Permalink
Browse files

Display screenshots in markdown

  • Loading branch information...
Greg Elin
Greg Elin committed Jul 7, 2015
1 parent da8d467 commit c0616055a278795fa310f1c0e014f5d8d13b3881
Showing with 17 additions and 6 deletions.
  1. +17 −6 security/CONTINOUS_MONITORING.md
@@ -32,13 +32,24 @@ The SCAP datastream file used for the scan is `Ubuntu_14.04_LTS_Server_Datastrea
*(NOTE: Open source licensed SCAP content for open source software is currently rare. GovReady Ubuntu 14.04 SCAP is the first open source SCAP content for Ubuntu and was developed specifically to test FISMA-Ready Ubuntu LTS. The FISMA-Ready SCAP contains OVAL (Open Vulnerability Assessment Language) schema currently being reviewed by OVAL board and can only be tested with a special version of JOVAL's Professional scanner.) No open source SCAP currently exists for Docker, although a Security Benchmark for Docker 1.6 was recently published in April 2015 by the Center for Internet Security (https://web.nvd.nist.gov/view/ncp/repository/checklistDetail?id=589). CIS's Docker Security Benchmark cannot be included in this repository due to licensing restrictions.)*
The following screenshots are to provide evidence of continuous monitoring using 18F FISMA-Ready Ubuntu LTS and SCAP
### Screenshots
The following screenshots are to provide evidence of continuous monitoring using 18F FISMA-Ready Ubuntu LTS and SCAP.
*`screenshot-deployed-52.11.154.239.png` - screenshot of http://52.11.154.239 showing deployment of application*
![screenshot of http://52.11.154.239 showing deployment of application](screenshot-deployed-52.11.154.239.png)
* `screenshot-deployed-52.11.154.239.png` - screenshot of http://52.11.154.239 showing deployment of application
* `screenshot-ssh-52.11.154.239.png` - screenshot of SSH access to `52.11.154.239` showing Docker HOST OS is 18F FISMA-Ready Ubuntu LTS
* `screenshot-scan-benchmark-52.11.154.239.png` - screenshot of using GovReady's FISMA-Ready Unbuntu LTS Benchmark SCAP `Ubuntu_14.04_LTS_Server_Datastream_v0.0.1.xml` to scan host `52.11.154.239` using JOVAL scanner
* `screenshot-scanning-52.11.154.239.png` - screenshot of scan underway
* `screenshot-scan-result-52.11.154.239.png` - screenshot of scan result of `52.11.154.239` using GovReady's FISMA-Ready Unbuntu LTS Benchmark SCAP `Ubuntu_14.04_LTS_Server_Datastream_v0.0.1.xml`
*`screenshot-ssh-52.11.154.239.png` - screenshot of SSH access to `52.11.154.239` showing Docker HOST OS is 18F FISMA-Ready Ubuntu LTS*
![screenshot of SSH access to `52.11.154.239](screenshot-ssh-52.11.154.239.png)
*`screenshot-scan-benchmark-52.11.154.239.png` - screenshot of using GovReady's FISMA-Ready Unbuntu LTS Benchmark SCAP `Ubuntu_14.04_LTS_Server_Datastream_v0.0.1.xml` to scan host `52.11.154.239` using JOVAL scanner*
![screenshot of using GovReady's FISMA-Ready Unbuntu LTS Benchmark SCAP `Ubuntu_14.04_LTS_Server_Datastream_v0.0.1.xml` to scan host `52.11.154.239` using JOVAL scanner](screenshot-scan-benchmark-52.11.154.239.png)
*`screenshot-scanning-52.11.154.239.png` - screenshot of scan underway*
![screenshot of scan underway](screenshot-scanning-52.11.154.239.png)
*`screenshot-scan-result-52.11.154.239.png` - screenshot of scan result of `52.11.154.239` using GovReady's FISMA-Ready Unbuntu LTS Benchmark SCAP `Ubuntu_14.04_LTS_Server_Datastream_v0.0.1.xml`*
![screenshot of scan result of `52.11.154.239` using GovReady's FISMA-Ready Unbuntu LTS Benchmark SCAP `Ubuntu_14.04_LTS_Server_Datastream_v0.0.1.xml`](screenshot-scan-result-52.11.154.239.png)
## Identification of Vulnerability Feeds
* http://www.ubuntu.com/usn/ (RSS: http://www.ubuntu.com/usn/rss.xml) provides CVE feed for Ubuntu, the operating system

0 comments on commit c061605

Please sign in to comment.