I'm trying to use scap-workbench to run the Upstream STIG for RHEL6 Workstation profile and it explicitly wants the RHEL6 OVAL as a remote resource, http://www.redhat.com/security/data/oval/Red_Hat_Enterprise_Linux_6.xml. If I check "Fetch remote resources" then, of course, the scans and remediation work as expected but how can i get the entire benchmark to run offline? Can I download the oval info ahead of time and place it in a specific location?
---------- Chuck Atkins Staff R&D Engineer, Scientific Computing Kitware, Inc. (518) 881-1183
-- SCAP Security Guide mailing list [email protected] https://lists.fedorahosted.org/admin/lists/[email protected] https://github.com/OpenSCAP/scap-security-guide/
