diff --git a/components/apparmor-utils.yml b/components/apparmor-utils.yml new file mode 100644 index 00000000000..05679e006f2 --- /dev/null +++ b/components/apparmor-utils.yml @@ -0,0 +1,7 @@ +groups: +- apparmor-utils +name: apparmor-utils +packages: +- apparmor-utils +rules: +- package_apparmor-utils_installed diff --git a/components/apparmor.yml b/components/apparmor.yml index 1bdf6b5fe86..9f2e000260e 100644 --- a/components/apparmor.yml +++ b/components/apparmor.yml @@ -10,4 +10,5 @@ rules: - apparmor_configured - grub2_enable_apparmor - package_apparmor_installed +- package_apparmor-utils_installed - package_pam_apparmor_installed diff --git a/controls/cis_ubuntu2404.yml b/controls/cis_ubuntu2404.yml index 74a2cee01e6..f33a15a7d6a 100644 --- a/controls/cis_ubuntu2404.yml +++ b/controls/cis_ubuntu2404.yml @@ -368,11 +368,11 @@ controls: levels: - l1_server - l1_workstation - related_rules: + rules: - package_apparmor_installed - status: planned - notes: TODO. Partial/incorrect implementation exists.See related rules. Analogous to ubuntu2204/1.6.1.1. - + - package_apparmor-utils_installed + status: automated + - id: 1.3.1.2 title: Ensure AppArmor is enabled in the bootloader configuration (Automated) levels: diff --git a/linux_os/guide/system/apparmor/package_apparmor-utils_installed/rule.yml b/linux_os/guide/system/apparmor/package_apparmor-utils_installed/rule.yml new file mode 100644 index 00000000000..51b4d38de4f --- /dev/null +++ b/linux_os/guide/system/apparmor/package_apparmor-utils_installed/rule.yml @@ -0,0 +1,17 @@ +documentation_complete: true + +title: 'Ensure AppArmor Utils is installed' + +description: |- + AppArmor provide Mandatory Access Controls. + +rationale: |- + Without a Mandatory Access Control system installed only the default + Discretionary Access Control system will be available. + +severity: medium + +template: + name: package_installed + vars: + pkgname: apparmor-utils