|
|
426d6a0 |
Name: scap-security-guide
|
|
|
5c606e9 |
Version: 0.1.49
|
|
|
ab2790c |
Release: 1%{?dist}
|
|
|
426d6a0 |
Summary: Security guidance and baselines in SCAP formats
|
|
|
8649d09 |
License: BSD-3-Clause
|
|
|
ab2790c |
URL: https://github.com/ComplianceAsCode/content/
|
|
|
ab2790c |
Source0: https://github.com/ComplianceAsCode/content/releases/download/v%{version}/scap-security-guide-%{version}.tar.bz2
|
|
|
426d6a0 |
BuildArch: noarch
|
|
Martin Preisler |
3a4ccfa |
|
|
|
9e09b6e |
BuildRequires: libxslt, expat, python3, openscap-scanner >= 1.2.5, cmake >= 3.8, python3-jinja2, python3-PyYAML
|
|
Martin Preisler |
3a4ccfa |
Requires: xml-common, openscap-scanner >= 1.2.5
|
|
|
fda0ca8 |
Obsoletes: openscap-content < 0:0.9.13
|
|
|
4d818e1 |
Provides: openscap-content
|
|
|
426d6a0 |
|
|
|
426d6a0 |
%description
|
|
|
426d6a0 |
The scap-security-guide project provides a guide for configuration of the
|
|
|
426d6a0 |
system from the final system's security point of view. The guidance is specified
|
|
|
426d6a0 |
in the Security Content Automation Protocol (SCAP) format and constitutes
|
|
|
426d6a0 |
a catalog of practical hardening advice, linked to government requirements
|
|
|
426d6a0 |
where applicable. The project bridges the gap between generalized policy
|
|
|
426d6a0 |
requirements and specific implementation guidelines. The Fedora system
|
|
|
6d9587a |
administrator can use the oscap CLI tool from openscap-scanner package, or the
|
|
|
426d6a0 |
scap-workbench GUI tool from scap-workbench package to verify that the system
|
|
|
426d6a0 |
conforms to provided guideline. Refer to scap-security-guide(8) manual page for
|
|
|
426d6a0 |
further information.
|
|
|
426d6a0 |
|
|
|
ffb3d08 |
%package doc
|
|
|
0d4d055 |
Summary: HTML formatted security guides generated from XCCDF benchmarks
|
|
|
ffb3d08 |
Requires: %{name} = %{version}-%{release}
|
|
|
ffb3d08 |
|
|
|
ffb3d08 |
%description doc
|
|
|
ffb3d08 |
The %{name}-doc package contains HTML formatted documents containing
|
|
|
ffb3d08 |
hardening guidances that have been generated from XCCDF benchmarks
|
|
|
ffb3d08 |
present in %{name} package.
|
|
|
ffb3d08 |
|
|
|
426d6a0 |
%prep
|
|
Martin Preisler |
d086af7 |
%setup -q
|
|
|
875bc33 |
mkdir build
|
|
|
426d6a0 |
|
|
|
426d6a0 |
%build
|
|
|
875bc33 |
cd build
|
|
|
875bc33 |
%cmake ../
|
|
Martin Preisler |
fdb3a02 |
%make_build
|
|
|
426d6a0 |
|
|
|
426d6a0 |
%install
|
|
|
875bc33 |
cd build
|
|
Martin Preisler |
fdb3a02 |
%make_install
|
|
|
ffb3d08 |
|
|
|
426d6a0 |
%files
|
|
Martin Preisler |
3a4ccfa |
%{_datadir}/xml/scap/ssg/content
|
|
|
3f797b1 |
%{_datadir}/%{name}/kickstart
|
|
|
875bc33 |
%{_datadir}/%{name}/ansible
|
|
|
875bc33 |
%{_datadir}/%{name}/bash
|
|
Martin Preisler |
3a4ccfa |
%lang(en) %{_mandir}/man8/scap-security-guide.8.*
|
|
|
ffb3d08 |
%doc %{_docdir}/%{name}/LICENSE
|
|
|
ffb3d08 |
%doc %{_docdir}/%{name}/README.md
|
|
Martin Preisler |
3a4ccfa |
%doc %{_docdir}/%{name}/Contributors.md
|
|
|
426d6a0 |
|
|
|
ffb3d08 |
%files doc
|
|
|
ffb3d08 |
%doc %{_docdir}/%{name}/guides/*.html
|
|
|
c6b8585 |
%doc %{_docdir}/%{name}/tables/*.html
|
|
|
fda0ca8 |
|
|
|
426d6a0 |
%changelog
|
|
|
5c606e9 |
* Mon Mar 23 2020 Watson Sato <wsato@redhat.com> - 0.1.49-1
|
|
|
5c606e9 |
- Update to latest upstream SCAP-Security-Guide-0.1.49 release:
|
|
|
5c606e9 |
https://github.com/ComplianceAsCode/content/releases/tag/v0.1.49
|
|
|
5c606e9 |
|
|
|
2754e18 |
* Thu Jan 16 2020 Watson Sato <wsato@redhat.com> - 0.1.48-1
|
|
|
2754e18 |
- Update to latest upstream SCAP-Security-Guide-0.1.48 release:
|
|
|
2754e18 |
https://github.com/ComplianceAsCode/content/releases/tag/v0.1.48
|
|
|
2754e18 |
|
|
|
4cd33c0 |
* Tue Nov 05 2019 Watson Sato <wsato@redhat.com> - 0.1.47-1
|
|
|
4cd33c0 |
- Update to latest upstream SCAP-Security-Guide-0.1.47 release:
|
|
|
4cd33c0 |
https://github.com/ComplianceAsCode/content/releases/tag/v0.1.47
|
|
|
4cd33c0 |
|
|
|
1a203b4 |
* Mon Jul 29 2019 Watson Sato <wsato@redhat.com> - 0.1.45-1
|
|
|
1a203b4 |
- Update to latest upstream SCAP-Security-Guide-0.1.45 release:
|
|
|
1a203b4 |
https://github.com/ComplianceAsCode/content/releases/tag/v0.1.45
|
|
|
1a203b4 |
|
|
|
e4fecb2 |
* Mon May 06 2019 Watson Yuuma Sato <wsato@redhat.com> - 0.1.44-1
|
|
|
e4fecb2 |
- Update to latest upstream SCAP-Security-Guide-0.1.44 release:
|
|
|
e4fecb2 |
https://github.com/ComplianceAsCode/content/releases/tag/v0.1.44
|
|
|
e4fecb2 |
|
|
|
ab2790c |
* Fri Feb 22 2019 Watson Yuuma Sato <wsato@redhat.com> - 0.1.43-1
|
|
|
ab2790c |
- Update to latest upstream SCAP-Security-Guide-0.1.43 release:
|
|
|
ab2790c |
https://github.com/ComplianceAsCode/content/releases/tag/v0.1.43
|
|
|
ab2790c |
- Update URL and source URL
|
|
|
ab2790c |
|
|
|
29a9c19 |
* Sat Feb 02 2019 Fedora Release Engineering <releng@fedoraproject.org> - 0.1.42-2
|
|
|
29a9c19 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
|
|
|
29a9c19 |
|
|
|
a4703bf |
* Wed Dec 12 2018 Watson Yuuma Sato <wsato@redhat.com> - 0.1.42-1
|
|
|
a4703bf |
- Update to latest upstream SCAP-Security-Guide-0.1.42 release:
|
|
|
a4703bf |
https://github.com/ComplianceAsCode/content/releases/tag/v0.1.42
|
|
|
5781d0c |
- Fix man page build dependency on derivative content
|
|
|
a4703bf |
|
|
|
8649d09 |
* Mon Oct 01 2018 Watson Yuuma Sato <wsato@redhat.com> - 0.1.41-1
|
|
|
8649d09 |
- Update to latest upstream SCAP-Security-Guide-0.1.41 release:
|
|
|
8649d09 |
https://github.com/ComplianceAsCode/content/releases/tag/v0.1.41
|
|
|
b954eaa |
- Fix Licence of this package
|
|
|
8649d09 |
|
|
|
9e09b6e |
* Wed Jul 25 2018 Matěj Týč <matyc@redhat.com> - 0.1.40-1
|
|
|
9e09b6e |
- Update to latest upstream SCAP-Security-Guide-0.1.40 release:
|
|
|
9e09b6e |
https://github.com/OpenSCAP/scap-security-guide/releases/tag/v0.1.40
|
|
|
9e09b6e |
- Update to use Python3 for build.
|
|
|
9e09b6e |
|
|
|
183c53a |
* Sat Jul 14 2018 Fedora Release Engineering <releng@fedoraproject.org> - 0.1.39-3
|
|
|
183c53a |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
|
|
|
183c53a |
|
|
|
94e9092 |
* Fri May 04 2018 Watson Yuuma Sato <wsato@redhat.com> - 0.1.39-2
|
|
|
94e9092 |
- Add python version to python2-jinja2 package
|
|
|
94e9092 |
|
|
|
261855b |
* Fri May 04 2018 Watson Yuuma Sato <wsato@redhat.com> - 0.1.39-1
|
|
|
261855b |
- Update to latest upstream SCAP-Security-Guide-0.1.39 release:
|
|
|
261855b |
https://github.com/OpenSCAP/scap-security-guide/releases/tag/v0.1.39
|
|
|
261855b |
|
|
|
c50319a |
* Mon Mar 05 2018 Watson Yuuma Sato <wsato@redhat.com> - 0.1.38-2
|
|
|
c50319a |
- Add python version to python package prefixes
|
|
|
c50319a |
|
|
|
a96810a |
* Mon Mar 05 2018 Watson Yuuma Sato <wsato@redhat.com> - 0.1.38-1
|
|
|
a96810a |
- Update to latest upstream SCAP-Security-Guide-0.1.38 release:
|
|
|
a96810a |
https://github.com/OpenSCAP/scap-security-guide/releases/tag/v0.1.38
|
|
|
a96810a |
|
|
|
a08999d |
* Fri Feb 09 2018 Fedora Release Engineering <releng@fedoraproject.org> - 0.1.37-2
|
|
|
a08999d |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
|
|
|
a08999d |
|
|
|
a4e4c07 |
* Thu Jan 04 2018 Watson Yuuma Sato <wsato@redhat.com> - 0.1.37-1
|
|
|
a4e4c07 |
- Update to latest upstream SCAP-Security-Guide-0.1.37 release:
|
|
|
a4e4c07 |
https://github.com/OpenSCAP/scap-security-guide/releases/tag/v0.1.37
|
|
|
a4e4c07 |
|
|
|
c6b8585 |
* Wed Nov 01 2017 Watson Yuuma Sato <wsato@redhat.com> - 0.1.36-1
|
|
|
c6b8585 |
- Update to latest upstream SCAP-Security-Guide-0.1.36 release:
|
|
|
c6b8585 |
https://github.com/OpenSCAP/scap-security-guide/releases/tag/v0.1.36
|
|
|
c6b8585 |
|
|
|
5213798 |
* Tue Aug 29 2017 Watson Sato <wsato@redhat.com> - 0.1.35-1
|
|
|
5213798 |
- Update to latest upstream SCAP-Security-Guide-0.1.35 release:
|
|
|
5213798 |
https://github.com/OpenSCAP/scap-security-guide/releases/tag/v0.1.35
|
|
|
5213798 |
|
|
|
a0ac4da |
* Thu Jul 27 2017 Fedora Release Engineering <releng@fedoraproject.org> - 0.1.34-2
|
|
|
a0ac4da |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
|
|
|
a0ac4da |
|
|
|
875bc33 |
* Mon Jul 03 2017 Watson Sato <wsato@redhat.com> - 0.1.34-1
|
|
|
875bc33 |
- updated to latest upstream release
|
|
|
875bc33 |
|
|
Martin Preisler |
0950917 |
* Mon May 01 2017 Martin Preisler <mpreisle@redhat.com> - 0.1.33-1
|
|
Martin Preisler |
0950917 |
- updated to latest upstream release
|
|
Martin Preisler |
0950917 |
|
|
Martin Preisler |
3a4ccfa |
* Thu Mar 30 2017 Martin Preisler <mpreisle@redhat.com> - 0.1.32-1
|
|
Martin Preisler |
3a4ccfa |
- updated to latest upstream release
|
|
Martin Preisler |
3a4ccfa |
|
|
|
f939429 |
* Sat Feb 11 2017 Fedora Release Engineering <releng@fedoraproject.org> - 0.1.31-3
|
|
|
f939429 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
|
|
|
f939429 |
|
|
Martin Preisler |
fdb3a02 |
* Mon Nov 28 2016 Martin Preisler <mpreisle@redhat.com> - 0.1.31-2
|
|
Martin Preisler |
fdb3a02 |
- use make_build and make_install RPM macros
|
|
Martin Preisler |
fdb3a02 |
|
|
Martin Preisler |
d086af7 |
* Mon Nov 28 2016 Martin Preisler <mpreisle@redhat.com> - 0.1.31-1
|
|
Martin Preisler |
d086af7 |
- update to the latest upstream release
|
|
Martin Preisler |
d086af7 |
- new default location for content /usr/share/scap/ssg
|
|
Martin Preisler |
d086af7 |
- install HTML tables in the doc subpackage
|
|
Martin Preisler |
d086af7 |
|
|
|
34ff3c5 |
* Mon Jun 27 2016 Jan iankko Lieskovsky <jlieskov@redhat.com> - 0.1.30-2
|
|
|
34ff3c5 |
- Correct currently failing parallel SCAP Security Guide build
|
|
|
34ff3c5 |
|
|
|
3f797b1 |
* Mon Jun 27 2016 Jan iankko Lieskovsky <jlieskov@redhat.com> - 0.1.30-1
|
|
|
3f797b1 |
- Update to latest upstream SCAP-Security-Guide-0.1.30 release:
|
|
|
3f797b1 |
https://github.com/OpenSCAP/scap-security-guide/releases/tag/v0.1.30
|
|
|
3f797b1 |
- Drop shell library for remediation functions since it is not required
|
|
|
3f797b1 |
starting from 0.1.30 release any more
|
|
|
3f797b1 |
|
|
|
80673cf |
* Thu May 05 2016 Jan iankko Lieskovsky <jlieskov@redhat.com> - 0.1.29-1
|
|
|
80673cf |
- Update to latest upstream SCAP-Security-Guide-0.1.29 release:
|
|
|
80673cf |
https://github.com/OpenSCAP/scap-security-guide/releases/tag/v0.1.29
|
|
|
7ab0b3e |
- Do not ship Firefox/DISCLAIMER documentation file since it has been removed
|
|
|
7ab0b3e |
in 0.1.29 upstream release
|
|
|
80673cf |
|
|
|
f5eee04 |
* Thu Feb 04 2016 Fedora Release Engineering <releng@fedoraproject.org> - 0.1.28-2
|
|
|
f5eee04 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
|
|
|
f5eee04 |
|
|
|
e81a595 |
* Wed Jan 20 2016 Šimon Lukašík <slukasik@redhat.com> - 0.1.28-1
|
|
|
e81a595 |
- upgrade to the latest upstream release
|
|
|
e81a595 |
|
|
|
aa2799d |
* Fri Dec 11 2015 Šimon Lukašík <slukasik@redhat.com> - 0.1.27-1
|
|
|
aa2799d |
- update to the latest upstream release
|
|
|
aa2799d |
|
|
|
a8b94e9 |
* Tue Oct 20 2015 Šimon Lukašík <slukasik@redhat.com> - 0.1.26-1
|
|
|
a8b94e9 |
- update to the latest upstream release
|
|
|
a8b94e9 |
|
|
|
3a42be4 |
* Sat Sep 05 2015 Šimon Lukašík <slukasik@redhat.com> - 0.1.25-1
|
|
|
3a42be4 |
- update to the latest upstream release
|
|
|
3a42be4 |
|
|
|
ffb3d08 |
* Thu Jul 09 2015 Šimon Lukašík <slukasik@redhat.com> - 0.1.24-1
|
|
|
ffb3d08 |
- update to the latest upstream release
|
|
|
ffb3d08 |
- created doc sub-package to ship all the guides
|
|
|
ffb3d08 |
- start distributing centos and scientific linux content
|
|
|
ffb3d08 |
- rename java content to jre
|
|
|
ffb3d08 |
|
|
|
f43c42b |
* Fri Jun 19 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.1.22-2
|
|
|
f43c42b |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
|
|
|
f43c42b |
|
|
|
f024d80 |
* Tue May 05 2015 Šimon Lukašík <slukasik@redhat.com> - 0.1.22-1
|
|
|
f024d80 |
- update to the latest upstream release
|
|
|
2c625f0 |
- only DataStream file is now available for Fedora
|
|
|
404d912 |
- start distributing security baseline for Firefox
|
|
|
404d912 |
- start distributing security baseline for Java RunTime deployments
|
|
|
f024d80 |
|
|
|
6b23eba |
* Wed Mar 04 2015 Šimon Lukašík <slukasik@redhat.com> - 0.1.21-1
|
|
|
6b23eba |
- update to the latest upstream release
|
|
|
e196ca6 |
- move content to /usr/share/scap/ssg/content
|
|
|
6b23eba |
|
|
|
57b107c |
* Thu Oct 02 2014 Šimon Lukašík <slukasik@redhat.com> - 0.1.19-1
|
|
|
57b107c |
- update to the latest upstream release
|
|
|
57b107c |
|
|
|
6d9587a |
* Mon Jul 14 2014 Šimon Lukašík <slukasik@redhat.com> - 0.1.5-4
|
|
|
6d9587a |
- require only openscap-scanner, not whole openscap-utils package
|
|
|
6d9587a |
|
|
|
cdbf042 |
* Tue Jul 01 2014 Šimon Lukašík <slukasik@redhat.com> - 0.1.5-3
|
|
|
cdbf042 |
- Rebase the RHEL part of SSG to the latest upstream version (0.1.18)
|
|
|
3075ec2 |
- Add STIG DISCLAIMER to the shipped documentation
|
|
|
cdbf042 |
|
|
|
a6ba623 |
* Sun Jun 08 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.1.5-2
|
|
|
a6ba623 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
|
|
|
a6ba623 |
|
|
|
4da2b2b |
* Thu Feb 27 2014 Jan iankko Lieskovsky <jlieskov@redhat.com> 0.1.5-1
|
|
|
4da2b2b |
- Fix fedora-srpm and fedora-rpm Make targets to work again
|
|
|
4da2b2b |
- Include RHEL-6 and RHEL-7 datastream files to support remote RHEL system scans
|
|
|
4da2b2b |
- EOL for Fedora 18 support
|
|
|
4da2b2b |
- Include Fedora datastream file for remote Fedora system scans
|
|
|
4da2b2b |
|
|
|
4d818e1 |
* Mon Jan 06 2014 Jan iankko Lieskovsky <jlieskov@redhat.com> 0.1.4-2
|
|
|
4d818e1 |
- Drop -compat package, provide openscap-content directly (RH BZ#1040335#c14)
|
|
|
4d818e1 |
|
|
|
fda0ca8 |
* Fri Dec 20 2013 Jan iankko Lieskovsky <jlieskov@redhat.com> 0.1.4-1
|
|
|
fda0ca8 |
- Fix remediation for sshd set keepalive (ClientAliveCountMax) and move
|
|
|
fda0ca8 |
it to /shared
|
|
|
fda0ca8 |
- Add shared remediations for sshd disable empty passwords and
|
|
|
fda0ca8 |
sshd set idle timeout
|
|
|
fda0ca8 |
- Shared remediation for sshd disable root login
|
|
|
fda0ca8 |
- Add empty -compat subpackage to ensure backward-compatibility with
|
|
|
fda0ca8 |
openscap-content and firstaidkit-plugin-openscap packages (RH BZ#1040335)
|
|
|
fda0ca8 |
- OVAL check for sshd disable root login
|
|
|
fda0ca8 |
- Fix typo in OVAL check for sshd disable empty passwords
|
|
|
fda0ca8 |
- OVAL check for sshd disable empty passwords
|
|
|
fda0ca8 |
- Unselect no shelllogin for systemaccounts rule from being run by default
|
|
|
fda0ca8 |
- Rename XCCDF rules
|
|
|
fda0ca8 |
- Revert Set up Fedora release name and CPE based on build system properties
|
|
|
fda0ca8 |
- Shared OVAL check for Verify that Shared Library Files Have Root Ownership
|
|
|
fda0ca8 |
- Shared OVAL check for Verify that System Executables Have Restrictive Permissions
|
|
|
fda0ca8 |
- Shared OVAL check for Verify that System Executables Have Root Ownership
|
|
|
fda0ca8 |
- Shared OVAL check for Verify that Shared Library Files Have Restrictive
|
|
|
fda0ca8 |
Permissions
|
|
|
fda0ca8 |
- Fix remediation for Disable Prelinking rule
|
|
|
fda0ca8 |
- OVAL check and remediation for sshd's ClientAliveCountMax rule
|
|
|
fda0ca8 |
- OVAL check for sshd's ClientAliveInterval rule
|
|
|
fda0ca8 |
- Include descriptions for permissions section, and rules for checking
|
|
|
fda0ca8 |
permissions and ownership of shared library files and system executables
|
|
|
fda0ca8 |
- Disable selected rules by default
|
|
|
fda0ca8 |
- Add remediation for Disable Prelinking rule
|
|
|
fda0ca8 |
- Adjust service-enable-macro, service-disable-macro XSLT transforms
|
|
|
fda0ca8 |
definition to evaluate to proper systemd syntax
|
|
|
fda0ca8 |
- Fix service_ntpd_enabled OVAL check make validate to pass again
|
|
|
fda0ca8 |
- Include patch from Šimon Lukašík to obsolete openscap-content
|
|
|
fda0ca8 |
package (RH BZ#1028706)
|
|
|
fda0ca8 |
- Add OVAL check to test if there's is remote NTP server configured for
|
|
|
fda0ca8 |
time data
|
|
|
fda0ca8 |
- Add system settings section for the guide (to track system wide
|
|
|
fda0ca8 |
hardening configurations)
|
|
|
fda0ca8 |
- Include disable prelink rule and OVAL check for it
|
|
|
fda0ca8 |
- Initial OVAL check if ntpd service is enabled. Add package_installed
|
|
|
fda0ca8 |
OVAL templating directory structure and functionality.
|
|
|
fda0ca8 |
- Include services section, and XCCDF description for selected ntpd's
|
|
|
fda0ca8 |
sshd's service rules
|
|
|
fda0ca8 |
- Include remediations for login.defs' based password minimum, maximum and
|
|
|
fda0ca8 |
warning age rules
|
|
|
fda0ca8 |
- Include directory structure to support remediations
|
|
|
fda0ca8 |
- Add SCAP "replace or append pattern value in text file based on variable"
|
|
|
fda0ca8 |
remediation script generator
|
|
|
fda0ca8 |
- Add remediation for "Set Password Minimum Length in login.defs" rule
|
|
|
fda0ca8 |
|
|
|
fda0ca8 |
* Mon Nov 18 2013 Jan iankko Lieskovsky <jlieskov@redhat.com> 0.1.3-1
|
|
|
fda0ca8 |
- Update versioning scheme - move fedorassgrelease to be part of
|
|
|
fda0ca8 |
upstream version. Rename it to fedorassgversion to avoid name collision
|
|
|
fda0ca8 |
with Fedora package release.
|
|
|
76c9a91 |
|
|
|
426d6a0 |
* Tue Oct 22 2013 Jan iankko Lieskovsky <jlieskov@redhat.com> 0.1-3
|
|
|
426d6a0 |
- Add .gitignore for Fedora output directory
|
|
|
426d6a0 |
- Set up Fedora release name and CPE based on build system properties
|
|
|
426d6a0 |
- Use correct file paths in scap-security-guide(8) manual page
|
|
|
426d6a0 |
(RH BZ#1018905, c#10)
|
|
|
426d6a0 |
- Apply further changes motivated by scap-security-guide Fedora RPM review
|
|
|
426d6a0 |
request (RH BZ#1018905, c#8):
|
|
|
426d6a0 |
* update package description,
|
|
|
426d6a0 |
* make content files to be owned by the scap-security-guide package,
|
|
|
426d6a0 |
* remove Fedora release number from generated content files,
|
|
|
426d6a0 |
* move HTML form of the guide under the doc directory (together
|
|
|
426d6a0 |
with that drop fedora/content subdir and place the content
|
|
|
426d6a0 |
directly under fedora/ subdir).
|
|
|
426d6a0 |
- Fixes for scap-security-guide Fedora RPM review request (RH BZ#1018905):
|
|
|
426d6a0 |
* drop Fedora release from package provided files' final path (c#5),
|
|
|
426d6a0 |
* drop BuildRoot, selected Requires:, clean section, drop chcon for
|
|
|
426d6a0 |
manual page, don't gzip man page (c#4),
|
|
|
426d6a0 |
* change package's description (c#4),
|
|
|
426d6a0 |
* include PD license text (#c4).
|
|
|
426d6a0 |
|
|
|
426d6a0 |
* Mon Oct 14 2013 Jan iankko Lieskovsky <jlieskov@redhat.com> 0.1-2
|
|
|
426d6a0 |
- Provide manual page for scap-security-guide
|
|
|
426d6a0 |
- Remove percent sign from spec's changelog to silence rpmlint warning
|
|
|
426d6a0 |
- Convert RHEL6 'Restrict Root Logins' section's rules to Fedora
|
|
|
426d6a0 |
- Convert RHEL6 'Set Password Expiration Parameter' rules to Fedora
|
|
|
426d6a0 |
- Introduce 'Account and Access Control' section
|
|
|
426d6a0 |
- Convert RHEL6 'Verify Proper Storage and Existence of Password Hashes' section's
|
|
|
426d6a0 |
rules to Fedora
|
|
|
426d6a0 |
- Set proper name of the build directory in the spec's setup macro.
|
|
|
426d6a0 |
- Replace hard-coded paths with macros. Preserve attributes when copying files.
|
|
|
426d6a0 |
|
|
|
426d6a0 |
* Tue Sep 17 2013 Jan iankko Lieskovsky <jlieskov@redhat.com> 0.1-1
|
|
|
426d6a0 |
- Initial Fedora SSG RPM.
|