----- Original Message ----- > From: "Greg Elin" <grege...@gitmachines.com> > To: "SCAP Security Guide" <scap-security-guide@lists.fedorahosted.org> > Sent: Sunday, August 31, 2014 2:43:43 PM > Subject: Best ways to say this system is not compliant > > Several participants in the thread "Re: New report and guide in openscap > 1.1.0" > raised concerned over a language "The system is not compliant!" in the > report.
I decided to avoid using the word compliant at all in this case. XCCDF spec defines what it means on the report but people may think the word has a different meaning and may be shocked. So instead I decided to explicitly say how many rules failed or were inconclusive. For example: "The target system did not satisfy conditions of 131 rules! Furthermore, the results of 2 rules were inconclusive. Please review rule results and consider applying remediation." See https://git.fedorahosted.org/cgit/openscap.git/commit/?id=6e622f7d86a1061ce0cb4546307b651d4c970f84 Does this help the situation? Is this a good summary of the TestResult? -- Martin Preisler -- SCAP Security Guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide https://github.com/OpenSCAP/scap-security-guide/
