Skip to content

Enforce sha512 and minimum rounds in Ubuntu 22.04 STIG#14415

Merged
dodys merged 1 commit intoComplianceAsCode:masterfrom
mpurg:ubuntu_stig_UBTU-22-611055
Feb 18, 2026
Merged

Enforce sha512 and minimum rounds in Ubuntu 22.04 STIG#14415
dodys merged 1 commit intoComplianceAsCode:masterfrom
mpurg:ubuntu_stig_UBTU-22-611055

Conversation

@mpurg
Copy link
Copy Markdown
Contributor

@mpurg mpurg commented Feb 18, 2026

Description:

  • Enforce sha512 and minimum rounds (100000) in Ubuntu 22.04 STIG

Rationale:

  • Aligns with new requirements in STIG V2R7 rule UBTU-22-611055 (Ubuntu 22.04 LTS must store only encrypted representations of passwords).

@mpurg
Enforce sha512 and minimum rounds in Ubuntu 22.04 STIG
96febe6 
Aligns with new requirements in STIG V2R7 rule UBTU-22-611055
(Ubuntu 22.04 LTS must store only encrypted representations of passwords).
@mpurg mpurg added the Ubuntu Ubuntu product related. label Feb 18, 2026
@openshift-ci
Copy link
Copy Markdown

openshift-ci Bot commented Feb 18, 2026

@mpurg: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
ci/prow/e2e-aws-openshift-node-compliance 96febe6 link true /test e2e-aws-openshift-node-compliance
ci/prow/e2e-aws-openshift-platform-compliance 96febe6 link true /test e2e-aws-openshift-platform-compliance

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

@mpurg mpurg requested a review from dodys February 18, 2026 14:28
@dodys dodys added this to the 0.1.81 milestone Feb 18, 2026
dodys
dodys approved these changes Feb 18, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@dodys dodys left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm, thanks!

@dodys dodys merged commit 76b34ff into ComplianceAsCode:master Feb 18, 2026
60 of 64 checks passed
@mpurg mpurg added the STIG STIG Benchmark related. label Feb 19, 2026
hdean3 added a commit to hdean3/content that referenced this pull request Feb 26, 2026
@hdean3
[Ubuntu 22.04] Bump STIG profile metadata from V2R3 to V2R7
5e42450 
All V2R7 control PRs (ComplianceAsCode#14427, ComplianceAsCode#14418, ComplianceAsCode#14415, ComplianceAsCode#14416, ComplianceAsCode#14433) were
merged without updating the version metadata fields. This causes STIG
Viewer imports and auditor reports to display V2R3 while the actual
content reflects V2R7 rules.

Updated files:
- controls/stig_ubuntu2204.yml: version V2R3 → V2R7
- products/ubuntu2204/profiles/stig.profile: version, title, and
  description strings V2R3 → V2R7
@hdean3 hdean3 mentioned this pull request Feb 26, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dodys dodys dodys approved these changes

Assignees

No one assigned

Labels

STIG STIG Benchmark related. Ubuntu Ubuntu product related.

Projects

None yet

Milestone

0.1.81

Development

Successfully merging this pull request may close these issues.

2 participants

@mpurg @dodys