Shawn,
You indicated that the .rule files are available as part of SSG? Can you please remind me where these are located?
Thanks.
Greg Elin http://govready.org - Making FISMA compliance easier for innovators
email: gregelin@gitmachines.com phone: 917-304-3488
They're shipped natively in the OS for STIG, LSPP, and a few others.
Location: /usr/share/doc/audit-*/stig.rules
-- Shawn Wells Director, Innovation Programs shawn@redhat.com | 443.534.0130 @shawndwells
On Sep 1, 2014, at 1:56 PM, Greg Elin gregelin@gitmachines.com wrote:
Shawn,
You indicated that the .rule files are available as part of SSG? Can you please remind me where these are located?
Thanks.
Greg Elin http://govready.org - Making FISMA compliance easier for innovators
email: gregelin@gitmachines.com phone: 917-304-3488
-- SCAP Security Guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide https://github.com/OpenSCAP/scap-security-guide/
Cool.
What are thoughts regarding documenting in OpenSCAP or SSG the existence of these files?
I know after the fix script runs in the current RPM, there are still many fails with audit-related rules.
What about including templates with various rule files in SCAP? I'm happy to prepare the pull request...
Greg
On Mon, Sep 1, 2014 at 2:14 PM, Shawn Wells shawn@redhat.com wrote:
They're shipped natively in the OS for STIG, LSPP, and a few others.
Location: /usr/share/doc/audit-*/stig.rules
-- Shawn Wells Director, Innovation Programs shawn@redhat.com | 443.534.0130 @shawndwells
On Sep 1, 2014, at 1:56 PM, Greg Elin gregelin@gitmachines.com wrote:
Shawn,
You indicated that the .rule files are available as part of SSG? Can you please remind me where these are located?
Thanks.
Greg Elin http://govready.org - Making FISMA compliance easier for innovators
email: gregelin@gitmachines.com phone: 917-304-3488
-- SCAP Security Guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide https://github.com/OpenSCAP/scap-security-guide/
-- SCAP Security Guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide https://github.com/OpenSCAP/scap-security-guide/
On 9/2/14, 8:19 AM, Greg Elin wrote:
Cool.
What are thoughts regarding documenting in OpenSCAP or SSG the existence of these files?
I know after the fix script runs in the current RPM, there are still many fails with audit-related rules.
What about including templates with various rule files in SCAP? I'm happy to prepare the pull request...
Sure. Makes sense to put a mention in the top-level audit group.
scap-security-guide@lists.fedorahosted.org
-
Greg Elin -
Shawn Wells