Le 21/11/2017 à 23:46, Gabe Alford a écrit : > So I have several questions about these kind of checks : > - Is it possible to implement them using OVAL with an oval rule which > can do result command checks ? > > > Yes it is.
Hello Gabe, That's great to read.Honestly, I am a little bit lost with the OVAL format but I try to learn and I wasn't sure such a thing was possible. When looking into OVAL spec, I found textfilecontent rule but nothing for parsing a command result. If you have an entry point for doing such a check into the OVAL language spec, I would be happy to try to write the check :) > - Is it possible to implement these checks using another language. I > heard about SCE but it seems to be only for OpenSCAP. > > > You can definitely do that, but it won't be taken advantage of by Nessus > and other scanners that use SCAP Ok. It's what I understood but it can be a good workaround in some cases. > The plan is that these checks will have OVAL and remediation scripts in > the future. > It is really a matter of time, effort, and resources. There are tickets > already open for each of them already. > You can see them at > https://github.com/OpenSCAP/scap-security-guide/projects/7 > Getting the XCCDF into SSG is the easy part. The rest takes time. > So if you or anyone is willing and able to help get us there, PRs are > welcome. :) It would be a pleasure to help the project but before submitting PR, it's important for me to know if it is possible to do things or not :) Thanks Regards, Olivier Bonhomme _______________________________________________ scap-security-guide mailing list -- [email protected] To unsubscribe send an email to [email protected]
