-
OpenSCAP allows SCE scripts to be part of Source DataStream. This is very powerful, because it allows you to create single datastream full of scripts. We should advertise/describe this feature.
The b…
-
#### Description of problem:
content_rule_file_permissions_unauthorized_sgid also reports directories with sgid set, not only files. sgid set on directories has a different meaning than on files and …
-
- Is this an issue with SCAP Workbench? No
- If so, report it here: https://github.com/OpenSCAP/scap-workbench/issues
- Is this an issue with SCAP Security Guide (i.e., related to the content of…
-
#### Description of problem:
harden_sshd_ciphers_opensshserver_conf_crypto_policy is misaligned with DISA
#### Details:
The SSG's rule checks for a specific list of ciphers. It fails because it f…
-
Question from Summit - how to handle 2FA from SCAP Workbench?
-
I am having issues connecting from my windows 7 workstation with scap-workbench 1.1.5 to a CentOS 7.3 system, while I can ssh as root to the CentOS machine, I cannot scan using scap workbench, scap w…
-
Ansible Lockdown is a collection of Ansible roles related to security automation. All roles included in this project must meet the contribution guidelines.
https://github.com/ansible/ansible-lockdo…
-
We call `dI` after `chroot()` but before calling `chdir("/")`.
```
openscap-1.2.17/src/OVAL/probes/probe/main.c:253: chroot_call: Calling chroot: "chroot(rootdir)".
16. openscap-1.2.17/src/OVA…
-
#### Description of problem:
Check for rule `xccdf_org.ssgproject.content_rule_aide_build_database` fails on Ubuntu 22.04.
#### SCAP Security Guide Version:
master branch
#### Operating Sy…
-
doesnt work