66 lines
3.1 KiB
Diff
66 lines
3.1 KiB
Diff
From 713bc3b17929d0c73b7898f42fe7935806a3bfff Mon Sep 17 00:00:00 2001
|
|
From: Gabe <redhatrises@gmail.com>
|
|
Date: Tue, 16 Jun 2020 16:04:10 -0600
|
|
Subject: [PATCH] Remove grub documentation links from RHEL7 rationale
|
|
|
|
---
|
|
.../system/bootloader-grub2/grub2_admin_username/rule.yml | 7 -------
|
|
.../guide/system/bootloader-grub2/grub2_password/rule.yml | 7 -------
|
|
.../system/bootloader-grub2/grub2_uefi_password/rule.yml | 7 -------
|
|
3 files changed, 21 deletions(-)
|
|
|
|
diff --git a/linux_os/guide/system/bootloader-grub2/grub2_admin_username/rule.yml b/linux_os/guide/system/bootloader-grub2/grub2_admin_username/rule.yml
|
|
index 2042a17806..63a6a7a83c 100644
|
|
--- a/linux_os/guide/system/bootloader-grub2/grub2_admin_username/rule.yml
|
|
+++ b/linux_os/guide/system/bootloader-grub2/grub2_admin_username/rule.yml
|
|
@@ -24,13 +24,6 @@ description: |-
|
|
|
|
rationale: |-
|
|
Having a non-default grub superuser username makes password-guessing attacks less effective.
|
|
- {{% if product == "rhel7" %}}
|
|
- For more information on how to configure the grub2 superuser account and password,
|
|
- please refer to
|
|
- <ul>
|
|
- <li>{{{ weblink(link="https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/System_Administrators_Guide/sec-Protecting_GRUB_2_with_a_Password.html") }}}</li>.
|
|
- </ul>
|
|
- {{% endif %}}
|
|
|
|
severity: low
|
|
|
|
diff --git a/linux_os/guide/system/bootloader-grub2/grub2_password/rule.yml b/linux_os/guide/system/bootloader-grub2/grub2_password/rule.yml
|
|
index 00cec58c77..985b8727d7 100644
|
|
--- a/linux_os/guide/system/bootloader-grub2/grub2_password/rule.yml
|
|
+++ b/linux_os/guide/system/bootloader-grub2/grub2_password/rule.yml
|
|
@@ -23,13 +23,6 @@ rationale: |-
|
|
users with physical access cannot trivially alter
|
|
important bootloader settings. These include which kernel to use,
|
|
and whether to enter single-user mode.
|
|
- {{% if product == "rhel7" %}}
|
|
- For more information on how to configure the grub2 superuser account and password,
|
|
- please refer to
|
|
- <ul>
|
|
- <li>{{{ weblink(link="https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/System_Administrators_Guide/sec-Protecting_GRUB_2_with_a_Password.html") }}}</li>.
|
|
- </ul>
|
|
- {{% endif %}}
|
|
|
|
severity: high
|
|
|
|
diff --git a/linux_os/guide/system/bootloader-grub2/grub2_uefi_password/rule.yml b/linux_os/guide/system/bootloader-grub2/grub2_uefi_password/rule.yml
|
|
index 954d6f21d0..3ce5a2df13 100644
|
|
--- a/linux_os/guide/system/bootloader-grub2/grub2_uefi_password/rule.yml
|
|
+++ b/linux_os/guide/system/bootloader-grub2/grub2_uefi_password/rule.yml
|
|
@@ -23,13 +23,6 @@ rationale: |-
|
|
users with physical access cannot trivially alter
|
|
important bootloader settings. These include which kernel to use,
|
|
and whether to enter single-user mode.
|
|
- {{% if product == "rhel7" %}}
|
|
- For more information on how to configure the grub2 superuser account and password,
|
|
- please refer to
|
|
- <ul>
|
|
- <li>{{{ weblink(link="https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/System_Administrators_Guide/sec-Protecting_GRUB_2_with_a_Password.html") }}}</li>.
|
|
- </ul>
|
|
- {{% endif %}}
|
|
|
|
severity: medium
|
|
|