Produced RHEL-6 and RHEL-7 SSG content should pass the official NIST validation testsuite requirements
The currently produced RHEL/6 and RHEL/7 SSG content does NOT pass the official NIST validation testsuite. It should be enhanced to PASS this requirement.
Verification scenario / Steps to Reproduce :
-
Download the NIST testsuite:
$ wget http://scap.nist.gov/revision/SCAP%20Content%20Validation%20Tool%201.2.zip -
Clone the SSG git repository content && bu…
The currently produced RHEL/6 and RHEL/7 SSG content does NOT pass the official NIST validation testsuite. It should be enhanced to PASS this requirement.
Verification scenario / Steps to Reproduce :
-
Download the NIST testsuite:
$ wget http://scap.nist.gov/revision/SCAP%20Content%20Validation%20Tool%201.2.zip -
Clone the SSG git repository content && build the RHEL-6 content:
$ git clone git@github.com:iankko/scap-security-guide.git
$ cd scap-security-guide/RHEL/6
$ make clean
$ make content -
Unzip it & set up the Java's CLASSPATH to CWD
$ export CLASSPATH="." -
Run the testsuite on the RHEL/6 DataStream as follows:
$ java -jar lib/scapval-1.2.1.13.jar -scapversion 1.2 -file /tmp/github/scap-security-guide/RHEL/6/output/ssg-rhel6-ds.xml
Current result: There are ~1115 errors reported currently, see report in:
https://jlieskov.fedorapeople.org/scap-scapversion-1.2-validation-result.html
Expected result: No errors reported for RHEL/6 and RHEL/7 content produced by SSG.
This milestone is closed.
No open issues remain. View closed issues or see open milestones in this repository.