Fix UBTU-20-010267 and deprecate STIGs

This commit will fix UBTU-20-010267 by merging the following STIGs due to new STIG rules: UBTU-20-010268, UBTU-20-010270, and UBTU-20-010269.
ComplianceAsCode · Aug 3, 2023 · 5387b17 · 5387b17
1 parent aca37e5
commit 5387b17
Show file tree

Hide file tree

Showing 5 changed files with 7 additions and 11 deletions.
diff --git a/...nfigure_rules/audit_file_deletion_events/audit_rules_file_deletion_events_rename/rule.yml b/...nfigure_rules/audit_file_deletion_events/audit_rules_file_deletion_events_rename/rule.yml
@@ -60,7 +60,7 @@ references:
     stigid@ol8: OL08-00-030361
     stigid@rhel7: RHEL-07-030910
     stigid@rhel8: RHEL-08-030361
-    stigid@ubuntu2004: UBTU-20-010269
+    stigid@ubuntu2004: UBTU-20-010267
 
 {{{ complete_ocil_entry_audit_syscall(syscall="rename") }}}
 

diff --git a/...igure_rules/audit_file_deletion_events/audit_rules_file_deletion_events_renameat/rule.yml b/...igure_rules/audit_file_deletion_events/audit_rules_file_deletion_events_renameat/rule.yml
@@ -59,7 +59,7 @@ references:
     stigid@ol8: OL08-00-030361
     stigid@rhel7: RHEL-07-030910
     stigid@rhel8: RHEL-08-030361
-    stigid@ubuntu2004: UBTU-20-010270
+    stigid@ubuntu2004: UBTU-20-010267
 
 {{{ complete_ocil_entry_audit_syscall(syscall="renameat") }}}
 

diff --git a/...onfigure_rules/audit_file_deletion_events/audit_rules_file_deletion_events_rmdir/rule.yml b/...onfigure_rules/audit_file_deletion_events/audit_rules_file_deletion_events_rmdir/rule.yml
@@ -53,6 +53,7 @@ references:
     stigid@ol8: OL08-00-030361
     stigid@rhel7: RHEL-07-030910
     stigid@rhel8: RHEL-08-030361
+    stigid@ubuntu2004: UBTU-20-010267
 
 {{{ complete_ocil_entry_audit_syscall(syscall="rmdir") }}}
 

diff --git a/...igure_rules/audit_file_deletion_events/audit_rules_file_deletion_events_unlinkat/rule.yml b/...igure_rules/audit_file_deletion_events/audit_rules_file_deletion_events_unlinkat/rule.yml
@@ -59,7 +59,7 @@ references:
     stigid@ol8: OL08-00-030361
     stigid@rhel7: RHEL-07-030910
     stigid@rhel8: RHEL-08-030361
-    stigid@ubuntu2004: UBTU-20-010268
+    stigid@ubuntu2004: UBTU-20-010267
 
 {{{ complete_ocil_entry_audit_syscall(syscall="unlinkat") }}}
 

diff --git a/products/ubuntu2004/profiles/stig.profile b/products/ubuntu2004/profiles/stig.profile
@@ -390,15 +390,10 @@ selections:
 
     # UBTU-20-010267 The Ubuntu operating system must generate audit records for any successful/unsuccessful use of unlink system call.
     - audit_rules_file_deletion_events_unlink
-
-    # UBTU-20-010268 The Ubuntu operating system must generate audit records for any successful/unsuccessful use of unlinkat system call.
-    - audit_rules_file_deletion_events_unlinkat
-
-    # UBTU-20-010269 The Ubuntu operating system must generate audit records for any successful/unsuccessful use of rename system call.
-    - audit_rules_file_deletion_events_rename
-
-    # UBTU-20-010270 The Ubuntu operating system must generate audit records for any successful/unsuccessful use of renameat system call.
+    - audit_rules_file_deletion_events_rmdir
     - audit_rules_file_deletion_events_renameat
+    - audit_rules_file_deletion_events_rename
+    - audit_rules_file_deletion_events_unlinkat
 
     # UBTU-20-010276 The Ubuntu operating system must generate audit records when loading dynamic kernel modules.