debian-cis icon indicating copy to clipboard operation
debian-cis copied to clipboard

Published 20 hours ago verified publisher icon ovh

What CIS Benchmark is used exactly ? What do I implement ?

Open ManuGithubSteam opened this issue 1 year ago • 0 comments

Hi OVH,

Thank you soo much for this repo and your work! We need to harden down Debian an as there are no STIGs this repo is one of my main resources. We prefer CIS anyway. Also openscap has not many profiles to work with.

But this begs the question: What is actually implemented ? Which CIS Benchmark ?

Sorry for my confusion but on the main Page it says it would implement PCI-DSS, but here https://github.com/ovh/debian-cis/issues/201 is says it implements the CIS_Debian_Linux_11_Benchmark, or now for Debian 12 i guess.

Or is the CIS_Debian_Linux_12_Benchmark PCI-DSS compliant ?

So which one is used ? I need this for documentation purposes to make it clear what security baseline gets implemented.

How does the hardeing level affect the outcome? So to say that hardening level 3 is PCI-DSS but level 2 is not compliant with it and so on..

Sorry for my confusion.

Thanks and have a great week!

ManuGithubSteam avatar Feb 21 '24 08:02 ManuGithubSteam