Hi, I'm currently working on a probe for AppArmor, which, I think, could be usefull for Ubuntu and Suse systems. The patch can be found here :
http://poupinou.org/SCAP/openscap-apparmor-1.2.15.diff It's actually the same kind of probe (the suse:apparmorstatus thing) that can be found in CIS-CAT. I think the only stuff that need to be done is to implement some unit tests stuff. Ah, and only OVAL 5.11 for now. I do have some concerns though : 1- I have to provide a file found in CIS-CAT for the OVAL schema. I think it's ok, though, since the header contains : xmlns:suse="http://oval.mitre.org/XMLSchema/oval-definitions-5#suse"; I'm not sure however that I do have the right for redistributing this schema. 2- This also introduce another NS, namely 'suse'. I think it's overkill somewhat, and, IMHO, this should go under linux. 3- Lastly, I'm wondering if there will be a chance this probe will go mainstream. Cheers, -- Bruno Ducrot -- Which is worse: ignorance or apathy? -- Don't know. Don't care. _______________________________________________ Open-scap-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/open-scap-list
