> One of the largest issues with SCC is that it skips a rule, entirely, if > OCIL content is present. This automatically causes several failures, you > can view my logs here: > http://people.redhat.com/swells/SCC/Logs/RHEL6_SCC-3.1_2013-02-17_102333_Screen_Log.001.txt
In this case the SCC behavior is a bug per the XCCDF specification, on page 59: http://csrc.nist.gov/publications/nistir/ir7275-rev4/NISTIR-7275r4.pdf When you get different results from different tools, the specification is the place to look, for what is "correct" behavior. It may not be an easy read, but it does provide an authoritative answer... >> [I also plan to try to "become a developer" and make contributions so >> I don't >> just feel like I'm complaining, but editing this sort of content is >> new to >> me.] >> >> The benchmark content I'm using is the recently rebased RPM >> (scap-security-guide-0.1-10.el6.noarch.rpm). _______________________________________________ scap-security-guide mailing list [email protected] https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
