Hello, I'm working currently on secure OS and I' ve to enforce a CentOS 7 I get with yum the package scap-security-guide. I adapt xml files (XCCDF) to work with CentOS 7 I pass all the rule at "selected='true'" in different files : XCCDF, OVAL I execute a run with oscap xccdf eval --profile "rht-ccp"
I obtain 42 passed , 48 failed and 304 other The "Other" are "notchecked" The current engine support all the rules ? Or not ? I assumed that the rule is postionned to "notchecked" if there is nothing to check. So , for example, I install "Squid" and rerun a global check and the rule "Disable Squid", "Uninstall Squid" are still "notchecked" Can you guide me with my problem ? Thank you very very much if you can Thomas
-- SCAP Security Guide mailing list [email protected] https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide https://github.com/OpenSCAP/scap-security-guide/
