使用opencap评估CentOS 6的PCI DSS合规
[*]安装
# yum install scap-security-guide -y
[*]修改配置
如果使用的是 redhat 则可以跳过此步
# sed -i -e "s#Red Hat Enterprise Linux 6#CentOS 6##g" /usr/share/xml/scap/ssg/content/ssg-rhel6-cpe-oval.xml
# sed -i -e "s#cpe:/o:redhat:enterprise_linux:6#cpe:/o:centos:centos:6##g" /usr/share/xml/scap/ssg/content/ssg-rhel6-cpe-oval.xml
# sed -i -e "s#cpe:/o:redhat:enterprise_linux#cpe:/o:centos:centos##g" /usr/share/xml/scap/ssg/content/ssg-rhel6-xccdf.xml
[*] 评估PCI DSS合规的内容
# oscap xccdf eval --results results.xml --profile pci-dss /usr/share/xml/scap/ssg/content/ssg-rhel6-xccdf.xml
[*]生成HTML的报告
# oscap xccdf generate report --output report.html results.xml
页:
[1]