The numbers in the Compliance and Scoring section of the html file do not add
up.
Details:
* Using the STIG for Red Hat Enterprise Linux 7 Server (227) profile.
* Using RHEL 7.3.
* Rule Results: 112 passed, 103 failed, 10 other
* Score 64.56% passed.
So, 112 passed + 103 failed
The generated scripts use this idiom
sed_command="sed -i ..."
where the ellipsis is replaced a follow symlink option if the file being edited
is a symbolic link. There are some errors when running the generated
remediation script, such as
"sed -i " command not found.
As an alternative, I
...@redhat.com
You can reach the person managing the list at
open-scap-list-ow...@redhat.com
When replying, please edit your Subject line so it is more specific than "Re:
Contents of Open-scap-list digest..."
Today's Topics:
1. Pleas explain this (Greg Silverman (CS))
2.
Many of the generated fixes uses this idiom
IFS=$'\n' ...
unset $IFS
IFS is a variable, but, $IFS is a character string, so, unsetting it does not
restore IFS to its default value. What am I missing?
Thanks,
Greg Silverman
Mountain View, Ca
___
I would like to modify the fixes that oscap will generate and add some
automatic fixes. For example
1. The firewall fix bash code does not add the ssh service to the drop
zone. Which file can I modify so that the "add-services ssh" is included in the
generated remediation script.
2.
u...@redhat.com
You can reach the person managing the list at
open-scap-list-ow...@redhat.com
When replying, please edit your Subject line so it is more specific than "Re:
Contents of Open-scap-list digest..."
Today's Topics:
1. customizing remediati
I am missing something when it comes to generating a customized fix script.
1. In SCAP Workbench I deselect rules I do not want.
2. I save the customization file.
3. When I scan with the customization file, it still reports evaluation
results on *some* of the rules I