Thanks Peter. Noticed && replied. Will reply / deal with
Zbigniew's comments (c#4) yet too.
Regards, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Technologies Team
----- Original Message -----
From: "Peter Vrabec" <pvrabec(a)redhat.com>
To: "Jan Lieskovsky" <jlieskov(a)redhat.com>
Cc: devel(a)lists.fedoraproject.org, "Josh Bressers" <bressers(a)redhat.com>,
"Shawn Wells" <swells(a)redhat.com>
Sent: Tuesday, October 15, 2013 11:34:21 AM
Subject: Re: Review Request: scap-security-guide - Security guidance and baselines in
SCAP formats
Hi Jan
thnx. for the progress.
see my question:
https://bugzilla.redhat.com/show_bug.cgi?id=1018905#c5
Peter.
On 10/14/2013 06:47 PM, Jan Lieskovsky wrote:
> Hello guys,
>
> have submitted review request for scap-security-guide rpm for Fedora:
> [1]
https://bugzilla.redhat.com/show_bug.cgi?id=1018905
>
> The goal of the Fedora scap-security-rpm project is:
> * provide primary SCAP protocol content for oscap / scap-workbench,
> intended for use for scanning of Fedora systems,
>
> * package existing RHEL6 / JBossEAP5 / RHEL5 SSG content into
> Fedora's rpm too (so RHEL6 / JBossEAP5 / RHEL5 guests could
> be scanned from Fedora host too) - this is to be implemented yet
> in upcoming versions,
>
> * the SCAP content is to be based on:
> - transformation of existing upstream SCAP security guide:
> [2]
https://fedorahosted.org/scap-security-guide/
>
> rules for Red Hat Enterprise Linux 6 to Fedora,
> - creation of new (Fedora specific) rules which would
> align with the development / application of new features
> in Fedora with intention the created rules to be later
> transformed back (once validated) into SSG upstream for
> use in subsequent versions of Red Hat Enterprise Linux
>
>
> Above link [1] provides referencing / initial SPEC file and source
> RPM package with SCAP XML content as it got transformed from existing
> RHEL6 content.
>
> Subsequent rules, remediation scripts (and above mentioned RHEL6 /
> JBossEAP5 /
> RHEL5 content) to come in future package versions.
>
> Please review.
>
> Thank you && Regards, Jan.
> --
> Jan iankko Lieskovsky / Red Hat Security Technologies Team
>