NIST requirement mapping question
by Joe Nall
Has any work been done to be able to say what checks are mapped to a single NIST control?
For example:
AC-3:
userowner_shadow_file
groupowner_shadow_file
groupowner_group_file
...
IIUC, the current tools generate something more akin to
userowner_shadow_file:
AC-3, CM-6
where AC-3 and CM-6 are in the same nist ref
joe
12 years, 2 months
[PATCH] Add -f to rm so that make clean doesn't fail if pdf files are missing
by Joe Nall
---
rhel6/src/Makefile | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
diff --git a/rhel6/src/Makefile b/rhel6/src/Makefile
index 49ce4ea..11fe48c 100644
--- a/rhel6/src/Makefile
+++ b/rhel6/src/Makefile
@@ -57,4 +57,4 @@ eval-common:
oscap xccdf eval --profile common --results /tmp/results-test.xml output/rhel6-xccdf-scap-security-guide.xml
clean:
- rm ${OUTDIR}/*.xml ${OUTDIR}/*.html ${OUTDIR}/*.pdf
+ rm -f ${OUTDIR}/*.xml ${OUTDIR}/*.html ${OUTDIR}/*.pdf
--
1.7.1
12 years, 2 months
DCID 6/3
by Joe Nall
I know DCID 6/3 is going away, but I would like to map the DCID requirements to the rules in the scap-security-guide.
Questions:
1) Has this been done in a non-public repo since the source is FOUO?
2) Would it be acceptable to commit the DCID paragraph numbers to the git tree without any expository text?
e.g. <ref dcid="1.1, 2.2, 3.3"/>
joe
12 years, 2 months