On 11/22/2017 10:33 AM, Watson Yuuma Sato wrote:
On 22/11/17 00:01, Olivier BONHOMME wrote:
If you have an entry point for doing such a check into the OVAL language
spec, I would be happy to try to write the check :)
Hello,
These OVAL tests might help:
-
https://oval.mitre.org/language/version5.11/ovaldefinition/documentation/unix-definitions-schema.html#password_state
-
https://oval.mitre.org/language/version5.11/ovaldefinition/documentation/unix-definitions-schema.html#file_test
I think you can use password_state to get hold of a list of users' home
directory into a variable, and then use file_test to check for their
existence.
Below are some examples of the tests, they are not exactly what you
need, but you can get inspired by them :)
shared/checks/oval/no_files_unowned_by_user.xml
shared/checks/oval/accounts_password_all_shadowed.xml
shared/checks/oval/file_permissions_home_dirs.xml
And to make it more explicit - OVAL does not support execution of
scripts at all - you have to do with reading files, or using existing
probes :(
Regards,
Marek
_______________________________________________
scap-security-guide mailing list -- [email protected]
To unsubscribe send an email to [email protected]
