-
Notifications
You must be signed in to change notification settings - Fork 685
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add ocp4 pci dss references #12309
Add ocp4 pci dss references #12309
Commits on Aug 27, 2024
-
Remove ocp4 rule from rhel control
The audit_profile_set rule is an OCP rule, and is not necessary in this control file. Also, this rules is already selected in the pcidss_4_ocp4 control file, and breaks the auto referencing feature
Configuration menu - View commit details
-
Copy full SHA for 4838606 - Browse repository at this point
Copy the full SHA 4838606View commit details -
Add pcidss4 reference to OCP4 control
Let's auto ref the PCI-DSS v4.0 rules
Configuration menu - View commit details
-
Copy full SHA for 9de4d0f - Browse repository at this point
Copy the full SHA 9de4d0fView commit details -
Configuration menu - View commit details
-
Copy full SHA for 9d92335 - Browse repository at this point
Copy the full SHA 9d92335View commit details -
Update PCI-DSS platform profile filters
New platforms for node were added and these profiles were not updated to exclude these new node platforms.
Configuration menu - View commit details
-
Copy full SHA for c2a587c - Browse repository at this point
Copy the full SHA c2a587cView commit details -
Expand control processing to 'all' key
Allow a control to extend all controls of a policy with 'all' key.
Configuration menu - View commit details
-
Copy full SHA for dba80db - Browse repository at this point
Copy the full SHA dba80dbView commit details -
Add the references to the selected rules
Change Control.add_references() to iterate over the selected rules, not the listed rules. There can be differences on the rules in 'selected' and 'rules'. When the Control is resolved, the final list of selected rules is in 'selected'. This is particularly more evident when we are importing other controls.
Configuration menu - View commit details
-
Copy full SHA for e0e795e - Browse repository at this point
Copy the full SHA e0e795eView commit details -
Import OCP4 CIS rather than extending it
When a profile extends another one, the rules on the extended profile are not auto referenced. This patch importa the CIS into PCI-DSS, allowing the CIS rules to have PCI-DSS added automatically.
Configuration menu - View commit details
-
Copy full SHA for 7d982e8 - Browse repository at this point
Copy the full SHA 7d982e8View commit details -
Add test for imports of 'all' controls
Test import of all controls of a specific level.
Configuration menu - View commit details
-
Copy full SHA for 4d8484e - Browse repository at this point
Copy the full SHA 4d8484eView commit details