Yes I did see that, which I also thought was very useful. What I was referring to was not the ability to filter the overall results, but the details in each check.
So in the linked report, for the check titled “Verify that All World-Writable Directories Have Sticky Bits Set”, the “OVAL details” section lists the two directories that failed the check (it’s a little mind boggling that a scanner would create a finding). So instead, have the option of listing all directories that were checked and identify which ones passed and failed. This is what I meant by details. Judging by the finding in the referenced check, I know that SCC has been installed. The details they provide in their report is a good example. The bad part of that example is separating the passed vs failed by color (I can’t search by color) and the ability not to be able toggle between all of the oval details of the check versus just the failed items that caused the check to fail. This would also be nice for checks that have passed, just to have the ability to be able to see what files or entries were validated against the check. I hope that better clarifies what I was hoping could be achieved. I know all these details can be retrieved through the oval results xml file, but it would be nice to have the ability to be able to view that information in a much better organized and human-readable structure that has been created in the new report. Thanks! Best regards, Trey Henefield, CISSP Senior IAVA Engineer Ultra Electronics Advanced Tactical Systems, Inc. 4101 Smith School Road Building IV, Suite 100 Austin, TX 78744 USA trey.henefi...@ultra-ats.com Tel: +1 512 327 6795 ext. 647 Fax: +1 512 327 8043 Mobile: +1 512 541 6450 www.ultra-ats.com From: scap-security-guide-boun...@lists.fedorahosted.org [mailto:scap-security-guide-boun...@lists.fedorahosted.org] On Behalf Of Shawn Wells Sent: Sunday, August 31, 2014 1:03 AM To: scap-security-guide@lists.fedorahosted.org Subject: Re: New report and guide in openscap 1.1.0 On 8/31/14, 12:25 AM, Trey Henefield wrote: Ah my appologies, I did not see those checks. Very nice. I do have to say, it looks very beautifully structured. Great job! Is it possible there could be a way to filter or toggle between failed items versus all items checked? It would be useful for SCAP content testing and for reassurance of what was checked. Absolutely! Check/Uncheck the fields under "Rule Overview" as you see fit: [cid:image001.png@01CFC4F3.BCB68910] Disclaimer The information contained in this communication from trey.henefi...@ultra-ats.com sent at 2014-09-02 08:33:41 is confidential and may be legally privileged. It is intended solely for use by scap-security-guide@lists.fedorahosted.org and others authorized to receive it. If you are not scap-security-guide@lists.fedorahosted.org you are hereby notified that any disclosure, copying, distribution or taking action in reliance of the contents of this information is strictly prohibited and may be unlawful.
-- SCAP Security Guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide https://github.com/OpenSCAP/scap-security-guide/
