scap-security-guide  

Messages by Thread

• • Re: sshd banner warning Gabe Alford
  • Re: sshd banner warning Shawn Wells
  • Re: sshd banner warning Jeremiah Jahn
• system auth password hashing algorithm can also be required right? Jeremiah Jahn
  • Re: system auth password hashing algorithm can also be required right? Shawn Wells
  • Re: system auth password hashing algorithm can also be required right? Jeremiah Jahn
  • Re: system auth password hashing algorithm can also be required right? Jeremiah Jahn
  • Re: system auth password hashing algorithm can also be required right? Gabe Alford
  • Re: system auth password hashing algorithm can also be required right? Jeremiah Jahn
  • Re: system auth password hashing algorithm can also be required right? Shawn Wells
• isn't /dev/null also a valid nologin option for system accounts Jeremiah Jahn
• fix for including /home in /home dir permissions Jeremiah Jahn
• my kernels all live in /boot/vmlinuz by default Jeremiah Jahn
  • Re: my kernels all live in /boot/vmlinuz by default Shawn Wells
• [PATCH] [bugfix] Updating verify-references.py David Smith
  • [PATCH] [bugfix] Modified verify-references.py to reflect 800-53 rev4 David Smith
  • Re: [PATCH] [bugfix] Modified verify-references.py to reflect 800-53 rev4 Shawn Wells
• [PATCH 0/3][bugfix] - sshd OVAL false positives Gabe
  • [PATCH 1/3] [bugfix] - disable_host_auth OVAL false positive Gabe
  • Re: [PATCH 1/3] [bugfix] - disable_host_auth OVAL false positive Shawn Wells
  • Re: [PATCH 1/3] [bugfix] - disable_host_auth OVAL false positive Gabe Alford
  • Re: [PATCH 1/3] [bugfix] - disable_host_auth OVAL false positive Shawn Wells
  • Re: [PATCH 1/3] [bugfix] - disable_host_auth OVAL false positive Gabe Alford
  • Re: [PATCH 1/3] [bugfix] - disable_host_auth OVAL false positive Shawn Wells
  • Re: [PATCH 1/3] [bugfix] - disable_host_auth OVAL false positive Gabe Alford
  • Re: [PATCH 1/3] [bugfix] - disable_host_auth OVAL false positive Shawn Wells
  • Re: [PATCH 1/3] [bugfix] - disable_host_auth OVAL false positive Shawn Wells
  • Re: [PATCH 1/3] [bugfix] - disable_host_auth OVAL false positive Gabe Alford
  • Re: [PATCH 1/3] [bugfix] - disable_host_auth OVAL false positive Shawn Wells
  • [PATCH 2/3] [bugfix] - sshd_disable_rhosts OVAL false positive Gabe
  • Re: [PATCH 2/3] [bugfix] - sshd_disable_rhosts OVAL false positive Shawn Wells
  • [PATCH 3/3] [bugfix] - sshd_disable_root_login OVAL false positive Gabe
  • Re: [PATCH 3/3] [bugfix] - sshd_disable_root_login OVAL false positive Shawn Wells
  • Re: [PATCH 3/3] [bugfix] - sshd_disable_root_login OVAL false positive Gabe Alford
• [PATCH 0/1] (Resubmit) add oval for aide cron job Gabe
  • [PATCH 1/1] add aide cron oval check Gabe
  • [PATCH 0/1] (Resubmit) add oval for aide cron job Gabe
  • [PATCH 1/1] add aide cron oval check Gabe
  • Re: [PATCH 1/1] add aide cron oval check Gabe Alford
• Baseline configs & DevOps code-a-thon Greg Elin
  • Re: [Open-scap] Baseline configs & DevOps code-a-thon Shawn Wells
  • Re: [Open-scap] Baseline configs & DevOps code-a-thon Greg Elin
  • Re: Baseline configs & DevOps code-a-thon Paul Tittle (Contractor)
  • Re: Baseline configs & DevOps code-a-thon Tom Albrecht
  • Re: Baseline configs & DevOps code-a-thon Chris Kachigian
  • Re: Baseline configs & DevOps code-a-thon Shawn Wells
  • Re: Baseline configs & DevOps code-a-thon Greg Elin
  • Re: Baseline configs & DevOps code-a-thon Paul Tittle (Contractor)
• modified CSCF profile Kordell, Luke T
  • Re: modified CSCF profile Shawn Wells
  • RE: EXTERNAL: Re: modified CSCF profile Kordell, Luke T
  • Re: EXTERNAL: Re: modified CSCF profile Shawn Wells
• Fixed typo in common profile Kordell, Luke T
  • Re: Fixed typo in common profile Shawn Wells
  • Re: Fixed typo in common profile Shawn Wells
• [PATCH 00/21] DISA FSO Patch Sync Shawn Wells
  • [PATCH 02/21] Add VMS/DPMS mappings in stig_overlay Shawn Wells
  • Re: [PATCH 02/21] Add VMS/DPMS mappings in stig_overlay Shawn Wells
  • [PATCH 01/21] Update aide_build_database Shawn Wells
  • Re: [PATCH 01/21] Update aide_build_database Shawn Wells
  • Re: [PATCH 01/21] Update aide_build_database Shawn Wells
  • [PATCH 04/21] Add set_ip6tables_default_rule to common, map to STIG RHEL-06-000523 Shawn Wells
  • Re: [PATCH 04/21] Add set_ip6tables_default_rule to common, map to STIG RHEL-06-000523 Shawn Wells
  • [PATCH 12/21] Give SELinux precedence over HBSS in install_hids/RHEL-06-000285 Shawn Wells
  • Re: [PATCH 12/21] Give SELinux precedence over HBSS in install_hids/RHEL-06-000285 Shawn Wells
  • [PATCH 13/21] Update install_antivirus/RHEL-06-000284 from uvscan to VSEL/nails Shawn Wells
  • Re: [PATCH 13/21] Update install_antivirus/RHEL-06-000284 from uvscan to VSEL/nails Shawn Wells
  • [PATCH 07/21] [bugfix] modify file_permissions_library_dirs to follow symlinks Shawn Wells
  • Re: [PATCH 07/21] [bugfix] modify file_permissions_library_dirs to follow symlinks Shawn Wells
  • [PATCH 05/21] Update VRelease attribute for RHEL-06-000008 (ensure_redhat_gpgkey_installed) Shawn Wells
  • Re: [PATCH 05/21] Update VRelease attribute for RHEL-06-000008 (ensure_redhat_gpgkey_installed) Shawn Wells
  • [PATCH 03/21] Update VRelease attributes for DISA FSO VMS tags Shawn Wells
  • Re: [PATCH 03/21] Update VRelease attributes for DISA FSO VMS tags Shawn Wells
  • [PATCH 11/21] Add applicability statement to audit_rules_time_stime/RHEL-06-000169 Shawn Wells
  • Re: [PATCH 11/21] Add applicability statement to audit_rules_time_stime/RHEL-06-000169 Shawn Wells
  • [PATCH 06/21] Add reload to set_ip6tables_default_rule Shawn Wells
  • Re: [PATCH 06/21] Add reload to set_ip6tables_default_rule Shawn Wells
  • [PATCH 08/21] [bugfix] Modify file_permissions_binary_dirs to follow symlinks Shawn Wells
  • Re: [PATCH 08/21] [bugfix] Modify file_permissions_binary_dirs to follow symlinks Shawn Wells
  • [PATCH 14/21] Remove display_login_attempts/RHEL-06-000506 from RHEL 6 STIG Shawn Wells
  • Re: [PATCH 14/21] Remove display_login_attempts/RHEL-06-000506 from RHEL 6 STIG Shawn Wells
  • [PATCH 09/21] Increment VRelease for sysctl_ipv6_default_accept_redirects/RHEL-06-000099 Shawn Wells
  • Re: [PATCH 09/21] Increment VRelease for sysctl_ipv6_default_accept_redirects/RHEL-06-000099 Shawn Wells
  • [PATCH 10/21] Check syscall audits explicitly to avoid partial matches Shawn Wells
  • Re: [PATCH 10/21] Check syscall audits explicitly to avoid partial matches Shawn Wells
  • [PATCH 16/21] [bugfix] Update selinux_all_devicefiles to "any_exist" Shawn Wells
  • Re: [PATCH 16/21] [bugfix] Update selinux_all_devicefiles to "any_exist" Shawn Wells
  • [PATCH 17/21] Increment OVAL version for selinux_all_devicefiles_labeled Shawn Wells
  • Re: [PATCH 17/21] Increment OVAL version for selinux_all_devicefiles_labeled Shawn Wells
  • [PATCH 15/21] Add display_login_attempts/RHEL-06-000372 to STIG Shawn Wells
  • Re: [PATCH 15/21] Add display_login_attempts/RHEL-06-000372 to STIG Shawn Wells
  • [PATCH 18/21] Update OVAL version for sysctl_net_ipv6_conf_default_accept_redirects Shawn Wells
  • Re: [PATCH 18/21] Update OVAL version for sysctl_net_ipv6_conf_default_accept_redirects Shawn Wells
  • [PATCH 20/21] Update severity of aide_build_database in stig_overlay.xml Shawn Wells
  • Re: [PATCH 20/21] Update severity of aide_build_database in stig_overlay.xml Shawn Wells
  • [PATCH 21/21] [bugfix] Correct static sysctl.conf check regex and increment versions Shawn Wells
  • Re: [PATCH 21/21] [bugfix] Correct static sysctl.conf check regex and increment versions Shawn Wells
  • [PATCH 19/21] Fix lowercase in system/auditing.xml Shawn Wells
  • Re: [PATCH 19/21] Fix lowercase in system/auditing.xml Shawn Wells
  • Re: [PATCH 00/21] DISA FSO Patch Sync Shawn Wells
• [PATCH] [RHEL/7] Include SCAP Security Guide logo into generated HTML guide Jan Lieskovsky
  • Re: [PATCH] [RHEL/7] Include SCAP Security Guide logo into generated HTML guide Shawn Wells
• [PATCH] [shared] Create shared/transforms directory [shared] Move includelogo.xslt & oscapsupportssvg.py transforms into shared/ directory Jan Lieskovsky
• [PATCH] [Fedora] Include SCAP Security Guide logo into generated HTML guide Jan Lieskovsky
  • Re: [PATCH] [Fedora] Include SCAP Security Guide logo into generated HTML guide Shawn Wells
• [PATCH] [RHEL/6] Include SCAP Security Guide logo into generated HTML guide (if underlying openscap version supports <svg> XHTML element to be present within <front-matter> element) Jan Lieskovsky
  • Re: [PATCH] [RHEL/6] Include SCAP Security Guide logo into generated HTML guide (if underlying openscap version supports <svg> XHTML element to be present within <front-matter> element) Jan Lieskovsky
  • Re: [PATCH] [RHEL/6] Include SCAP Security Guide logo into generated HTML guide (if underlying openscap version supports <svg> XHTML element to be present within <front-matter> element) Shawn Wells
• [PATCH 4/4] updated 800-53 control references (system) JENNINGS, JARED L CTR USAF AFMC 96 SK/CCI
  • Re: [PATCH 4/4] updated 800-53 control references (system) Shawn Wells
• [PATCH 3/4] updated 800-53 control references (services) JENNINGS, JARED L CTR USAF AFMC 96 SK/CCI
  • Re: [PATCH 3/4] updated 800-53 control references (services) Shawn Wells
• [PATCH 2/4] updated transforms to reflect 800-53 rev4 JENNINGS, JARED L CTR USAF AFMC 96 SK/CCI
  • Re: [PATCH 2/4] updated transforms to reflect 800-53 rev4 Shawn Wells
• [PATCH 1/4] correct punctuation error in NIST SP800-53 reference JENNINGS, JARED L CTR USAF AFMC 96 SK/CCI
  • Re: [PATCH 1/4] correct punctuation error in NIST SP800-53 reference Shawn Wells
• [PATCH 0/4] Apply David Smith's NIST SP 800-53 reference updates to RHEL7 content JENNINGS, JARED L CTR USAF AFMC 96 SK/CCI
  • Re: [PATCH 0/4] Apply David Smith's NIST SP 800-53 reference updates to RHEL7 content Kayse, Josh
  • Re: [PATCH 0/4] Apply David Smith's NIST SP 800-53 reference updates to RHEL7 content Shawn Wells
• first post JENNINGS, JARED L CTR USAF AFMC 96 SK/CCI
  • Re: first post leam hall
  • Re: first post Shawn Wells
  • Re: first post Greg Elin
  • RE: first post JENNINGS, JARED L CTR USAF AFMC 96 SK/CCI
  • Re: first post Shawn Wells
• [PATCH 0/3] Updating NIST SP 800-53 References David Smith
  • [PATCH 1/3] updated transforms to reflect 800-53 rev4 David Smith
  • Re: [PATCH 1/3] updated transforms to reflect 800-53 rev4 Shawn Wells
  • Re: [PATCH 1/3] updated transforms to reflect 800-53 rev4 David Smith
  • [PATCH 2/3] updated 800-53 control references (services) David Smith
  • Re: [PATCH 2/3] updated 800-53 control references (services) Shawn Wells
  • [PATCH 3/3] updated 800-53 control references (system) David Smith
  • Re: [PATCH 3/3] updated 800-53 control references (system) Shawn Wells
• Re: bug in html report Simon Lukasik
  • Re: [Open-scap] EXTERNAL: Re: bug in html report Simon Lukasik
• [PATCH] add oval for aide cron job Gabe
  • [PATCH] add aide cron oval check Gabe
  • Re: [PATCH] add aide cron oval check Shawn Wells
  • Re: [PATCH] add aide cron oval check Gabe Alford
• SSG Git repository content now tagged (for versions from 0.1-6 through to v0.1.18) Jan Lieskovsky
  • Re: SSG Git repository content now tagged (for versions from 0.1-6 through to v0.1.18) Simon Lukasik
• openscap HTML report redesign Martin Preisler
  • Re: openscap HTML report redesign Greg Elin
  • Re: openscap HTML report redesign Shawn Wells
  • Re: openscap HTML report redesign Simon Lukasik
  • Re: openscap HTML report redesign Jan Lieskovsky
  • Re: openscap HTML report redesign Martin Preisler
  • RE: openscap HTML report redesign Trey Henefield
  • Re: openscap HTML report redesign Simon Lukasik
  • Re: openscap HTML report redesign Shawn Wells
  • Re: [Open-scap] openscap HTML report redesign Jan Lieskovsky
  • Re: [Open-scap] openscap HTML report redesign Martin Preisler
• [PATCH 0/2] copy-editing David Smith
  • [PATCH 2/2] copy-editing for prose publication David Smith
  • Re: [PATCH 2/2] copy-editing for prose publication Shawn Wells
  • [PATCH 1/2] modified constants.xslt and xccdf2html.xslt to reflect 800-53 rev4 David Smith
  • Re: [PATCH 1/2] modified constants.xslt and xccdf2html.xslt to reflect 800-53 rev4 Shawn Wells
• [PATCH] [*/utils/verify-input-sanity.py] Enhance 7031613 change -- show also what kind of error happened & line number it happened at Jan Lieskovsky
  • Re: [PATCH] [*/utils/verify-input-sanity.py] Enhance 7031613 change -- show also what kind of error happened & line number it happened at Shawn Wells
  • Re: [PATCH] [*/utils/verify-input-sanity.py] Enhance 7031613 change -- show also what kind of error happened & line number it happened at Jan Lieskovsky
• noexec and bash Stuart Green
  • Re: noexec and bash Steve Grubb
  • Re: noexec and bash Stuart Green
  • Re: noexec and bash Shawn Wells
  • Re: noexec and bash David Smith
• [PATCH] [RHEL/6] accounts_password_pam_cracklib_minclass XCCDF rule: * rename the remediation script to proper name * start using value of particular variable instead of hardcoded value of '3' Jan Lieskovsky
  • Re: [PATCH] [RHEL/6] accounts_password_pam_cracklib_minclass XCCDF rule: * rename the remediation script to proper name * start using value of particular variable instead of hardcoded value of '3' Shawn Wells
  • Re: [PATCH] [RHEL/6] accounts_password_pam_cracklib_minclass XCCDF rule: * rename the remediation script to proper name * start using value of particular variable instead of hardcoded value of '3' Jan Lieskovsky
• [PATCH 2/2] [RHEL/6] (Re-)Implement audit_rules_privileged_commands OVAL check & start using it Jan Lieskovsky
  • RE: [PATCH 2/2] [RHEL/6] (Re-)Implement audit_rules_privileged_commands OVAL check & start using it Shaw, Ray V CTR USARMY ARL (US)
  • Re: [PATCH 2/2] [RHEL/6] (Re-)Implement audit_rules_privileged_commands OVAL check & start using it Jan Lieskovsky
• [PATCH 1/2] [*/transforms/idtranslate.py] Allow shorthand format to contain <ind:variable_object> definition Jan Lieskovsky
  • Re: [PATCH 1/2] [*/transforms/idtranslate.py] Allow shorthand format to contain <ind:variable_object> definition Shawn Wells
  • Re: [PATCH 1/2] [*/transforms/idtranslate.py] Allow shorthand format to contain <ind:variable_object> definition Jan Lieskovsky
  • Re: [PATCH 1/2] [*/transforms/idtranslate.py] Allow shorthand format to contain <ind:variable_object> definition Shawn Wells
  • Re: [PATCH 1/2] [*/transforms/idtranslate.py] Allow shorthand format to contain <ind:variable_object> definition Jan Lieskovsky
  • Re: [PATCH 1/2] [*/transforms/idtranslate.py] Allow shorthand format to contain <ind:variable_object> definition Shawn Wells
  • Re: [PATCH 1/2] [*/transforms/idtranslate.py] Allow shorthand format to contain <ind:variable_object> definition Jan Lieskovsky
• [PATCH 0/2] Allow shorthand format to accept variable_object & re-implement the audit_rules_privileged_commands OVAL check for RHEL-6 Jan Lieskovsky
• no_files_unowned_by_group rule issue Kordell, Luke T
  • RE: no_files_unowned_by_group rule issue Mercer, Rodney
  • RE: no_files_unowned_by_group rule issue Kordell, Luke T
• [PATCH 0001-0003] - various ssh and gconf fixes Gabe Alford
  • Re: [PATCH 0001-0003] - various ssh and gconf fixes Gabe Alford
• Fwd: [gov-sec] Defense in Depth 2014 registration *open*! Shawn Wells
• [PATCH] Added vsftpd OVAL check and modified packages_installed.csv file David Smith
  • Re: [PATCH] Added vsftpd OVAL check and modified packages_installed.csv file Jan Lieskovsky
  • Re: [PATCH] Added vsftpd OVAL check and modified packages_installed.csv file David Smith
  • Re: [PATCH] Added vsftpd OVAL check and modified packages_installed.csv file Jan Lieskovsky
  • Re: [PATCH] Added vsftpd OVAL check and modified packages_installed.csv file Shawn Wells
• Mailling-list footer Kayse, Josh
  • Re: Mailling-list footer Joe Wulf
  • Re: Mailling-list footer Shawn Wells
  • Re: Mailling-list footer Shawn Wells
  • Re: Mailling-list footer Kayse, Josh
  • Re: Mailling-list footer Shawn Wells
  • Re: Mailling-list footer Shawn Wells
  • Re: Mailling-list footer Kayse, Josh
• [PATCH] [RHEL/6] Fix implementation of accounts_password_pam_cracklib_minclass OVAL check. Provide corresponding XCCDF definition & start using the rule. Jan Lieskovsky
  • Re: [PATCH] [RHEL/6] Fix implementation of accounts_password_pam_cracklib_minclass OVAL check. Provide corresponding XCCDF definition & start using the rule. Shawn Wells

• Earlier messages
• Later messages