Date: Fri, 21 Jul 2017 21:49:14 -0400 From: Yonas Yanfa <yonas@fizk.net> To: freebsd-security@freebsd.org Subject: Re: OpenSCAP for FreeBSD Message-ID: <72d3444e-5174-776e-049e-8b3099fab779@fizk.net> In-Reply-To: <2651306.a2lTSCmlO7@freechin.atlnet> References: <3056b3dc-82d6-0634-0f14-2a4308488a95@fizk.net> <2651306.a2lTSCmlO7@freechin.atlnet>
next in thread | previous in thread | raw e-mail | index | archive | help
On 07/21/2017 20:17, Joey Kelly wrote: > On Friday 21 July 2017 19:21:10 Yonas Yanfa wrote: >> Hi, >> >> Is there anything like OpenSCAP for FreeBSD? > If it's a matter of selecting an XML profile, then surely one can be crafted > for any OS you choose. > Yes, and it shouldn't be too hard to port this to FreeBSD, but possibly time consuming. The benefit of porting it is that they already have a lot of security policies <https://www.open-scap.org/security-policies/>; written (eg. USGCB, PCI DSS). Scanning and remedying Linux and FreeBSD systems for vulnerabilities could be done using the same XML file. Also, you can use their installer plugin <https://www.open-scap.org/tools/oscap-anaconda-addon/>; to set security profiles during install. -- Yonas Yanfa In Love With Open Source Drupal <http://drupal.org/user/473174>; :: GitHub <http://github.com/yonas>; :: Mozilla <https://addons.mozilla.org/en-US/thunderbird/user/4614995/>; fizk.net | yonas@fizk.net
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?72d3444e-5174-776e-049e-8b3099fab779>