[Open-scap] OVAL evaluation of individual definitions

[Mohanraj, Bharath]

Hi Team,

I'm evaluating oscap 1.3.0 on windows, and I have a query on the same.

I'm trying to evaluate definitions on a Win 10 box and I see that the operation 
takes 1-3 minutes for each definitions. There are cases where some xmls have 
thousands of definitions. So, this really is a time consuming process.

I also tried --id and perform evaluation of definitions one after other. I 
don't see much improvement here as well. 

I also tried parallel evaluation with multiple oscap process working on 
different definitions. This again didn't help.

I also tried --skip-valid swich, which again saved only 15-20secs of time.

Is there any to other way to achieve better performance? Please guide me.

Thanks.

Regards,
Bharath M

___
Open-scap-list mailing list
Open-scap-list@redhat.com
https://www.redhat.com/mailman/listinfo/open-scap-list

Re: [Open-scap] Benchmark for Canonical Ubuntu 16.04 LTS

[Boucher, William]

Stuart,

How do I get the current/latest scap security guide?


1)  I went to 
https://www.open-scap.org/security-policies/scap-security-guide/ and clicked on 
the Ubuntu symbol to get directions for installing it, but that gave message 
"The SCAP Security Guide package is not available on the Ubuntu distribution 
yet. Check for update."

2)  "apt-get install scap-security-guide" produced the error "Unable to 
locate package scap-security-guide."

I did successfully install libopenscap8 ("apt-get install libopenscap8").

All help is appreciated.

William B. Boucher, BSEE
Embedded Systems Software Engineer
Information Systems Security Manager
MZA Associates Corporation
2021 Girard Blvd., SE, Suite 150
Albuquerque, New Mexico 87106
Phone: 505.245.9970 x166
Fax: 505.245.9971
Cell: 505.459.7620
william.bouc...@mza.com

From: Newman, Stuart J. (GSFC-491.0)[KBRwyle] [mailto:stuart.j.new...@nasa.gov]
Sent: Wednesday, November 28, 2018 4:19 AM
To: Boucher, William ; open-scap-list@redhat.com
Subject: RE: Benchmark for Canonical Ubuntu 16.04 LTS

The current (0.1.41) version of the scap security guide has Ubuntu benchmarks.

Stuart J Newman

[cid:image001.png@01D486FB.CB9219D0]

Engineer 4; Systems
NASA/Goddard Space Flight Center, Building 14 Room 252 |  Greenbelt, Maryland 
20771 |  USA
Office: +1 301. 286.5145 |  Mobile: +1443.878.6146  |  
stuart.j.new...@nasa.gov



This e-mail, including any attached files, may contain confidential and 
privileged information for the sole use of the intended recipient.  Any review, 
use, distribution, or disclosure by others is strictly prohibited.  If you are 
not the intended recipient (or authorized to receive information for the 
intended recipient), please contact the sender by reply e-mail and delete all 
copies of this message.

From: 
open-scap-list-boun...@redhat.com 
mailto:open-scap-list-boun...@redhat.com>> 
On Behalf Of Boucher, William
Sent: November 27, 2018 18:23
To: open-scap-list@redhat.com
Subject: [Open-scap] Benchmark for Canonical Ubuntu 16.04 LTS


Hi folks,

I am currently hardening an Ubuntu embedded system for delivery to a customer.

I have downloaded the "Canonical Ubuntu 16.04 LTS STIG Ver 1, Rel 1" from DISA, 
and I have obtained a copy of the SCAP Compliance checker tool "SCC 5.0.2 
Ubuntu 16 AMD64".

What I am missing is an SCAP Benchmark file for Ubuntu 16.04. Does one exist?

I would like to use OpenSCAP to harden then scan this IS. The Open-SCAP BASE 
page says that Ubuntu is supported, so I can get the tools installed. But 
without a benchmark how would I proceed from there?

Thank you,

--Bill
William B. Boucher, BSEE
Embedded Systems Software Engineer
Information Systems Security Manager
MZA Associates Corporation
2021 Girard Blvd., SE, Suite 150
Albuquerque, New Mexico 87106
Phone: 505.245.9970 x166
Fax: 505.245.9971
Cell: 505.459.7620
william.bouc...@mza.com

___
Open-scap-list mailing list
Open-scap-list@redhat.com
https://www.redhat.com/mailman/listinfo/open-scap-list

Re: [Open-scap] Benchmark for Canonical Ubuntu 16.04 LTS

[Newman, Stuart J. (GSFC-491.0)[KBRwyle]]

The current (0.1.41) version of the scap security guide has Ubuntu benchmarks.

Stuart J Newman

[cid:image001.png@01D486E2.3DCCA660]

Engineer 4; Systems
NASA/Goddard Space Flight Center, Building 14 Room 252 |  Greenbelt, Maryland 
20771 |  USA
Office: +1 301. 286.5145 |  Mobile: +1443.878.6146  |  stuart.j.new...@nasa.gov



This e-mail, including any attached files, may contain confidential and 
privileged information for the sole use of the intended recipient.  Any review, 
use, distribution, or disclosure by others is strictly prohibited.  If you are 
not the intended recipient (or authorized to receive information for the 
intended recipient), please contact the sender by reply e-mail and delete all 
copies of this message.

From: open-scap-list-boun...@redhat.com  On 
Behalf Of Boucher, William
Sent: November 27, 2018 18:23
To: open-scap-list@redhat.com
Subject: [Open-scap] Benchmark for Canonical Ubuntu 16.04 LTS


Hi folks,

I am currently hardening an Ubuntu embedded system for delivery to a customer.

I have downloaded the "Canonical Ubuntu 16.04 LTS STIG Ver 1, Rel 1" from DISA, 
and I have obtained a copy of the SCAP Compliance checker tool "SCC 5.0.2 
Ubuntu 16 AMD64".

What I am missing is an SCAP Benchmark file for Ubuntu 16.04. Does one exist?

I would like to use OpenSCAP to harden then scan this IS. The Open-SCAP BASE 
page says that Ubuntu is supported, so I can get the tools installed. But 
without a benchmark how would I proceed from there?

Thank you,

--Bill
William B. Boucher, BSEE
Embedded Systems Software Engineer
Information Systems Security Manager
MZA Associates Corporation
2021 Girard Blvd., SE, Suite 150
Albuquerque, New Mexico 87106
Phone: 505.245.9970 x166
Fax: 505.245.9971
Cell: 505.459.7620
william.bouc...@mza.com

___
Open-scap-list mailing list
Open-scap-list@redhat.com
https://www.redhat.com/mailman/listinfo/open-scap-list