From ggasparb at redhat.com Tue Jul 7 15:08:44 2020 From: ggasparb at redhat.com (Gabriel Gaspar Becker) Date: Tue, 7 Jul 2020 17:08:44 +0200 Subject: [scap-security-guide] NIST 800-171 security profile for rhel 7 In-Reply-To: <50089a29-e017-9548-46f5-a050c91be372@systemonkey.com> References: <50089a29-e017-9548-46f5-a050c91be372@systemonkey.com> Message-ID: The profile representing NIST 800-171 requirements was renamed to "xccdf_org.ssgproject.content_profile_ncp" I believe if you use oscap with the option "--profile xccdf_org.ssgproject.content_profile_ncp" it should yield the same results from before. Regards. On Sun, Jun 21, 2020 at 12:46 AM struct wrote: > Has the security profile (NIST 800-171) between the versions 1.2.17 and > 1.3.3 for redhat 7 changed? > > with version 1.2.17, ther are 328 conditions whereas version 1.3.3 have > 104. Anyone know why such a big difference? > > _______________________________________________ > scap-security-guide mailing list > scap-security-guide at redhat.com > https://www.redhat.com/mailman/listinfo/scap-security-guide > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From silvermangb at gmail.com Fri Jul 10 23:10:44 2020 From: silvermangb at gmail.com (Greg Silverman) Date: Fri, 10 Jul 2020 16:10:44 -0700 Subject: [scap-security-guide] computing the score Message-ID: I would like to better understand how the score for scan with oscap is computed so I can better plan remediations. Do all HIGH severity rules have the same impact on the score, for example? -------------- next part -------------- An HTML attachment was scrubbed... URL: