Installation and Boot
The following features, enhancements, and changes related to installation and boot are introduced in this Oracle Linux 9 release.
Tailoring Options for the SCAP Security Profile to a Blueprint Customization
You can add tailoring options for a profile to the /b
blueprint
customizations by using the following options:
-
selected
for the list of rules that you want to add -
unselected
for the list of rules that you want to remove
With the default org.ssgproject.content
rule namespace, you can omit
the prefix for rules under this namespace. For example: the
org.ssgproject.content_grub2_password
and
grub2_password
are functionally equivalent.
When you build an image from that blueprint, it creates a tailoring file with a new
tailoring profile ID and saves it to the image as
/usr/share/xml/osbuild-oscap-tailoring/tailoring.xml
. The new
profile ID will have _osbuild_tailoring
appended as a suffix to the
base profile. For example, if you use the cis
base profile,
xccdf_org.ssgproject.content_profile_cis_osbuild_tailoring
.