Hello,
I was just skimming the server scan results and noticed the
following. I haven't the foggiest idea what it could imply but seemed
odd.
Under
2-rhel-7-draft-stig-simp-6.0.0-Alpha-server-with-puppet-enterprise-
report.md#configure-periodic-execution-of-aide
It talks about enabling aide via cron, but the Notes have this:
32 5 * * 0 /bin/nice -n 19 /usr/bin/clamscan -l /var/log/clamscan.log
--official-db-only=yes -r --no-summary -i --bytecode-timeout=60000 --
max-files=10000 --max-filesize=25M --max-scansize=100M --max-
recursion=16 --max-dir-recursion=15 /tmp /var/tmp /dev/shm
Which seems completely unrelated to aide...
--
Nathanael
On Tue, 2017-01-03 at 22:48 -0500, Shawn Wells wrote:
On 1/3/17 3:24 PM, Trevor Vaughan wrote:
> Hi All,
>
> We've recently finished running the Draft RHEL 7 STIG against an
> instance of SIMP running atop Puppet Enterprise and thought that
> the
> results might be of interest.
>
> The server scan can be found
> at:
https://github.com/trevor-vaughan/ssg-scans/blob/master/2016-12
> -22-rhel-7-draft-stig-simp-6.0.0-Alpha-server-with-puppet-
> enterprise-report.md
>
> The client scan can be found
> at:
https://github.com/trevor-vaughan/ssg-scans/blob/master/2016-12
> -22-rhel-7-draft-stig-simp-6.0.0-Alpha-client-report.md
>
> We would certainly be interested in discussion regarding any items
> marked with "Suggest SSG Feedback" and we will be incorporating the
> reports into our core documentation right after we fix the
> findings.
>
> On a slightly side note, I'm now collecting banners for SIMP, if
> you
> have one you'd like to donate, PRs are most welcome
> to
https://github.com/simp/pupmod-simp-issue (look in the 'files'
> directory).
>
Holy crap, this feedback looks awesome! Wanted to acknowledge we got
it.... but you'll likely find responses slow as most @redhat.com
staff
returned today from 1-1.5 weeks of corporate holiday shutdown. Thanks
for starting the thread! Speaking for myself, I'll likely have time
to
review (in detail) Thursday.
_______________________________________________
scap-security-guide mailing list -- scap-security-guide(a)lists.fedorah
osted.org
To unsubscribe send an email to scap-security-guide-leave(a)lists.fedor
ahosted.org