable>
-<xsl:variable name="disa-stigs-os-unix-linux-uri">http://iase.disa.mil/stigs/os/unix-linux/Pages/index.aspx</xsl:variable>
+<xsl:variable name="disa-appsrguri">https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=application-servers</xsl:variable>
+<xsl:variable name="disa-cciuri">https://public.cyber.mil/stigs/cci/</xsl:variable>
+<xsl:variable name="disa-ossrguri">https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=operating-systems%2Cgeneral-purpose-os</xsl:variable>
+<xsl:variable name="disa-stigs-apps-appsecurity-dev-uri">https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=app-security%2Capp-security-dev</xsl:variable>
+<xsl:variable name="disa-stigs-apps-appserver-uri">https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=app-security%2Capplication-servers</xsl:variable>
+<xsl:variable name="disa-stigs-apps-browers-uri">https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=app-security%2Cbrowser-guidance</xsl:variable>
+<xsl:variable name="disa-stigs-apps-web-server-uri">https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=app-security%2Cweb-servers</xsl:variable>
+<xsl:variable name="disa-stigs-os-mainframe-uri">https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=operating-systems%2Cmainframe</xsl:variable>
+<xsl:variable name="disa-stigs-os-unix-linux-uri">https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=operating-systems%2Cunix-linux</xsl:variable>
 <xsl:variable name="disa-stigs-virutalization-uri">https://iase.disa.mil/stigs/os/virtualization/Pages/index.aspx</xsl:variable>
 <xsl:variable name="hipaauri">https://www.gpo.gov/fdsys/pkg/CFR-2007-title45-vol1/pdf/CFR-2007-title45-vol1-chapA-subchapC.pdf</xsl:variable>
 <xsl:variable name="iso27001-2013uri">https://www.iso.org/standard/54534.html</xsl:variable>

shared/transforms/shared_xccdf2html.xslt

@@ -553,6 +553,9 @@
               <xsl:choose>
                 <xsl:when test='. != ""'>
                   <xsl:choose>
+                    <xsl:when test='./@href = "https://public.cyber.mil/stigs/cci/"'>
+                      <a href="{@href}">DISA CCI-<xsl:value-of select="text()"/></a>
+                    </xsl:when>
                     <xsl:when test='./@href = "http://iase.disa.mil/stigs/cci/Pages/index.aspx"'>
                       <a href="{@href}">DISA CCI-<xsl:value-of select="text()"/></a>
                     </xsl:when>
@@ -661,6 +664,9 @@
               <xsl:choose>
                 <xsl:when test='. != ""'>
                   <xsl:choose>
+                    <xsl:when test='./@href = "https://public.cyber.mil/stigs/cci/"'>
+                      <a href="{@href}">DISA CCI-<xsl:value-of select="text()"/></a>
+                    </xsl:when>
                     <xsl:when test='./@href = "http://iase.disa.mil/stigs/cci/Pages/index.aspx"'>
                       <a href="{@href}">DISA CCI-<xsl:value-of select="text()"/></a>
                     </xsl:when>

ssg/constants.py

@@ -31,10 +31,9 @@
 puppet_system = "urn:xccdf:fix:script:puppet"
 anaconda_system = "urn:redhat:anaconda:pre"
 cce_uri = "https://nvd.nist.gov/cce/index.cfm"
-stig_ns = "http://iase.disa.mil/stigs/Pages/stig-viewing-guidance.aspx"
-stig_refs = 'http://iase.disa.mil/stigs/'
-disa_cciuri = "http://iase.disa.mil/stigs/cci/Pages/index.aspx"
-disa_srguri = "http://iase.disa.mil/stigs/srgs/Pages/index.aspx"
+stig_ns = "https://public.cyber.mil/stigs/srg-stig-tools/"
+stig_refs = 'https://public.cyber.mil/stigs/'
+disa_cciuri = "https://public.cyber.mil/stigs/cci/"
 ssg_version_uri = \
     "https://github.com/OpenSCAP/scap-security-guide/releases/latest"
 OSCAP_VENDOR = "org.ssgproject"

utils/create-stig-overlay.py

@@ -13,9 +13,9 @@
 
 
 owner = "disastig"
-stig_ns = ["http://iase.disa.mil/stigs/os/unix-linux/Pages/index.aspx",
-           "http://iase.disa.mil/stigs/os/general/Pages/index.aspx",
-           "http://iase.disa.mil/stigs/app-security/app-servers/Pages/index.aspx"]
+stig_ns = ["https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=operating-systems%2Cunix-linux",
+           "https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=operating-systems%2Cgeneral-purpose-os",
+           "https://public.cyber.mil/stigs/downloads/?_dl_facet_stigs=app-security%2Capplication-servers"]
 xccdf_ns = "http://checklists.nist.gov/xccdf/1.1"
 dc_ns = "http://purl.org/dc/elements/1.1/"
 outfile = "stig_overlay.xml"