Skip to content

Update rules UBTU-22-232035 UBTU-22-232110#14433

Merged
dodys merged 2 commits intoComplianceAsCode:masterfrom
alanmcanonical:audit
Feb 25, 2026
Merged

Update rules UBTU-22-232035 UBTU-22-232110#14433
dodys merged 2 commits intoComplianceAsCode:masterfrom
alanmcanonical:audit

Conversation

@alanmcanonical
Copy link
Copy Markdown
Contributor

@alanmcanonical alanmcanonical commented Feb 20, 2026
edited
Loading

Description:

  • Add stig required file to audit binaries list for ubuntu2204

Rationale:

@openshift-ci openshift-ci Bot added the needs-ok-to-test Used by openshift-ci bot. label Feb 20, 2026
@openshift-ci
Copy link
Copy Markdown

openshift-ci Bot commented Feb 20, 2026

Hi @alanmcanonical. Thanks for your PR.

I'm waiting for a ComplianceAsCode member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@alanmcanonical alanmcanonical force-pushed the audit branch 2 times, most recently from a22382a to b2f1ebd Compare February 20, 2026 16:27
@dodys dodys self-assigned this Feb 23, 2026
@dodys dodys added the Ubuntu Ubuntu product related. label Feb 23, 2026
@dodys dodys added this to the 0.1.81 milestone Feb 23, 2026
dodys
dodys requested changes Feb 23, 2026
View reviewed changes
Comment thread linux_os/guide/auditing/file_permissions_auditd/file_ownership_audit_binaries_stig/rule.yml Outdated
Comment thread linux_os/guide/auditing/file_permissions_auditd/file_permissions_audit_binaries_stig/rule.yml Outdated
@alanmcanonical
Add
6e0a3e7 
/sbin/audisp-syslog
/sbin/audisp-remote
/sbin/audispd-zos-remote
to audit-binaries

Signed-off-by: Alan Moore <alan.moore@canonical.com>
@mpurg mpurg requested a review from dodys February 24, 2026 17:39
@alanmcanonical
Run test_product_stability.py --update-reference-data
56d5f4f 
Signed-off-by: Alan Moore <alan.moore@canonical.com>
@alanmcanonical alanmcanonical requested a review from a team as a code owner February 24, 2026 19:23
dodys
dodys approved these changes Feb 25, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@dodys dodys left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm, thanks!

@dodys dodys merged commit 0ef5e55 into ComplianceAsCode:master Feb 25, 2026
51 of 52 checks passed
hdean3 added a commit to hdean3/content that referenced this pull request Feb 26, 2026
@hdean3
[Ubuntu 22.04] Bump STIG profile metadata from V2R3 to V2R7
5e42450 
All V2R7 control PRs (ComplianceAsCode#14427, ComplianceAsCode#14418, ComplianceAsCode#14415, ComplianceAsCode#14416, ComplianceAsCode#14433) were
merged without updating the version metadata fields. This causes STIG
Viewer imports and auditor reports to display V2R3 while the actual
content reflects V2R7 rules.

Updated files:
- controls/stig_ubuntu2204.yml: version V2R3 → V2R7
- products/ubuntu2204/profiles/stig.profile: version, title, and
  description strings V2R3 → V2R7
@hdean3 hdean3 mentioned this pull request Feb 26, 2026
Merged
@mpurg mpurg added the STIG STIG Benchmark related. label Feb 27, 2026
@alanmcanonical alanmcanonical mentioned this pull request Mar 11, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dodys dodys dodys approved these changes

@matusmarhefka matusmarhefka Awaiting requested review from matusmarhefka

@Mab879 Mab879 Awaiting requested review from Mab879

@vojtapolasek vojtapolasek Awaiting requested review from vojtapolasek

@jan-cerny jan-cerny Awaiting requested review from jan-cerny

Assignees

@dodys dodys

Labels

needs-ok-to-test Used by openshift-ci bot. STIG STIG Benchmark related. Ubuntu Ubuntu product related.

Projects

None yet

Milestone

0.1.81

Development

Successfully merging this pull request may close these issues.

3 participants

@alanmcanonical @dodys @mpurg