Hello folks,
We have the pleasure to announce that SCAP Security Guide version 0.1.38
has been released.
Highlights of this release:
* New License - BSD-3 Clause
* New Profiles for development introduced:
* ANSSI
* HIPAA
* C2S-Docker
* Adoption of CTest for schema validation
*
Fen,
There is an RFE open in OpenSCAP for this very thing at
https://github.com/OpenSCAP/openscap/issues/633
Outside of tailoring a profile, nothing super easy from the OpenSCAP side
of the house.
Gabe
On Thu, Mar 1, 2018 at 8:59 PM, Fen Labalme
wrote:
> The
Look into SCAP Workbench to help build a custom security profile for your
application.
https://www.open-scap.org/tools/scap-workbench/
Robert
From: Fen Labalme [mailto:fen.laba...@civicactions.com]
Sent: Thursday, March 1, 2018 10:00 PM
To: SCAP Security Guide
It may be over the top for your use case, but you might want to also look
at the FOSS SIMP project https://simp-project.com (shamelss SSG-related
plug).
We target SSG compliance but it's imminently flexible and manages your
system state over time instead of just at one time.
You can spawn an AWS