[Open-scap] Not able to make SCE script working
Raymond Mercier
raymond.rm.mercier at gmail.com
Wed Apr 25 07:47:31 UTC 2018
Hi all,
I'm trying to use SCE script in openscap ds file and all I get is
"notchecked" status
my ds file is attached
The command I start is:
[root]# oscap xccdf eval --profile xccdf_1_profile_1 rm-ds.xml
the result I get is:
Title selinux
Rule xccdf_1_rule_1402
Result notchecked
I think something is wrong around "Rule id="xccdf_1_rule_1402" but I don't
understand the problem
The script file to execute (scap_1402.sh) is in the same directory as xml
file, and has valid syntax and correct rights. In standalone mode, it works
but it seems to never be called by oscap
The OS is centos
[root]# uname -a
Linux ip-127.0.0.1.compute.internal 3.10.0-693.21.1.el7.x86_64 #1 SMP
Wed Mar 7 19:03:37 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux
The scap installed packages are:
[root]# yum list installed | grep scap
openscap.x86_64 1.2.14-3.el7_4 @updates
openscap-engine-sce.x86_64 1.2.14-3.el7_4 @updates
openscap-scanner.x86_64 1.2.14-3.el7_4 @updates
scap-security-guide.noarch 0.1.33-6.el7.centos @updates
Can somebody help me ? BTW, excuse my english, it is not my natural language
Raymond
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/open-scap-list/attachments/20180425/67dc7326/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: rm-ds.xml
Type: text/xml
Size: 8038 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/open-scap-list/attachments/20180425/67dc7326/attachment.xml>
More information about the Open-scap-list
mailing list