On 10/21/16 2:15 PM, Martin Preisler wrote: > ----- Original Message ----- >> > From: "Steve Grubb" <[email protected]> >> > To: [email protected] >> > Cc: "Martin Preisler" <[email protected]> >> > Sent: Friday, October 21, 2016 3:02:35 PM >> > Subject: Re: The default install location of SSG >> > >> > On Friday, October 21, 2016 2:37:32 PM EDT Martin Preisler wrote: >>> > > This has been bugging me for a while. The default install location of >>> > > SSG >>> > > datastream is: >>> > > >>> > > /usr/share/xml/scap/ssg/content/ssg-$PRODUCT-ds.xml >>> > > >>> > > This is ridiculous! Why was this super long and complex path chosen? I >>> > > can't >>> > > find this mandated by any standard, it seems to be our own invention. >>> > > [1] >>> > > >>> > > Why not just >>> > > /usr/share/scap/ssg ? >> > >> > Doesn't the Linux FHS say xml data files belong in /usr/share/xml? Then >> > presumably you want to differentiate with a directory under that. > That's an optional directive and nobody follows it. Check out: > > find /usr/share -name \*.xml > > Differentiating files based on their format is not very useful. It makes > more sense to differentiate based on their purpose. That's probably why > almost nobody follows the XML rule in FHS.
+1 to moving to something more sane. It looks like we're really the only provider of SCAP content -- other tools embed natively into their product, vs laying out on the filesystem (e.g. tripwire, BigFix, Nessus, etc). /usr/share/scap is appealing.
_______________________________________________ scap-security-guide mailing list -- [email protected] To unsubscribe send an email to [email protected]
