[Open-scap] Issue with "official" RHEL-7 definitions
Jan Cerny
jcerny at redhat.com
Fri Aug 26 12:33:45 UTC 2016
Hi,
New version of SCAP Security guide usually appears with a new release of RHEL).
(but not necessarily always)
I haven't looked exactly into firewall rules, but in general SCAP Security Guide
is evolving very quickly, so it is very likely that they were not present at all in 0.1.25.
OpenSCAP COPR repo for RHEL7 provides the latest releases, however keep in mind that
it is not officially supported by Red Hat. On the other hand, there is usually only a little
difference between packages in COPR and packages in RHEL for the same version.
Regards
Jan Černý
Security Technologies | Red Hat, Inc.
----- Original Message -----
> From: "Dan White" <d_e_white at icloud.com>
> To: open-scap-list at redhat.com
> Sent: Monday, August 22, 2016 2:27:56 PM
> Subject: [Open-scap] Issue with "official" RHEL-7 definitions
>
> Working from /usr/share/xml/scap/ssg/content/ssg-rhel7-ds.xml which is part
> of scap-security-guide-0.1.25-3.el7.noarch, I find a complete lack of any
> firewall definitions.
>
> scap-security-guide-0.1.30-2.el7.centos.noarch.rpm, from
> openscapmaint-openscap-latest-epel-7.repo, however, has lots of good
> firewall checks and specs.
>
> How soon might these newer definitions find their way into the Red Hat repos
> ?
> Dan White | d_e_white at icloud.com
> ------------------------------------------------
> “Sometimes I think the surest sign that intelligent life exists elsewhere in
> the universe is that none of it has tried to contact us.” (Bill Waterson:
> Calvin & Hobbes)
>
> _______________________________________________
> Open-scap-list mailing list
> Open-scap-list at redhat.com
> https://www.redhat.com/mailman/listinfo/open-scap-list
More information about the Open-scap-list
mailing list