|
Packit |
792a06 |
|
|
Packit |
792a06 |
<ds:data-stream-collection xmlns:ds="http://scap.nist.gov/schema/scap/source/1.2" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:cat="urn:oasis:names:tc:entity:xmlns:xml:catalog" id="scap_org.open-scap_collection_from_xccdf_first-xccdf.xml" schematron-version="1.2">
|
|
Packit |
792a06 |
<ds:data-stream id="scap_org.open-scap_datastream_tst" scap-version="1.2" use-case="OTHER">
|
|
Packit |
792a06 |
<ds:checklists>
|
|
Packit |
792a06 |
|
|
Packit |
792a06 |
xlink:href="#scap_org.open-scap_comp_first-xccdf.xml">
|
|
Packit |
792a06 |
<cat:catalog>
|
|
Packit |
792a06 |
|
|
Packit |
792a06 |
uri="#scap_com.example_cref_mycheck"/>
|
|
Packit |
792a06 |
</cat:catalog>
|
|
Packit |
792a06 |
</ds:component-ref>
|
|
Packit |
792a06 |
|
|
Packit |
792a06 |
xlink:href="#scap_org.open-scap_comp_second-xccdf.xml"/>
|
|
Packit |
792a06 |
</ds:checklists>
|
|
Packit |
792a06 |
<ds:checks>
|
|
Packit |
792a06 |
<ds:component-ref id="scap_com.example_cref_mycheck" xlink:href="#scap_com.example_comp_mycheck" />
|
|
Packit |
792a06 |
</ds:checks>
|
|
Packit |
792a06 |
</ds:data-stream>
|
|
Packit |
792a06 |
<ds:component id="scap_org.open-scap_comp_first-xccdf.xml" timestamp="2012-10-10T13:34:54">
|
|
Packit |
792a06 |
<Benchmark xmlns="http://checklists.nist.gov/xccdf/1.2" id="xccdf_moc.elpmaxe.www_benchmark_first">
|
|
Packit |
792a06 |
<status>incomplete</status>
|
|
Packit |
792a06 |
<version>1.0</version>
|
|
Packit |
792a06 |
<Profile id="xccdf_com.example_profile_my_profile">
|
|
Packit |
792a06 |
<title>My testing profile</title>
|
|
Packit |
792a06 |
<description>A profile for testing purposes.</description>
|
|
Packit |
792a06 |
<select selected="true" idref="xccdf_moc.elpmaxe.www_rule_first"/>
|
|
Packit |
792a06 |
<select selected="true" idref="xccdf_com.example_rule_tmp_part"/>
|
|
Packit |
792a06 |
<select selected="true" idref="xccdf_com.example_rule_passwd_min_len"/>
|
|
Packit |
792a06 |
<select selected="true" idref="xccdf_com.example_rule_telnet_not_installed"/>
|
|
Packit |
792a06 |
<select selected="true" idref="xccdf_com.example_rule_iptables_installed"/>
|
|
Packit |
792a06 |
</Profile>
|
|
Packit |
792a06 |
<Profile id="xccdf_com.example_profile_my_profile2">
|
|
Packit |
792a06 |
<title>My testing profile2</title>
|
|
Packit |
792a06 |
<description>Another profile for testing purposes.</description>
|
|
Packit |
792a06 |
<select selected="true" idref="xccdf_com.example_rule_telnet_not_installed"/>
|
|
Packit |
792a06 |
<select selected="true" idref="xccdf_com.example_rule_iptables_installed"/>
|
|
Packit |
792a06 |
</Profile>
|
|
Packit |
792a06 |
<Rule selected="false" id="xccdf_moc.elpmaxe.www_rule_first">
|
|
Packit |
792a06 |
<fix reboot="false" disruption="low" system="urn:xccdf:fix:script:sh">
|
|
Packit |
792a06 |
touch /root/must_exist.txt
|
|
Packit |
792a06 |
</fix>
|
|
Packit |
792a06 |
<check system="http://oval.mitre.org/XMLSchema/oval-definitions-5">
|
|
Packit |
792a06 |
<check-content-ref href="scap-mycheck-oval.xml" name="oval:org.open-scap.f14:def:20000"/>
|
|
Packit |
792a06 |
</check>
|
|
Packit |
792a06 |
</Rule>
|
|
Packit |
792a06 |
<Rule selected="false" id="xccdf_com.example_rule_tmp_part">
|
|
Packit |
792a06 |
<fix reboot="false" disruption="high" system="urn:redhat:anaconda:pre">
|
|
Packit |
792a06 |
part /tmp --mountoptions="nodev,noauto"
|
|
Packit |
792a06 |
</fix>
|
|
Packit |
792a06 |
</Rule>
|
|
Packit |
792a06 |
<Rule selected="false" id="xccdf_com.example_rule_passwd_min_len">
|
|
Packit |
792a06 |
<fix reboot="false" disruption="high" system="urn:redhat:anaconda:pre">
|
|
Packit |
792a06 |
passwd --minlen=10
|
|
Packit |
792a06 |
</fix>
|
|
Packit |
792a06 |
</Rule>
|
|
Packit |
792a06 |
<Rule selected="false" id="xccdf_com.example_rule_telnet_not_installed">
|
|
Packit |
792a06 |
<fix reboot="false" disruption="high" system="urn:redhat:anaconda:pre">
|
|
Packit |
792a06 |
package --remove=telnet
|
|
Packit |
792a06 |
</fix>
|
|
Packit |
792a06 |
</Rule>
|
|
Packit |
792a06 |
<Rule selected="false" id="xccdf_com.example_rule_iptables_installed">
|
|
Packit |
792a06 |
<fix reboot="false" disruption="high" system="urn:redhat:anaconda:pre">
|
|
Packit |
792a06 |
package --add=iptables
|
|
Packit |
792a06 |
</fix>
|
|
Packit |
792a06 |
</Rule>
|
|
Packit |
792a06 |
</Benchmark>
|
|
Packit |
792a06 |
</ds:component>
|
|
Packit |
792a06 |
<ds:component id="scap_org.open-scap_comp_second-xccdf.xml" timestamp="2012-10-10T13:34:54">
|
|
Packit |
792a06 |
<Benchmark xmlns="http://checklists.nist.gov/xccdf/1.2" id="xccdf_moc.elpmaxe.www_benchmark_second">
|
|
Packit |
792a06 |
<status>incomplete</status>
|
|
Packit |
792a06 |
<version>1.0</version>
|
|
Packit |
792a06 |
<Profile id="xccdf_com.example_profile_my_profile3">
|
|
Packit |
792a06 |
<title>My testing profile3</title>
|
|
Packit |
792a06 |
<description>Yet another profile for testing purposes.</description>
|
|
Packit |
792a06 |
<select selected="true" idref="xccdf_moc.elpmaxe.www_rule_second"/>
|
|
Packit |
792a06 |
</Profile>
|
|
Packit |
792a06 |
<Rule selected="true" id="xccdf_moc.elpmaxe.www_rule_second">
|
|
Packit |
792a06 |
<fix reboot="false" disruption="low" system="urn:xccdf:fix:script:sh">
|
|
Packit |
792a06 |
touch /root/must_exist.txt
|
|
Packit |
792a06 |
</fix>
|
|
Packit |
792a06 |
</Rule>
|
|
Packit |
792a06 |
</Benchmark>
|
|
Packit |
792a06 |
</ds:component>
|
|
Packit |
792a06 |
<ds:component id="scap_com.example_comp_mycheck" timestamp="2012-07-20T12:22:58">
|
|
Packit |
792a06 |
<oval_definitions xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:oval-def="http://oval.mitre.org/XMLSchema/oval-definitions-5" xmlns:ind-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#independent" xmlns:oval="http://oval.mitre.org/XMLSchema/oval-common-5" xmlns:lin-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#linux" xmlns:unix-def="http://oval.mitre.org/XMLSchema/oval-definitions-5#unix">
|
|
Packit |
792a06 |
<generator>
|
|
Packit |
792a06 |
<oval:product_name>vim, emacs</oval:product_name>
|
|
Packit |
792a06 |
<oval:schema_version>5.5</oval:schema_version>
|
|
Packit |
792a06 |
<oval:timestamp>2010-08-30T12:00:00-04:00</oval:timestamp>
|
|
Packit |
792a06 |
</generator>
|
|
Packit |
792a06 |
<definitions>
|
|
Packit |
792a06 |
<definition class="compliance" id="oval:org.open-scap.f14:def:20000" version="1">
|
|
Packit |
792a06 |
<metadata>
|
|
Packit |
792a06 |
<title>Ensure that /root/must_exist.txt file exists.</title>
|
|
Packit |
792a06 |
<reference ref_id="TBD" source="CCE"/>
|
|
Packit |
792a06 |
<description>
|
|
Packit |
792a06 |
Testing check.
|
|
Packit |
792a06 |
</description>
|
|
Packit |
792a06 |
</metadata>
|
|
Packit |
792a06 |
<criteria>
|
|
Packit |
792a06 |
<criterion comment="Check /root/must_exist.txt file exists" test_ref="oval:org.open-scap.f14:tst:20000"/>
|
|
Packit |
792a06 |
</criteria>
|
|
Packit |
792a06 |
</definition>
|
|
Packit |
792a06 |
</definitions>
|
|
Packit |
792a06 |
<tests>
|
|
Packit |
792a06 |
|
|
Packit |
792a06 |
comment="Check /root/must_exist.txt file exists" id="oval:org.open-scap.f14:tst:20000" version="1">
|
|
Packit |
792a06 |
<unix-def:object object_ref="oval:org.open-scap.f14:obj:20000"/>
|
|
Packit |
792a06 |
</unix-def:file_test>
|
|
Packit |
792a06 |
</tests>
|
|
Packit |
792a06 |
<objects>
|
|
Packit |
792a06 |
<unix-def:file_object comment="Check existance of /root/must_exist.txt" id="oval:org.open-scap.f14:obj:20000" version="1">
|
|
Packit |
792a06 |
<unix-def:path operation="pattern match">^/root$</unix-def:path>
|
|
Packit |
792a06 |
<unix-def:filename>must_exist.txt</unix-def:filename>
|
|
Packit |
792a06 |
</unix-def:file_object>
|
|
Packit |
792a06 |
</objects>
|
|
Packit |
792a06 |
</oval_definitions>
|
|
Packit |
792a06 |
</ds:component>
|
|
Packit |
792a06 |
</ds:data-stream-collection>
|