SSG is not just for DoD, I sure hope! I'm sure there are many CentOS deployments in .gov, I believe there are several just in my agency alone. Do we really want to not support them, or force them into manual edits to get scans to work?
I've seen nothing announced on CentOS roadmap. More information would be good. On Thu, May 22, 2014 at 3:13 PM, Shawn Wells <[email protected]> wrote: > > On 5/22/14, 5:06 PM, Shawn Wells wrote: > >> >> On 5/22/14, 3:43 PM, Derek Warner wrote: >> >>> Any chance anyone is working on getting SCAP to work on CENTOS? I would >>> love to use the scap security guide and secstate to validate CENTOS 6.5. >>> Right now its a manual process going line by line in the RHEL 5 STIG. I >>> would really love to find out if anyone has anything automated that works >>> on CENTOS. >>> >> >> Given that CentOS isn't allowed on DoD networks, there is no STIG, no >> common criteria, no support, and doesn't meet any of the mandatory >> regulatory requirements, what's driving the need? >> > > (p.s. Yes, that was worded a little silly, but I'm serious (and not just > because I'm @redhat.com)) > > And actually, this does bring up a good question: have many people been > briefed on the Fedora/CentOS/RHEL roadmap and divergence? It's an area that > RHT is extremely passionate to inform customers and partners on. If there's > interest, I might be able to setup a community call and bring in the > CentOS/RHEL leaders to chat about future plans. > > _______________________________________________ > scap-security-guide mailing list > [email protected] > https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide >
_______________________________________________ scap-security-guide mailing list [email protected] https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
