Compare ds

[ggbecker]

Description:

• Description here. Replace this text. Don't use the italics format!

Rationale:

• Rationale here. Replace this text. Don't use the italics format!

• Fixes # Issue number here (e.g. Shellcheck #26) or remove this line if no issue exists.

[github-actions]

This datastream diff is auto generated by the check Compare DS/Generate Diff

Click here to see the full diff

Rule 'xccdf_org.ssgproject.content_rule_security_patches_up_to_date' points to 'security-data-oval-com.redhat.rhsa-RHEL8.xml' which isn't a part of the old datastream
bash remediation for rule 'xccdf_org.ssgproject.content_rule_sshd_enable_strictmodes' differs:
--- old datastream
+++ new datastream
@@ -13,10 +13,10 @@
 if [ -z "$line_number" ]; then
 # There was no match of '^Match', insert at
 # the end of the file.
- printf '%s\n' "StrictModes yes" >> "/etc/ssh/sshd_config"
+ printf '%s\n' "StrictModes no" >> "/etc/ssh/sshd_config"
 else
 head -n "$(( line_number - 1 ))" "/etc/ssh/sshd_config.bak" > "/etc/ssh/sshd_config"
- printf '%s\n' "StrictModes yes" >> "/etc/ssh/sshd_config"
+ printf '%s\n' "StrictModes no" >> "/etc/ssh/sshd_config"
 tail -n "+$(( line_number ))" "/etc/ssh/sshd_config.bak" >> "/etc/ssh/sshd_config"
 fi
 # Clean up after ourselves.

ansible remediation for rule 'xccdf_org.ssgproject.content_rule_sshd_enable_strictmodes' differs:
--- old datastream
+++ new datastream
@@ -24,7 +24,7 @@
 path: /etc/ssh/sshd_config
 create: true
 regexp: (?i)^\s*StrictModes\s+
- line: StrictModes yes
+ line: StrictModes no
 state: present
 insertbefore: ^[#\s]*Match
 validate: /usr/sbin/sshd -t -f %s