SCAP Security Guide 0.1.38

Hello folks, We have the pleasure to announce that SCAP Security Guide version 0.1.38 has been released. Highlights of this release: * New License - BSD-3 Clause * New Profiles for development introduced:     * ANSSI     * HIPAA     * C2S-Docker * Adoption of CTest for schema validation *

Re: Disabling specific bash remediations

Fen, There is an RFE open in OpenSCAP for this very thing at https://github.com/OpenSCAP/openscap/issues/633 Outside of tailoring a profile, nothing super easy from the OpenSCAP side of the house. Gabe On Thu, Mar 1, 2018 at 8:59 PM, Fen Labalme wrote: > The

RE: Disabling specific bash remediations

Look into SCAP Workbench to help build a custom security profile for your application. https://www.open-scap.org/tools/scap-workbench/ Robert From: Fen Labalme [mailto:fen.laba...@civicactions.com] Sent: Thursday, March 1, 2018 10:00 PM To: SCAP Security Guide

Re: Disabling specific bash remediations

It may be over the top for your use case, but you might want to also look at the FOSS SIMP project https://simp-project.com (shamelss SSG-related plug). We target SSG compliance but it's imminently flexible and manages your system state over time instead of just at one time. You can spawn an AWS