.SCAP Security Guide now supports ACSC Essential Eight
The `scap-security-guide` packages now provides the Australian Cyber Security Centre (ACSC) Essential Eight compliance profile and a corresponding Kickstart file. With this enhancement, users can install a system that conforms with this security baseline. Furthermore, you can use the *OpenSCAP* suite for checking security compliance and remediation using this specification of minimum security controls defined by ACSC.
Setting info to mthacker.
Mark - What needs to be done to ensure this lands in the next RHEL rebase of scap-security-guide? Would consider this a "new feature" vs errata/z-stream update, which may mean next RHEL minor release. The code is already merged upstream. Supporting links in Shane's comments above.
Comment 9Watson Yuuma Sato
2019-11-13 14:45:51 UTC
Comment 14Gabriel Gaspar Becker
2019-11-25 12:29:36 UTC
Created attachment 1639456[details]
Final report of E8 profile scanning after RHEL installation through Anaconda + OSCAP Anaconda Addon
Final report of E8 profile scanning produced after RHEL7.8 installation.
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.
https://access.redhat.com/errata/RHBA-2020:1019