These fixups are to update some descriptive text in Groups, and do not affect any Rule text used by any Profiles.
This is part of a comprehensive proofreading underway in preparation for guide publication.
Jeffrey Blank (2): updating text to describe AIDE removed references to pirut and pup which are not in RHEL 6
RHEL6/input/system/software/integrity.xml | 9 ++++++--- RHEL6/input/system/software/updating.xml | 21 ++++++++------------- 2 files changed, 14 insertions(+), 16 deletions(-)
Signed-off-by: Jeffrey Blank blank@eclipse.ncsc.mil --- RHEL6/input/system/software/integrity.xml | 9 ++++++--- 1 files changed, 6 insertions(+), 3 deletions(-)
diff --git a/RHEL6/input/system/software/integrity.xml b/RHEL6/input/system/software/integrity.xml index b6e69bf..83a8287 100644 --- a/RHEL6/input/system/software/integrity.xml +++ b/RHEL6/input/system/software/integrity.xml @@ -4,15 +4,18 @@ Both the AIDE (Advanced Intrusion Detection Environment) software and the RPM package management system provide mechanisms for verifying the integrity of installed software. -AIDE is the successor to the well-known Tripwire integrity -checker. The RPM package management system can conduct integrity +AIDE uses snapshots of file metadata (such as hashes) and compares these +to current system files in order to detect changes. +The RPM package management system can conduct integrity checks by comparing information in its metadata database with files installed on the system. <br /><br /> Integrity checking cannot <i>prevent</i> intrusions into your system, but can detect that they have occurred. Requirements for software integrity checking may be highly dependent on -the environment in which the system will be used. +the environment in which the system will be used. Snapshot-based +approaches such as AIDE may induce considerable overhead +in the presence of frequent software updates. </description>
<Group id="aide">
Signed-off-by: Jeffrey Blank blank@eclipse.ncsc.mil --- RHEL6/input/system/software/updating.xml | 21 ++++++++------------- 1 files changed, 8 insertions(+), 13 deletions(-)
diff --git a/RHEL6/input/system/software/updating.xml b/RHEL6/input/system/software/updating.xml index 4177d15..9dbf8b8 100644 --- a/RHEL6/input/system/software/updating.xml +++ b/RHEL6/input/system/software/updating.xml @@ -1,20 +1,15 @@ <Group id="updating"> <title>Updating Software</title> <description>The <tt>yum</tt> command line tool is used to install and -update software packages. The system also provides two graphical -package managers, <tt>pirut</tt> and <tt>pup</tt>. The <tt>pirut</tt> -tool is a graphical front-end for <tt>yum</tt> that allows users to install -and update packages while <tt>pup</tt> is a simple update tool for packages -that are already installed. In the <b>Applications</b> menu, <tt>pirut</tt> -is labeled <b>Add/Remove Software</b> and pup is labeled -<b>Software Updater</b>. +update software packages. The system also provides a graphical +software update tool in the <b>System</b> menu, in the <b>Administration</b> submenu, +called <b>Software Update</b>. <br /><br /> -Red Hat Enterprise Linux systems contain an embedded Installed Software -Catalog, or "RPM Database," which records metadata of installed packages. -The <tt>yum</tt>, <tt>pirut</tt>, and <tt>pup</tt> tools interface -with the Installed Software Catalog to ensure all system metadata is -accurate with regard to installed software and security patches, and -for this reason, their use is strongly encouraged. +Red Hat Enterprise Linux systems contain an installed software catalog called +the RPM database, which records metadata of installed packages. Tools such as +<tt>yum</tt> or the graphical <b>Software Update</b> ensure usage of RPM +packages for software installation. This allows for insight into the current +inventory of installed software on the system, and is highly recommended. </description>
<Rule id="ensure_redhat_gpgkey_installed" severity="high">
On Apr 29, 2013, at 12:43 AM, Jeffrey Blank scapafterhours@gmail.com wrote:
These fixups are to update some descriptive text in Groups, and do not affect any Rule text used by any Profiles.
This is part of a comprehensive proofreading underway in preparation for guide publication.
Jeffrey Blank (2): updating text to describe AIDE removed references to pirut and pup which are not in RHEL 6
RHEL6/input/system/software/integrity.xml | 9 ++++++--- RHEL6/input/system/software/updating.xml | 21 ++++++++------------- 2 files changed, 14 insertions(+), 16 deletions(-)
Ack
scap-security-guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
scap-security-guide@lists.fedorahosted.org
-
Jeffrey Blank -
Shawn Wells