RHEL8 STIG Versions Save

Ansible role for Red Hat 8 STIG Baseline

2.5.0

2 years ago

STIG Benchmark Version: Version 1 Release 6 STIG Benchmark Release Date: Apr 27, 2022

Issues Fixed:

  • #104 - README Update - Cloudint bug when/var noexec

Enhancements:

  • Benchmark 1.6 updates

2.4.0

2 years ago

STIG Benchmark Version: Version 1 Release 5 STIG Benchmark Release Date: Jan 27, 2022

Issues Fixed:

  • #72 - Prelim SSSD Bug
  • #75 - Typo in RHEL-08-040259 and RHEL-08-040260 notify
  • #87 - RHEL-08-020027 failed
  • #88 - RHEL-08-04017 not applying on RHEL8 Workstation
  • #93 - Error with RHEL-08-040137 - Failed
  • #99 - RHEL-08-010292 failing

Enhancements:

  • Workflows and testing improvements
  • #79 - Permit the use of service name or protocol port.
  • #81 - Version number inconsistencies causing Galaxy issue
  • #90 - Added additional conditionals to template to align with conditionals
  • #97 - ability to skip supported os check
  • #101 - Container updates

2.0.1

2 years ago

STIG Version: 1.0.0 Issues Address:

  • Fixed typos in control names

Enhancements:

  • Added /etc/issue.net option for banner
  • Removed un-needed comments

2.0.0

2 years ago

This update brings the draft DISA STIG to the first release of the DISA STIG

1.0.0

2 years ago

RHEL 8 STIG Role

2.3.1

2 years ago

STIG Benchmark Version: 1.3 STIG Benchmark Release Date: July 23, 2021

Issues Fixed:

  • #62 - Blacklisted module names should be lowercase
  • #64 - RHEL-08-020024 is not using the rhel8stig_maxlogins variable
  • #65 - RHEL-08-010201 task is replacing ClientAliveInterval value with ClientaliveCountMax.

Enhancements:

  • Misc. Rule updates
  • Added fapolicy white list
  • Added attributes file
  • fapolicy handler updates
  • tag name and backwards compatibility for notify

2.3.0

2 years ago

STIG Version: 1.3

Issues Addressed: #57 - RHEL-08-030650 missing rule for rsyslogd #58 - RHEL-08-010421 Same grubby behavior than on other tasks #59 - RHEL-08-010400 - lineinfile task with state:present fails due to missing line: entry PR #51 - Fix superuser for EFI boo PR #56 - Fix Masked nftables Service

Enhancements:

  • Updated to Version 1 Release 3 of benchmarks

2.2.1

2 years ago

STIG Version: 1.2.0

Issues Addressed: #46 - RNG packages not installed causes control to fail

Enhancements:

  • Added issue templates
  • Added PR template

2.2.0

2 years ago

STIG version: 1.2.0

Issues Addressed: #26 - Errors on IPv6 disabled systems #30 - Script overwriting new mount options #40 - ssd.conf issues

Enhancements:

  • Updates for benchmark version 1 release 2
  • Improvements to controls requiring reboots
  • Improved FIPS logic
  • Rocky and Alma support
  • Updates to support Audit feature
  • Improved postfix logic
  • Updated to use package module instead of dnf module

2.1.0

2 years ago

STIG Version: 1.0.0

Issues Addressed:

  • #14 - Typo in resolv.conf configuration
  • #26 - Errors on ipv6 disabled systems.
  • #29 - Error applying playbooks referencing changes in sssd.conf
  • #31 - Script creating a new line in

Enhancements:

  • Linting for galaxy