Add SRG overlay

rhcos4/overlays/srg_support.xml

@@ -1,7 +1,7 @@
 <Group id="srg_support" hidden="true">
 <title>Documentation to Support DISA OS SRG Mapping</title>
-<description>These groups exist to document how the Red Hat Enterprise Linux
-product meets (or does not meet) requirements listed in the DISA OS SRG, for
+<description>These groups exist to document how Red Hat Enterprise Linux CoreOS
+meets (or does not meet) requirements listed in the DISA OS SRG, for
 those cases where Groups or Rules elsewhere in scap-security-guide do
 not clearly relate.
 </description>
@@ -13,9 +13,9 @@ not clearly relate.
 <Rule id="met_inherently_generic">
 <title>Product Meets this Requirement</title>
 <rationale>
-Red Hat Enterprise Linux meets this requirement through design and implementation.
+Red Hat Enterprise Linux CoreOS meets this requirement through design and implementation.
 </rationale>
-<ocil>RHEL8 supports this requirement and cannot be configured to be out of
+<ocil>Red Hat Enterprise Linux CoreOS supports this requirement and cannot be configured to be out of
 compliance. This is a permanent not a finding.
 </ocil>
 <description>
@@ -33,9 +33,9 @@ This requirement is a permanent not a finding. No fix is required.
 <Rule id="met_inherently_auditing">
 <title>Product Meets this Requirement</title>
 <rationale>
-The Red Hat Enterprise Linux audit system meets this requirement through design and implementation.
+The Red Hat Enterprise Linux CoreOS audit system meets this requirement through design and implementation.
 </rationale>
-<ocil>The RHEL8 auditing system supports this requirement and cannot be configured to be out of
+<ocil>The Red Hat Enterprise Linux CoreOS auditing system supports this requirement and cannot be configured to be out of
 compliance. Every audit record in RHEL includes a timestamp, the operation attempted,
 success or failure of the operation, the subject involved (executable/process),
 the object involved (file/path), and security labels for the subject and object.
@@ -60,9 +60,9 @@ This requirement is a permanent not a finding. No fix is required.
 <Rule id="met_inherently_nonselected">
 <title>Product Meets this Requirement</title>
 <rationale>
-Red Hat Enterprise Linux meets this requirement through design and implementation.
+Red Hat Enterprise Linux CoreOS meets this requirement through design and implementation.
 </rationale>
-<ocil>RHEL8 supports this requirement and cannot be configured to be out of
+<ocil>Red Hat Enterprise Linux CoreOS supports this requirement and cannot be configured to be out of
 compliance. This is a permanent not a finding.
 </ocil>
 <description>
@@ -91,7 +91,7 @@ The guidance does not meet this requirement.
 The requirement is impractical or out of scope.
 </rationale>
 <ocil>
-RHEL8 cannot support this requirement without assistance from an external
+Red Hat Enterprise Linux CoreOS cannot support this requirement without assistance from an external
 application, policy, or service. This requirement is NA.
 </ocil>
 <description>
@@ -110,7 +110,7 @@ This requirement is NA. No fix is required.
 <Rule id="unmet_finding_nonselected">
 <title>Implementation of the Requirement is Not Supported</title>
 <rationale>
-RHEL8 does not support this requirement.
+Red Hat Enterprise Linux CoreOS does not support this requirement.
 </rationale>
 <ocil>
 This is a permanent finding.
@@ -136,7 +136,7 @@ The guidance does not meet this requirement.
 The requirement is impractical or out of scope.
 </rationale>
 <ocil>
-RHEL8 cannot support this requirement without assistance from an external
+Red Hat Enterprise Linux CoreOS cannot support this requirement without assistance from an external
 application, policy, or service. This requirement is NA.
 </ocil>
 <description>