On 3/23/16 6:25 AM, Jan Lieskovsky wrote:
Hello Daniel,
thank you for contacting us.
----- Original Message -----
From: "Dan Warburton"dan.warburton@jvncomm.com To: "SCAP Security Guide"scap-security-guide@lists.fedorahosted.org Sent: Tuesday, March 22, 2016 8:36:27 PM Subject: cnssi No 1253 profile needed
http://static.open-scap.org/ssg-guides/ssg-rhel6-guide-nist-cl-il-al.html
I cannot locate this guide. I have redhat scap-security-guide 0.10.21-3.el6 which yum says is the latest.
This (CNSSI No. 1253) profile has been introduced starting from upstream scap-security-guide-0.1.27 release: [1]https://github.com/OpenSCAP/scap-security-guide/releases/tag/v0.1.27
thus as such is not included in scap-security-guide-0.1.21-3.el6 version yet you mention above.
I think the profile for National Security Systems Instruction (CNSSI) No. 1253, "Security Categorization and Control Selection for National Security Systems""
How can I get this? rpm preferred
AFAIK Red Hat Enterprise Linux 6.8 Beta includes scap-security-guide RPM based on upstream 0.1.28 version already:
http://www.redhat.com/en/about/blog/red-hat-enterprise-linux-68-beta-now-ava...
therefore you can obtain the updated scap-security-guide RPM from that release for now, till the moment Red Hat Enterprise Linux 6 Update 8 is generally available.
Hope this helps.
Let us know if we can be of any further guidance.
Direct link to the beta RPM: https://access.redhat.com/downloads/content/rhel---6/x86_64/160/scap-securit...
In regards to a CNSSI profile, we're trying to sort out what that'd actually mean. NSA's CNSSI 12-53 is different than NRO, which is different than DISA... who's CNSSI 12-53 overlay to we follow? What would be most useful/applicable?