RedHat Content
Warning Notice
Do not attempt to implement any of the settings without first testing them in a non-operational environment. These recommendations have only been tested on Red Hat Enterprise Linux Desktop (v. 5 for 32-bit x86) and Red Hat Enterprise Linux Desktop (v. 5 for 64-bit x86_64). These settings may be applicable to other Red Hat systems; however NIST has not tested other Red Hat based systems with these settings. Please see the National Checklist Program (NCP) website for configuration guides related to other Red Hat based systems.
The draft download packages contain recommended security settings; they are not meant to replace well-structured policy or sound judgment. Furthermore, these recommendations do not address site-specific configuration issues. Care must be taken when implementing these settings to address local operational and policy concerns.
These recommendations were developed at the National Institute of Standards and Technology, which collaborated with DoD and Red Hat to produce the Red Hat Enterprise Linux Desktop 5 USGCB candidate. Pursuant to title 17 Section 105 of the United States Code, these recommendations are not subject to copyright protection and are in the public domain. NIST assumes no responsibility whatsoever for their use by other parties, and makes no guarantees, expressed or implied, about their quality, reliability, or any other characteristic. We would appreciate acknowledgement if the recommendations are used.
Bulk Download Packages
The following sections provide the aggregate downloads of the USGCB content
for Red Hat Enterprise Linux 5 Desktop.
SCAP Content
USGCB 1.2.5.0 SCAP 1.1 Content
Please refer to the RHEL 5 Desktop Content Page for the latest USGCB SCAP Content and associated hash values.
Documentation
USGCB 1.2.5.0 Settings
SHA-256: 4dccc0d92fe77175c92f1b611589dd0440cf3504c6f4a434928ee212d39be191
Size (MB): 0.17
Last Modified: 01/17/2014
USGCB 1.2.5.0 Known Issues
SHA-256: 0b6ec3b46598d56dcab3aa10c4951ad28b48830de330d9e59a0d105e4650764f
Size (MB): 0.07
Last Modified: 01/17/2014
Configuration Support
Kickstart
Please refer to the RHEL 5 Desktop Content Page
for the latest USGCB Kickstart configuration and associated hash values.
Puppet Modules
Please refer to the RHEL 5 Desktop Content Page
for the latest USGCB Puppet Modules and associated hash values.
CCE to 800-53 Mappings
Please refer to the individual product content pages for the Machine-readable CCE to 800-53 Mappings.
Update History
| Date |
Documentation |
Configuration Support |
SCAP Content |
CCE to 800-53 Mappings |
| January 17, 2014 |
No changes |
No changes |
1.2.5.0 USGCB OVAL 5.8 content posted. |
No changes |
| December 17, 2013 |
No changes |
No changes |
1.1.5.0 USGCB OVAL 5.8 content posted. |
No changes |
| November 08, 2011 |
No changes |
No changes |
1.0.5.0 USGCB OVAL 5.8 content posted. |
No changes |
| September 30, 2011 |
1.0.5.0 Settings and Known Issues released |
1.0.5.0 Kickstart configuration released |
1.0.5.0 USGCB OVAL 5.8 content released |
No changes |
| July 26, 2011 |
No changes |
Beta-Candidate Puppet Modules updated |
No changes |
No changes |
| March 31, 2011 |
No changes |
Beta-Candidate Kickstart configuration released |
No changes |
No changes |
| March 29, 2011 |
Beta-Candidate Settings and Known Issues released |
Beta-Candidate Puppet Modules released |
Beta-Candidate USGCB OVAL 5.8 content released |
No changes |
| February 28, 2011 |
Alpha-Candidate Settings and Known Issues released |
Alpha-Candidate Kickstart configuration and Puppet Modules released |
Alpha-Candidate USGCB OVAL 5.4 content released. Future releases will use OVAL 5.8 constructs. Patch content is produced and hosted by Red Hat. |
No changes |