scap-workbench(20) System Administration Utilities scap-workbench(20)NAME
scap-workbench - GUI tool for systems compliance evaluation
SYNOPSIS
scap-workbench [XCCDF_FILE]
DESCRIPTION
scap-workbench is GUI tool for security compliance checking. Compliance can be described with SCAP standards - XCCDF and OVAL.
This tool enables users to:
* evaluate local and/or remote machines using SCAP content (scanning)
* perform remediation on both local and remote machines (remediation)
* adjust XCCDF scanning profiles (tailoring)
OPTIONS
XCCDF_FILE
If this parameter is provided the scanner will immediately open given XCCDF or source datastream (SDS) file after it starts.
SCAP CONTENT
Sample content is provided by the OpenSCAP project (in the openscap-content package).
Other sources of SCAP content are:
National Vulnerability Database - http://web.nvd.nist.gov/view/ncp/repository
Red Hat content repository - http://www.redhat.com/security/data/oval/
scap-security-guide project - http://fedorahosted.org/scap-security-guide/
sce-community-content project - http://fedorahosted.org/sce-community-content/
AUTHORS
Martin Preisler <mpreisle@redhat.com>
NOTES
scap-workbench uses the OpenSCAP library, see http://www.open-scap.org
SEE ALSO oscap(8)Red Hat Sep 2013 scap-workbench(20)
Check Out this Related Man Page
scap-as-rpm(8) System Administration Utilities scap-as-rpm(8)NAME
scap-as-rpm - manual page for scap-as-rpm
DESCRIPTION
usage: scap-as-rpm [-h] [--pkg-name PKG_NAME] [--pkg-version PKG_VERSION]
[--pkg-release PKG_RELEASE] [--pkg-summary PKG_SUMMARY] [--pkg-license PKG_LICENSE] [--pkg-scap-location PKG_SCAP_LOCATION]
[--rpm-destination RPM_DESTINATION] [--srpm-destination SRPM_DESTINATION] FILE [FILE ...]
Takes given SCAP input(s) and makes an RPM package that contains them. The result RPM can be installed using # yum install ./pack-
age-name-1-1.rpm which will put the contents into /usr/share/xml/scap. No dependency on openscap or scapworkbench is enforced in the output
package so you can use any SCAP-capable scanner to evaluate the content.
positional arguments:
FILE List of files that should be put into the result package. These should be SCAP XML files but such requirement is not enforced.
optional arguments:
-h, --help
show this help message and exit
--pkg-name PKG_NAME
Name of the RPM package, if none is provided the basename of the first SCAP input is used. Ex.: xyzsecurity-guide
--pkg-version PKG_VERSION
--pkg-release PKG_RELEASE
--pkg-summary PKG_SUMMARY
Optional short description of the package.
--pkg-license PKG_LICENSE
Short name of the license that you want to publish the package under. Ex.: GPLv2+, BSD, ...
--pkg-scap-location PKG_SCAP_LOCATION
Folder where SCAP files are supposed to be installed. Each package will have its own folder inside this folder. RPM variables can
be used and will be expanded as usual. It is recommended to keep the default settings.
--rpm-destination RPM_DESTINATION
The folder (absolute or relative to CWD) where the result RPM shall be saved.
--srpm-destination SRPM_DESTINATION
The folder (absolute or relative to CWD) where the result SRPM shall be saved.
scap-as-rpm November 2013 scap-as-rpm(8)
I was chatting with my teacher on how this could be a great tool for admins who are making the switch from GUI to CLI administration. I'm wondering, does this kind of tool exist? (4 Replies)
Hi,
May i know how can i view the lastest content of the log file. Currently, i use the "more" command :
more logfile
However, it will give me the content last year first and i had to keep using the space bar to move down to the lastest content for current date. How can i view the lastest... (3 Replies)
Hi all,
Has anyone ever been burned by editing /etc/default/security with vi? or should this only be edited inside of SAM or some such tool?
I want to turn on /etc/nologin as a tool to lock out all users but keep my system in multi mode for DB maintenance. TIA -KJ
PS I have been... (3 Replies)
Hi All,
I have a two different files with below informations.
First file contains the content are as below:
Second file contents are as below:
Now the problem is i need to insert the respective file name and status infomration from the second file into the first file exactly next to... (7 Replies)
Hello,
Three of our machines at work were sending out SPAM on the internet. 2 of them were so old I knew that the hackers just exploited the vulnerabilities in the old systems. The cause of concern is that one one of the machines is a new Centos 5.3 box.The only proof we have is that 4-6 emails... (3 Replies)
Hi everybody!
I wonder if I could see some text content of a website, via command line...
That could be very helpful, in order to automatize a lot of projects im working on.
thx a lot (2 Replies)
Hey everyone. Right now I am working through Red Hat's online storage reconfiguration guide for a project that we're working on. For removing storage paths to a volume using multipaths, it says that the first step is to type:
echo offline> /sys/block/sda/device/state
Does it actually mean SDA?... (2 Replies)
HI,
I have a file with the following content like
--------filename-----------
this is a tool
end
--------filename-----------
this is a tool
this is a box
end
--------filename-----------
these are tools
these are boxes
this is one
end
i want to write the content to another file as... (6 Replies)
Hi,
I am looking for GUI based tool for Mysql. I found few but I need to pay for them to get the license. Since I work for mom & pop company, they don't have any money. :-(
I was wondering if you guys know any good GNU tool out there?
I get the data on the email, I was wondering if I... (3 Replies)
From the nessus scanner tool report i got below vulnerability
PCI DSS Compliance : Insecure Communication Has Been Detected
http://www.tenable.com/plugins/index.php?view=single&id=56208
As per the description given in above link - I am not able to understand
How to find insecure port... (2 Replies)
I am posting this gauge the level of interest among the community in forming an open source team to work on an automation harness I am about to make available.
I already have a working POC running at my place of work, but it is not secure enough for production environments. However, I am about... (6 Replies)
Hi,
I have a web server running on Debian 6.0.4 in a computer outside my university, but the web URL is blocked by my university, the security group of the university said because it was scanning computers inside university.
I could not find any applications in my web server are doing... (3 Replies)
Hi Folks -
To make a long story short, this script is loaded into a workbench, executed via workbench user interface, and then I need to display the output on screen. However, I'm using the functions to direct stdout and stderror to their respective directories.
Is there a way to turn that... (5 Replies)