Evaluation Characteristics

Target machinejupiter
Benchmark URL/home/pvrabec/a/selinux-xccdf.xml
Profile IDxxx
Started at2014-09-11T16:49:42
Finished at2014-09-11T16:49:42
Performed bypvrabec

CPE Platforms

  • cpe:/o:fedoraproject:fedora:20
  • cpe:/o:fedoraproject:fedora:21

Addresses

  • IPv4  127.0.0.1
  • IPv4  10.34.2.214
  • IPv4  192.168.122.1
  • IPv6  0:0:0:0:0:0:0:1
  • IPv6  2620:52:0:2202:2ad2:44ff:fe54:7fa3
  • IPv6  fe80:0:0:0:2ad2:44ff:fe54:7fa3
  • MAC  00:00:00:00:00:00
  • MAC  28:D2:44:54:7F:A3
  • MAC  8E:89:CF:74:FE:ED

Compliance and Scoring

The target system did not satisfy conditions of 1 rules! Please review rule results and consider applying remediation.

Rule result breakdown

2 passed
1 failed
0 other

Failed rules by severity breakdown

0 high
0 medium
1 low
0 other

Score

Scoring systemScoreMaximum%
urn:xccdf:scoring:default66.666664100.000000
66.67%

Rule Overview

TitleSeverityResult
System security settings 1x fail
OpenSSH 1x fail
Read-write homedirslow
fail
Host key authentificationlow
pass
Sysadmin loginlow
pass
Xorg
ABRT

Result Details

Read-write homedirsssh_chroot_rw_homedirs

Read-write homedirs

Rule IDssh_chroot_rw_homedirs
Result
fail
Time2014-09-11T16:49:42
Severitylow
Identifiers and References

Allow ssh with chroot env to read and write files in the user home directories. Expected setting: true

OVAL details

Items violating ssh_chroot_rw_homedirs:

namecurrent statuspending status
ssh_chroot_rw_homedirsfalsefalse
Remediation script:
setsebool -P ssh_chroot_rw_homedirs true
Host key authentificationssh_keysign

Host key authentification

Rule IDssh_keysign
Result
pass
Time2014-09-11T16:49:42
Severitylow
Identifiers and References

Allow host key based authentication. Expected setting: false

Sysadmin loginssh_sysadm_login

Sysadmin login

Rule IDssh_sysadm_login
Result
pass
Time2014-09-11T16:49:42
Severitylow
Identifiers and References

Allow ssh logins as sysadm_r:sysadm_t. Expected setting: false