RE: [PATCH 2/2] Bugfix - fixing typo ('Red Hat' instead of 'Red Had')

If not too late, can you also correct the typo in the phrase "partition definition will ca installer to pause"? Robert Hayden -Original Message- From: scap-security-guide-boun...@lists.fedorahosted.org [mailto:scap-security-guide-boun...@lists.fedorahosted.org] On Behalf Of David Smi

Any projects similar to OpenSCAP/SSG but for the Oracle RDBMS tier?

I am looking to determine if there is a community project similar to OpenSCAP/SSG that applies to Oracle RDBMS STIG compliance? I have done some R&D on SSG for the Linux OS and have presented it internally at our Developer's conference with some positive feedback. Outside of the Linux OS, the

RE: Use /etc/passwd directly instead of sources in NSS

If it helps, you can use the following type of command to pull lines from /etc/passwd. awk -v UID=500 -F: '($3>=UID)' /etc/passwd Robert Hayden | Sr. Technology Architect | Cerner Corporation | 816.201.4068 | rhay...@cerner.com | www.cerner.com From: Rodolfo Martínez

RE: Disabling specific bash remediations

Look into SCAP Workbench to help build a custom security profile for your application. https://www.open-scap.org/tools/scap-workbench/ Robert From: Fen Labalme [mailto:fen.laba...@civicactions.com] Sent: Thursday, March 1, 2018 10:00 PM To: SCAP Security Guide Subject: Disabling specific bash

RE: Excessive FIPS checks

I had the same thoughts on these checks, but the wording in the DISA STIGs are very subtle. V-72073 (AIDE implements FIPS..) has a note in the Check Text that reads: Note: If RHEL-07-021350 is a finding, this is automatically a finding too as the system cannot implement FIPS 140-2 approved cryp

Any rumors on next draft for RHEL 8 STIG from DISA?

Curious on if anyone has any information on the next draft release from DISA on RHEL 8 STIG benchmarks? The one in May was pretty rough and did not really match where the current upstream was moving towards. Thanks in advance Robert Robert Hayden | Lead Technology Architect | Cerner Corporatio

Incorrect Profile variable for stig-rhel6-server?

All, Please forgive my ignorance, as I am just starting to wrap my brain around the terminology in the Security community and the SCAP testing tools. I guess a newbie warning. I attempted to highlight sections of text below to help in reading, but it may get stripped out from some emailers.

Does aide_periodic_cron_checking have an incorrect fix documented?

I was reviewing the Rule: aide_periodic_cron_checking and noticed the following recommended fix: start quote To implement a daily execution of AIDE at 4:05am using cron, add the following line to /etc/crontab: 05 4 * * * root /usr/sbin/aide --check AIDE can be ex

RE: Does aide_periodic_cron_checking have an incorrect fix documented?

hesapeake Beach, MD 20732 Work: 301.543.3716 Cell: 410.493.9448 paul.whit...@mac.com<mailto:paul.whit...@mac.com> On Aug 09, 2013, at 12:38 PM, "Hayden,Robert" mailto:rhay...@cerner.com>> wrote: I was reviewing the Rule: aide_periodic_cron_checking and noticed the following r