Hi folks,
We have the pleasure to announce that SCAP Security Guide release 0.1.31 has been created.
Highlights of this release: * New Wind River Linux profiles, * Various STIG profile enhancements, * Ubuntu Xenial product has been added, * Support for Ansible remediations, * Refactored build process, with more shared content * The build system for RPM is simpler now, * SCAP benchmark for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7 passes official NIST SCAP Content Validation Tool 1.2.1.15 requirements.
For a more detailed overview of changes (bug fixes, enhancements) implemented in this release please have a look at more detailed changelog: * https://github.com/OpenSCAP/scap-security-guide/releases/tag/v0.1.31
Full changelog at: * https://github.com/OpenSCAP/scap-security-guide/issues?q=milestone%3A0.1.31
Zip archives with pre-built benchmarks in DataStream form: * https://github.com/OpenSCAP/scap-security-guide/releases/download/v0.1.31/sc... (Zip archive using OVAL-5.11.1 language version) * https://github.com/OpenSCAP/scap-security-guide/releases/download/v0.1.31/sc... (Zip archive using OVAL-5.10 language version)
As this is one of the biggest SSG releases ever made, the team would like to give a great thank you to all contributors.
Happy hardening!
With regards, Watson Sato (on behalf of the SCAP Security Guide upstream team)
On 11/29/16 10:49 AM, Watson Yuuma Sato wrote:
Hi folks,
We have the pleasure to announce that SCAP Security Guide release0.1.31 has been created.
Highlights of this release:
- New Wind River Linux profiles,
- Various STIG profile enhancements,
- Ubuntu Xenial product has been added,
- Support for Ansible remediations,
- Refactored build process, with more shared content
- The build system for RPM is simpler now,
- SCAP benchmark for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7 passes official NIST SCAP Content Validation Tool
1.2.1.15 requirements.
For a more detailed overview of changes (bug fixes, enhancements) implemented in this release please have a look at more detailed changelog:
Full changelog at:
https://github.com/OpenSCAP/scap-security-guide/issues?q=milestone%3A0.1.31
Zip archives with pre-built benchmarks in DataStream form:
https://github.com/OpenSCAP/scap-security-guide/releases/download/v0.1.31/sc... (Zip archive using OVAL-5.11.1 language version)
https://github.com/OpenSCAP/scap-security-guide/releases/download/v0.1.31/sc... (Zip archive using OVAL-5.10 language version)
As this is one of the biggest SSG releases ever made, the team would like to give a great thank you to all contributors.
Happy hardening!
With regards, Watson Sato (on behalf of the SCAP Security Guide upstream team)
Where can I download RHEL RPMs (not trolling, promise!)?
COPR repos only have Fedora content: https://copr.fedorainfracloud.org/coprs/openscapmaint/openscap-latest/packag...
On 11/29/16 1:14 PM, Shawn Wells wrote:
On 11/29/16 10:49 AM, Watson Yuuma Sato wrote:
Hi folks,
We have the pleasure to announce that SCAP Security Guide release0.1.31 has been created.
Highlights of this release:
- New Wind River Linux profiles,
- Various STIG profile enhancements,
- Ubuntu Xenial product has been added,
- Support for Ansible remediations,
- Refactored build process, with more shared content
- The build system for RPM is simpler now,
- SCAP benchmark for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7 passes official NIST SCAP Content Validation Tool
1.2.1.15 requirements.
For a more detailed overview of changes (bug fixes, enhancements) implemented in this release please have a look at more detailed changelog:
Full changelog at:
https://github.com/OpenSCAP/scap-security-guide/issues?q=milestone%3A0.1.31
Zip archives with pre-built benchmarks in DataStream form:
https://github.com/OpenSCAP/scap-security-guide/releases/download/v0.1.31/sc... (Zip archive using OVAL-5.11.1 language version)
https://github.com/OpenSCAP/scap-security-guide/releases/download/v0.1.31/sc... (Zip archive using OVAL-5.10 language version)
As this is one of the biggest SSG releases ever made, the team would like to give a great thank you to all contributors.
Happy hardening!
With regards, Watson Sato (on behalf of the SCAP Security Guide upstream team)
Where can I download RHEL RPMs (not trolling, promise!)?
COPR repos only have Fedora content: https://copr.fedorainfracloud.org/coprs/openscapmaint/openscap-latest/packag...
Adding some color.
DISA allows customers to use "vendor published" content in absence of DISA publishing something to iase.disa.mil.
Was at Aberdeen Proving Grounds yesterday. Some people there are tracking upstream and are allowed to use as it's considered "vendor published." Trying to make their lives easier than downloading a zip file (as there's no version tracking / RPM integration with that approach).
----- Original Message -----
From: "Shawn Wells" shawn@redhat.com To: "Watson Yuuma Sato" wsato@redhat.com, scap-security-guide@lists.fedorahosted.org Cc: open-scap-list@redhat.com Sent: Tuesday, November 29, 2016 1:14:34 PM Subject: Re: [Open-scap] SCAP Security Guide 0.1.31
[snip]
Where can I download RHEL RPMs (not trolling, promise!)?
COPR repos only have Fedora content: https://copr.fedorainfracloud.org/coprs/openscapmaint/openscap-latest/packag...
The COPR repos actually only have RHEL6 and 7 RPMs, don't mind the dist tag, it comes from the Fedora SRPM. Fedora gets scap-security-guide updates fairly quickly and doesn't need COPR.
RHEL6 RPMS: https://copr-be.cloud.fedoraproject.org/results/openscapmaint/openscap-lates...
RHEL7 RPMs: https://copr-be.cloud.fedoraproject.org/results/openscapmaint/openscap-lates...
scap-security-guide@lists.fedorahosted.org
-
Martin Preisler -
Shawn Wells -
Watson Yuuma Sato