Date: Sat, 22 Jul 2017 15:02:49 -0400 From: Yonas Yanfa <yonas@fizk.net> To: Shawn Webb <shawn.webb@hardenedbsd.org> Cc: freebsd-security@freebsd.org Subject: Re: OpenSCAP for FreeBSD Message-ID: <01e93875-65d6-0332-f0c5-7d2614cde266@fizk.net> In-Reply-To: <20170722124712.oxl6yalmhdetbwfe@mutt-hbsd> References: <3056b3dc-82d6-0634-0f14-2a4308488a95@fizk.net> <2651306.a2lTSCmlO7@freechin.atlnet> <72d3444e-5174-776e-049e-8b3099fab779@fizk.net> <20170722124712.oxl6yalmhdetbwfe@mutt-hbsd>
next in thread | previous in thread | raw e-mail | index | archive | help
On 07/22/2017 08:47, Shawn Webb wrote: > On Fri, Jul 21, 2017 at 09:49:14PM -0400, Yonas Yanfa wrote: >> On 07/21/2017 20:17, Joey Kelly wrote: >>> On Friday 21 July 2017 19:21:10 Yonas Yanfa wrote: >>>> Hi, >>>> >>>> Is there anything like OpenSCAP for FreeBSD? >>> If it's a matter of selecting an XML profile, then surely one can be crafted >>> for any OS you choose. >>> >> Yes, and it shouldn't be too hard to port this to FreeBSD, but possibly time >> consuming. >> >> The benefit of porting it is that they already have a lot of security >> policies <https://www.open-scap.org/security-policies/>; written (eg. USGCB, >> PCI DSS). Scanning and remedying Linux and FreeBSD systems for >> vulnerabilities could be done using the same XML file. Also, you can use >> their installer plugin >> <https://www.open-scap.org/tools/oscap-anaconda-addon/>; to set security >> profiles during install. > I'll get in touch with some of my coworkers, who were instrumental in > the creation of SCAP. I'll get their thoughts on LoE for porting to > FreeBSD. Depending on their schedules, my response may be delayed. Thanks Shawn!!! :-) -- Yonas Yanfa In Love With Open Source Drupal <http://drupal.org/user/473174>; :: GitHub <http://github.com/yonas>; :: Mozilla <https://addons.mozilla.org/en-US/thunderbird/user/4614995/>; fizk.net | yonas@fizk.net
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?01e93875-65d6-0332-f0c5-7d2614cde266>