>> • Section heading – I think the number of “not checked” should also be >> included in the section heading along with fail and unknown. For >> example, I could’ve easily missed “Ensure Software Patches Installed” >> since it was collapsed within Updating Software section. > >Are you sure you mean "notchecked" and not "notselected". We already show >notchecked rules by default. Either way I am not sure you mean, sorry.
System Settings->Installing and Maintaining software->Updating Software->Ensure Software Patches Installed It is listed as "notchecked", but it's collapsed within the section when the page initially loads. Unlike "fail" and "unknown", "notchecked" rules don't seem to have a number indicator in the section title, so it was easily skipped over when the section is collapsed. BTW, are there any significant changes to the report layout under Lynx or other text-based browsers? I don't have the means to check it right now, but it is something I have used for quick reference. Thank you for the great work! Wei -----Original Message----- From: Martin Preisler [mailto:mprei...@redhat.com] Sent: Monday, September 01, 2014 10:31 AM To: Chen, Wei (Contractor)(CFPB) Cc: scap-security-guide@lists.fedorahosted.org Subject: Re: New report and guide in openscap 1.1.0 ----- Original Message ----- > From: "Wei Chen (Contractor)(CFPB)" <wei.c...@cfpb.gov> > To: mprei...@redhat.com > Cc: scap-security-guide@lists.fedorahosted.org > Sent: Friday, August 29, 2014 3:04:23 PM > Subject: RE: New report and guide in openscap 1.1.0 > > Couple comments on the report layout. Thanks for your feedback! > > • Rules result breakdown - while the color bar breakdown is nice, it > doesn't present precise information at first glance. The user will > see 86 passed, 131 failed, and left guessing what that remaining 6 rules are. > It'll be nice to see the total number of rules as well. I decided to add @title which provides a tooltip. If you hover your mouse over the progress bar you will get a description what it is and how many rules are there in total. See 0fab43d278d10bf260314acea11ec7afd3409dbd > • Failed rules by severity breakdown – similar to rules results, the > severity description got cut off even though it’s easy to assume that > the two failed rules refer to High severity. Same as above. See a6b216144500bf147eeab2d5152329505ec8ba8f > • Score – it’ll be nice to have a brief explanation or reference to how > the scoring is done for those not familiar with the scoring system. I simply don't have this info in the report. All info I have is the following: <score system="urn:xccdf:scoring:default" maximum="100.000000">58.458904</score> While I could add a link to the specification I think it's not necessary, do you agree? I added a tooltip that hints to look at XCCDF specification, see 1d7b370c3194a9103e3d4c95aa5d0dbd3d011dd9 > • Section heading – I think the number of “not checked” should also be > included in the section heading along with fail and unknown. For > example, I could’ve easily missed “Ensure Software Patches Installed” > since it was collapsed within Updating Software section. Are you sure you mean "notchecked" and not "notselected". We already show notchecked rules by default. Either way I am not sure you mean, sorry. -- Martin Preisler -- SCAP Security Guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide https://github.com/OpenSCAP/scap-security-guide/
