-
Notifications
You must be signed in to change notification settings - Fork 32
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Manual testing - Modify Amazon Linux 2 SCA policy to resolve typo on control 1.1.22 and EMPTY_LINE conditions #3014
Comments
Conclusions 🟡We can affirm that the development has solved wazuh/wazuh#13744, in addition, it has not included any error in the controls specified in the issue test case However, it seems that the |
Preconditions
Test CasesEnsure sticky bit is set on all world-writable directories 🟢/tmp directory:
Ensure XD/NX support is enabled 🔴The
After this, we restart our agent host.
If we check the control, it uses the following rules:
Regarding the first rule, If we have disabled this option manually and we check the journalctl log using
As we can see, there are multiple logs that fit the regex, so, the regex will always match, even if we have manually disabled the
Ensure iptables are flushed with nftables 🟢
Policy doesn't create the /dev/nul file 🟢After multiple scans, no |
The following issue has been created to report a failure with the check "Ensure XD/ND support is enabled it is not precise enough" Here can be found the pull request associated with the requested changes. Once the new made changes are approved, all related changes related to this manual testing issue will be approved. |
New changes have been tested here. Tested changes are approved 🟢 . |
Test cases
Using an Amazon Linux 2 system running a wazuh-agent we need to verify at least:
/dev/nul
fileThe text was updated successfully, but these errors were encountered: