openscap
openscap copied to clipboard
OpenSCAP
NIST Certified SCAP 1.2 toolkit
The `--skip-valid` option is one of the most misleading things we have. But since it is effectively a part of the API we should tread carefully. #1689 introduces `--skip-validation` synonym....
According to the SCAP standard scanner does not have to provide inbuilt CPE dictionary. We see more harm than good from having it. It will be removed (emptied) in the...
#### Description of Problem: There are a lot of "unknown" rule results when scanning Windows 10 systems. This seem to be caused by 1 error and 357 warnings during the...
The official image located at https://hub.docker.com/r/openscap/openscap is now 3 years old. Also, it doesn't contain the oscap-docker tool. Is this image still maintained?
I am just getting started in attempting to use OSCAP to harden our various Windows machines. I have downloaded the .msi for 1.3.0 and installed but am weak on CLI...
#### Description of Problem: When I run the test tool on RHEL 7 using `oscap xccdf eval --fetch-remote-resources --profile xccdf_org.ssgproject.content_profile_stig --results-arf arf.xml --report report.html /usr/share/xml/scap/ssg/content/ssg-rhel7-ds.xml` the generated HTML shows a...
#### Description of Problem: When I run XCCDF evaluation it finds many issues for xccdf_org.ssgproject.content_rule_security_patches_up_to_date rule referring to OVAL definitions. Even for packages that are not installed. However when I...
#### Description of Problem: OVAL test results showing incorrect value (false/fail) for the following Rule IDs after running rhel8-playbook-stig.yml. 1. Rule ID: xccdf_org.ssgproject.content_rule_banner_etc_issue OVAL Definition ID: oval:ssg-banner_etc_issue:def:1 Modify the System...
MacOS X build fails (GH actions CI). ``` /Users/runner/work/openscap/openscap/src/OVAL/probes/probe/worker.c:1013:8: error: implicit declaration of function 'chroot' is invalid in C99 [-Werror,-Wimplicit-function-declaration] if (chroot(rootdir) != 0) { ^ /Users/runner/work/openscap/openscap/src/OVAL/probes/probe/worker.c:1176:7: error: implicit declaration...
#### Description of Problem: After remediation I get this when running a scan: Can't connect to the probe [oval_probe_ext.c:468] Can't connect to the probe [oval_probe_ext.c:468] Can't connect to the probe...
