We are requiring SCAP in oVirt Node, we want to make it available on hosts for hardening purpose.
Can be tested on master snapshot
# yum deplist ovirt-host | grep scap; yum list ovirt-host openscap* scap-security-guide dependency: openscap provider: openscap-1.2.17-1.fc28.i686 provider: openscap-1.2.17-1.fc28.x86_64 dependency: openscap-utils provider: openscap-utils-1.2.17-1.fc28.x86_64 dependency: scap-security-guide provider: scap-security-guide-0.1.40-1.fc28.noarch dependency: openscap provider: openscap-1.2.17-1.fc28.i686 provider: openscap-1.2.17-1.fc28.x86_64 dependency: openscap-utils provider: openscap-utils-1.2.17-1.fc28.x86_64 dependency: scap-security-guide provider: scap-security-guide-0.1.40-1.fc28.noarch Installed Packages openscap.x86_64 1.2.17-1.fc28 @updates openscap-scanner.x86_64 1.2.17-1.fc28 @updates openscap-utils.x86_64 1.2.17-1.fc28 @updates ovirt-host.x86_64 4.3.0-0.0.master.20180705071013.git7d4f97d.fc28 @ovirt-master scap-security-guide.noarch 0.1.40-1.fc28 @updates
This bugzilla is included in oVirt 4.2.7 release, published on November 2nd 2018. Since the problem described in this bug report should be resolved in oVirt 4.2.7 release, it has been closed with a resolution of CURRENT RELEASE. If the solution does not work for you, please open a new bug report.
Closed by mistake, moving back to qa -> verified
This bugzilla is included in oVirt 4.3.0 release, published on February 4th 2019. Since the problem described in this bug report should be resolved in oVirt 4.3.0 release, it has been closed with a resolution of CURRENT RELEASE. If the solution does not work for you, please open a new bug report.
Hey Pavol, Please review the doc text just to make sure I got it right. I wasn't sure what exactly was meant by "in order to help hardening" in the previous doc text. OLD: The openscap, openscap-utils and scap-security-guide packages have been added to oVirt Node in order to help hardening the oVirt Node deployments. NOW: The openscap, openscap-utils and scap-security-guide packages have been added to oVirt Node in order to increase security hardening in oVirt Node deployments.
Actually, are we talking about RHVH here? It looks to me like oVirt Node is the upstream version of RHVH. So is this about oVirt Node or RHVH?
(In reply to Steve Goodman from comment #7) > Actually, are we talking about RHVH here? It looks to me like oVirt Node is > the upstream version of RHVH. So is this about oVirt Node or RHVH? This applies to both oVirt Node and RHV-H being exactly RHV-H downstream of oVirt Node.
Thanks, Sandro. doc_text updated to replace oVirt Node with RHVH. Since this is the release notes for RHV, I don't think it makes sense to mention oVirt Node here.