Install scap-security-guide Package
An XCCDF Rule
Description
The scap-security-guide
package can be installed with the following command:
$ sudo dnf install scap-security-guide
Rationale
The scap-security-guide
package provides a guide for configuration of the system
from the final system's security point of view. The guidance is specified in the Security
Content Automation Protocol (SCAP) format and constitutes a catalog of practical hardening
advice, linked to government requirements where applicable. The SCAP Security Guide project
bridges the gap between generalized policy requirements and specific implementation guidelines.
A system administrator can use the oscap
CLI tool from the openscap-scanner
package, or the SCAP Workbench GUI tool from the scap-workbench
package, to verify
that the system conforms to provided guidelines. Refer to the scap-security-guide(8) manual
page for futher information.
- ID
- xccdf_org.ssgproject.content_rule_package_scap-security-guide_installed
- Severity
- Medium
- References
- Updated
Remediation - Anaconda Pre-Install Instructions
package --add=scap-security-guide
Remediation - OS Build Blueprint
[[packages]]
name = "scap-security-guide"
version = "*"
Remediation - Ansible
- name: Ensure scap-security-guide is installed
package:
name: scap-security-guide
state: present
tags:
- enable_strategy
Remediation - Puppet
include install_scap-security-guide
class install_scap-security-guide {
package { 'scap-security-guide':
ensure => 'installed',
}
Remediation - Shell Script
if ! rpm -q --quiet "scap-security-guide" ; then
dnf install -y "scap-security-guide"
fi