From nobody Mon Jul 29 18:20:51 2024 X-Original-To: freebsd-enterprisewg@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WXmrd4pJfz5RjXl for ; Mon, 29 Jul 2024 18:21:05 +0000 (UTC) (envelope-from greg@freebsdfoundation.org) Received: from mail-pg1-x530.google.com (mail-pg1-x530.google.com [IPv6:2607:f8b0:4864:20::530]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "WR4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WXmrd0DFBz4Rkc for ; Mon, 29 Jul 2024 18:21:05 +0000 (UTC) (envelope-from greg@freebsdfoundation.org) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=freebsdfoundation.org header.s=gfnp-20170908 header.b=M+N9ub+N; dmarc=pass (policy=none) header.from=freebsdfoundation.org; spf=pass (mx1.freebsd.org: domain of greg@freebsdfoundation.org designates 2607:f8b0:4864:20::530 as permitted sender) smtp.mailfrom=greg@freebsdfoundation.org Received: by mail-pg1-x530.google.com with SMTP id 41be03b00d2f7-71871d5e087so2728770a12.1 for ; Mon, 29 Jul 2024 11:21:04 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsdfoundation.org; s=gfnp-20170908; t=1722277263; x=1722882063; darn=freebsd.org; h=to:subject:message-id:date:from:mime-version:from:to:cc:subject :date:message-id:reply-to; bh=C3Or7Y69E2e2va3hM7n47RZzDRLIGbLYxHJ9rVAMS/0=; b=M+N9ub+NBJPRwJMYOfDB49PxtvhOzjtYEe+dWZD0yAO9cz5mMGpAifzy070YmeIH8Z M12wM9wdzZU21ftWcv/48j941iG3Z/PiB0/x6sE0qIG9L1beUutQlQTLi+nnmZ6dI5/t VOLGIaJc+P9nyUmwJTmqI4MHfH66Od/6puJYbVkN7Ye20LP8HOZ6/E2vEGxVHg7O6gE8 rQzXBCrOrRMzaxatX+HxYVHLEyz3+uwo0TKFxaq/DS8BiF6qw4WNBFBW930VqIXcazSs TYbyuowKORdaJqpiqYUSO1ZGoZs29gXR/HUxGZe9FLi0s7yKEcnWJBjh7sCzfkL1tXNT gTOA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1722277263; x=1722882063; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=C3Or7Y69E2e2va3hM7n47RZzDRLIGbLYxHJ9rVAMS/0=; b=hHe7BPIp1zD9xghmuOs0RJmVmdRfxnmdKMYOHgckfSHglgmyquddhy1p1x8tDju0Ml wbim0ezPb3yGnAZ8gF0ceVb474VpNdfGVA31QcvKTeJgqj4VCqPZXKtVI9FiHpUpn5ZK xHJ2Ew1/xGJgvUPivjH/0NvQqKfsMMNO0wgFfv+CS5D3PJxhF2Zzb0NyfmQ4W0pbH6D9 N+op7Gd9hlpxPDSR0eHJiKmybHJrbrAufU+fARKv9kZflsQhsxDPPsiAh3YoLLBcHAZ2 kKXIknsAP4j1A/9YO6pUaIa7Y4/FrIuoxt3tKOIXiDY6xKn586lOKrUZO5m3MoiOOxxI oujA== X-Gm-Message-State: AOJu0YxSpiH/Px3kZGtNN1Hs395O6Va8/pT4qXyjwcvJVztFAwBoldPw Qj68JG3ksOqzie8r0Qy5j/++1luMbVSyLZe3VxaYk/QFDDqD7Xi+t/V2cEqkG3JTOJMMloGbltc S6YC7Nkb/Ugs/4DRKoQNYbSSy84/2+y5U+PCVaQPLeD5xTVECF1V7FQ== X-Google-Smtp-Source: AGHT+IE4AJ3Prw8vp5NXNit1fcrp+LFfLLpI6Ueiyz8e1zHP1M4k71K9Vng1TGM3x7ouUzC7/OVSufrZyHi1xVt0JVA= X-Received: by 2002:a17:90a:6782:b0:2c9:75a4:cc71 with SMTP id 98e67ed59e1d1-2cf7e5c1a1bmr9784343a91.32.1722277262897; Mon, 29 Jul 2024 11:21:02 -0700 (PDT) List-Id: FreeBSD as a general-purpose enterprise server List-Archive: https://lists.freebsd.org/archives/freebsd-enterprisewg List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-enterprisewg@freebsd.org Sender: owner-freebsd-enterprisewg@FreeBSD.org MIME-Version: 1.0 From: Greg Wallace Date: Mon, 29 Jul 2024 14:20:51 -0400 Message-ID: Subject: CIS Benchmark is open for Consensus Review To: "freebsd-enterprisewg@FreeBSD.org" Content-Type: multipart/alternative; boundary="00000000000075d63c061e66ec03" X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.90 / 15.00]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.90)[-0.896]; DMARC_POLICY_ALLOW(-0.50)[freebsdfoundation.org,none]; R_DKIM_ALLOW(-0.20)[freebsdfoundation.org:s=gfnp-20170908]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; MIME_TRACE(0.00)[0:+,1:+,2:~]; RCVD_COUNT_ONE(0.00)[1]; TO_DN_EQ_ADDR_ALL(0.00)[]; FROM_HAS_DN(0.00)[]; MISSING_XM_UA(0.00)[]; ARC_NA(0.00)[]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RCPT_COUNT_ONE(0.00)[1]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::530:from]; TO_MATCH_ENVRCPT_ALL(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-enterprisewg@freebsd.org]; RCVD_TLS_LAST(0.00)[]; DKIM_TRACE(0.00)[freebsdfoundation.org:+] X-Rspamd-Queue-Id: 4WXmrd0DFBz4Rkc --00000000000075d63c061e66ec03 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Hi Enterprise WG, The FreeBSD Foundation is pleased to announce the release of the draft CIS FreeBSD 14 Benchmark for community consensus review. The draft document can be found here: https://workbench.cisecurity.org/benchmarks/15908/files The consensus review period is scheduled to close on Monday August 12, 2024= . We would like to thank the FreeBSD Community for all of the work that went into this draft document. Special thanks to Benchmark writer Moin Rahman, reviewers Carole Fennelly and Jason Kafer, Program Manager Joe Mingrone, Justin Brown and Eric Pinnell at CIS, to Verisign for underwriting some of the cost of creating the CIS FreeBSD 14 Benchmark and to all the generous donors to the FreeBSD Foundation for underwriting the remaining cost. THANK YOU! FAQ What is the Center for Internet Security (CIS) and CIS Benchmarks? CIS=C2=AE is a community-driven nonprofit responsible for the CIS Controls=C2=AE and CIS Benchmarks=E2=84=A2, globall= y recognized best practices for securing IT systems and data. The CIS Benchmarks are prescriptive configuration recommendations for more than 25+ product families. They represent the consensus-based effort of cybersecurity experts globally to help protect systems against threats more confidently. How does CIS consensus work? CIS Benchmarks are created using a consensus review process comprised of a global community of subject matter experts. The process combines real world experience with data-based information to create technology-specific guidance to assist users to secure their environments. Consensus participants provide perspective from a diverse set of backgrounds including consulting, software development, audit and compliance, security research, operations, government, and legal. What happens after the review? Once the consensus review is complete and any change requests have been addressed, the CIS FreeBSD 14 Benchmark will be published on the CIS site in the OPERATING SYSTEMS category at this link: https://www.cisecurity.org/cis-benchmarks: All CIS Benchmarks are free to download as PDFs. Initially, the CIS FreeBSD 14 Benchmark will only be available as a PDF. The FreeBSD Foundation is working with CIS to scope the work needed to enable FreeBSD in CIS Controls and other automated tooling. Best, --=20 Greg Wallace Director of Partnerships & Research M +1 919-247-3165 Schedule a meeting Get your FreeBSD Gear --00000000000075d63c061e66ec03 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Hi Enterprise WG,<= div>

The FreeBSD Foundation is please= d to announce the release of the draft CIS FreeBSD 14 Benchmark for = community conse= nsus review.=C2=A0


The draft document can be found here: https://workb= ench.cisecurity.org/benchmarks/15908/files=C2=A0

=C2=A0

The consensus review period is scheduled to = close on Monday August 12, 2024.

=C2=A0=

We would like to thank the FreeBSD Com= munity for all of the work that went into this draft document. Special than= ks to Benchmark writer Moin Rahman, reviewers Carole Fennelly and Jason Kaf= er, Program Manager Joe Mingrone, Justin Brown and Eric Pinnell at CIS, to = Verisign for underwriting some of the cost of creating the CIS Free= BSD 14 Benchmark and to all the generous donors to the FreeBSD Foundation for underwriting the remaining cost. THANK YO= U!

FAQ

What is the Center for Internet Security (CIS) and CIS Benchmarks?


CIS=C2= =AE is a community-driven nonprofit responsible= for the CIS Controls= =C2=AE and CIS Benchmarks=E2=84=A2, globally recogni= zed best practices for securing IT systems and data.=C2=A0


The CIS Benchmarks are prescriptive configuration recommendation= s for more than 25+ product families. They represent the consensus-based ef= fort of cybersecurity experts globally to help protect systems against thre= ats more confidently.


How does CIS consensus work?

=C2= =A0

CIS Benchmarks are created using a = consensus review process comprised of a global community of subject matter = experts. The process combines real world experience with data-based informa= tion to create technology-specific guidance to assist users to secure their= environments. Consensus participants provide perspective from a diverse se= t of backgrounds including consulting, software development, audit and comp= liance, security research, operations, government, and legal.

=C2=A0

What happens after the review?


Once the consensus review is complete and any change requests have b= een addressed, the CIS FreeBSD 14 Benchmark will be published on the CIS si= te in the OPERATING SYSTEMS category at this link: https://www.cisecurity.org/cis-benchmarks:



All CIS Benchmarks are free to down= load as PDFs.=C2=A0


Initially, = the CIS FreeBSD 14 Benchmark will only be available as a PDF. The FreeBSD F= oundation is working with CIS to scope the work needed to enable FreeBSD in= CIS Controls and other automated tooling.


Best,

--
Greg Wallace
Director of Partnerships & Research
M +1 919-247-3165
--00000000000075d63c061e66ec03--