<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">On 11/20/12 4:50 PM, Daikawa, Neal DLA
CTR INFORMATION OPERATIONS wrote:<br>
</div>
<blockquote
cite="mid:7C96A72104E37A45A65F37985364DF6504D957DE@PHL0SGEM006.AD.DLA.MIL"
type="cite">
<p class="MsoNormal">Does anyone have any documentation or point
me in the right direction toward any documentation on how to get
OpenSCAP installed and run a report on RHEL 6.2? <o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
</blockquote>
Content for RHEL6 is still in very active development. This list
focuses mostly on the OpenSCAP interpreter, if you're interested in
content I would recommend heading over to the SCAP Security Guide
[1]. That's the place the RHEL6 STIG and other baselines are being
developed.<br>
<br>
If you're after things which are 100% in RHEL, without using EPEL
sources, the following should do the trick:<br>
<br>
Regardless, on a RHEL6 box:<br>
# yum install openscap-content openscap-utils<br>
<br>
The openscap-content package will deploy the following:<br>
# rpm -ql openscap-content<br>
/usr/share/openscap/scap-oval.xml<br>
/usr/share/openscap/scap-rhel6-oval.xml<br>
/usr/share/openscap/scap-rhel6-xccdf.xml<br>
/usr/share/openscap/scap-xccdf.xml<br>
<br>
To create a human readable guide of all this XML stuff:<br>
# oscap xccdf generate guide /usr/share/openscap/scap-xccdf.xml >
/tmp/openscap-content.html<br>
$favoriteBrowser /tmp/openscap-content.html<br>
<br>
And then do a scan:<br>
# oscap xccdf eval --profile RHEL6-Default \<br>
--results /tmp/`hostname`-openscap-content-results.xml \<br>
--report /tmp/`hostname`-openscap-content-results.html \<br>
/usr/share/openscap/scap-xccdf.xml <br>
<br>
[1] <a class="moz-txt-link-freetext" href="https://fedorahosted.org/scap-security-guide/">https://fedorahosted.org/scap-security-guide/</a><br>
</body>
</html>