Internal Use - Confidential
Hi
I recently learned about OpenSCAP, and it seems to fill a need in my team. My
team needs to address (close) all of the rules in the SLES 12 STIG on our
product. It seems that using oscap, along with the most-recent
'scap-security-guide' (which appears to cover 146 SLES 12 STIG rules), will
allow me to see which rules are open ('oscap xccdf eval') and to implement
changes to close those rules ('oscap xccdf eval -remediate').
I know that I can use the '-rule' option to specify the name of a single rule
to evaluate or remediate.
Our group identifies rules to be fixed, in our work management system and other
systems, by the SLES 12 STIG 'STIG ID' value (ex., SLES-12-010000). I tried to
use this value in the '-rule' option, and it failed to identify/find that rule.
How can I make oscap operate on a rule identified by 'STIG ID' value (or, even
better, on a file containing a list of 'STIG ID' rules?
Thanks!
tl
Terry Lemons
[DellEMC_Logo_Hz_Blue_rgb_10percent]
Data Management
Infrastructure Solutions Group
176 South Street, MS 2/B-34
Hopkinton MA 01748
terry.lem...@dell.com<mailto:terry.lem...@dell.com>
_______________________________________________
Open-scap-list mailing list
Open-scap-list@redhat.com
https://listman.redhat.com/mailman/listinfo/open-scap-list
