On 1/3/17 3:24 PM, Trevor Vaughan wrote:
Hi All,
We've recently finished running the Draft RHEL 7 STIG against an
instance of SIMP running atop Puppet Enterprise and thought that the
results might be of interest.
The server scan can be found
at:
https://github.com/trevor-vaughan/ssg-scans/blob/master/2016-12-22-rhel-7...
The client scan can be found
at:
https://github.com/trevor-vaughan/ssg-scans/blob/master/2016-12-22-rhel-7...
We would certainly be interested in discussion regarding any items
marked with "Suggest SSG Feedback" and we will be incorporating the
reports into our core documentation right after we fix the findings.
On a slightly side note, I'm now collecting banners for SIMP, if you
have one you'd like to donate, PRs are most welcome
to
https://github.com/simp/pupmod-simp-issue (look in the 'files'
directory).
Holy crap, this feedback looks awesome! Wanted to acknowledge we got
it.... but you'll likely find responses slow as most @redhat.com staff
returned today from 1-1.5 weeks of corporate holiday shutdown. Thanks
for starting the thread! Speaking for myself, I'll likely have time to
review (in detail) Thursday.