{"description": "Ensure that zIPL boot entries fully adheres to Boot Loader Specification (BLS)\nby checking that <tt>/etc/zipl.conf</tt> doesn't contain <tt>image = </tt>.", "rationale": "Ubuntu 22.04 adheres to Boot Loader Specification (BLS) and is the preferred method of\nconfiguration.", "severity": "medium", "references": {"ospp": ["FPT_TST_EXT.1"]}, "control_references": {}, "components": [], "identifiers": {}, "ocil_clause": "a non BLS boot entry is configured", "ocil": "Check that no boot image file is specified in <tt>/etc/zipl.conf</tt>:\n<pre>grep -R \"^image\\s*=\" /etc/zipl.conf</pre>\nNo line should be returned, if a line is returned non BLS compliant boot entries are configured for zIPL.", "oval_external_content": null, "fixtext": "", "checktext": "", "vuldiscussion": "", "srg_requirement": "", "warnings": [{"general": "To prevent breakage or removal of all boot entries oconfigured in /etc/zipl.conf\nautomated remediation for this rule is not available."}], "conflicts": [], "requires": [], "policy_specific_content": {}, "platform": "machine", "platforms": ["machine"], "sce_metadata": {}, "inherited_platforms": ["s390x_arch"], "cpe_platform_names": ["machine"], "inherited_cpe_platform_names": ["s390x_arch"], "bash_conditional": null, "fixes": {}, "title": "Ensure all zIPL boot entries are BLS compliant", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/system/bootloader-zipl/zipl_bls_entries_only/rule.yml", "template": null}