remove irrelevant rules from rhel8 and rhel9 pci-dss profile

vojtapolasek · vojtapolasek · commit d6041d0aa0a8 · 2023-12-06T14:34:48.000+01:00
including profile stability test data
diff --git a/products/rhel8/profiles/pci-dss.profile b/products/rhel8/profiles/pci-dss.profile
@@ -34,3 +34,7 @@ selections:
     - '!set_loopback_traffic'
     - '!service_ntpd_enabled'
     - '!timer_logrotate_enabled'
+    - '!package_talk_removed'
+    - '!package_talk-server_removed'
+    - '!package_rsh_removed'
+    - '!package_rsh-server_removed'
diff --git a/products/rhel9/profiles/pci-dss.profile b/products/rhel9/profiles/pci-dss.profile
@@ -36,3 +36,10 @@ selections:
     - '!set_ipv6_loopback_traffic'
     - '!set_loopback_traffic'
     - '!service_ntpd_enabled'
+    - '!package_ypserv_removed'
+    - '!package_ypbind_removed'
+    - '!package_talk_removed'
+    - '!package_talk-server_removed'
+    - '!package_xinetd_removed'
+    - '!package_rsh_removed'
+    - '!package_rsh-server_removed'
diff --git a/tests/data/profile_stability/rhel8/pci-dss.profile b/tests/data/profile_stability/rhel8/pci-dss.profile
@@ -65,7 +65,6 @@ selections:
 - file_owner_etc_shadow
 - accounts_passwords_pam_faillock_deny
 - accounts_password_all_shadowed
-- package_talk-server_removed
 - accounts_root_gid_zero
 - selinux_state
 - audit_rules_time_clock_settime
@@ -85,7 +84,6 @@ selections:
 - network_sniffer_disabled
 - audit_rules_session_events
 - package_dhcp_removed
-- package_rsh_removed
 - file_owner_cron_d
 - sshd_set_idle_timeout
 - file_groupowner_cron_weekly
@@ -213,7 +211,6 @@ selections:
 - auditd_data_retention_space_left_action
 - rsyslog_files_permissions
 - file_owner_cron_monthly
-- package_talk_removed
 - file_permissions_cron_daily
 - selinux_confinement_of_daemons
 - sysctl_net_ipv4_conf_all_send_redirects
@@ -245,7 +242,6 @@ selections:
 - rpm_verify_hashes
 - file_owner_cron_allow
 - file_permissions_sshd_pub_key
-- package_rsh-server_removed
 - dconf_gnome_disable_automount
 - gid_passwd_group_same
 - package_xinetd_removed
