Category: STIG

DISA Updated the RHEL7 STIG! What changed between V1R1 –> V1R2?

This week DISA released an update to their RHEL7 STIG content, incrementing their release from V1R1 to V1R2. This update was unexpected; updates were not coordinated with DoD, NSA, NIST, or Red Hat — so what exactly changed?

Read More

Quick review of SPAWAR SCC 4.2 Beta 1 with OpenSCAP/SCAP Security Guide

Earlier today (Fri 3-FEB-2017), SPAWAR released a beta edition of their SCAP Compliance Checker 4.2 Beta 1, also known as SPAWAR SCC. Their tool works across multiple operating systems and their latest release “adds NIST 800-53 mappings to reports when CCE/CCI references are included in the content.” The inclusion of NIST and CCE metadata is extremely helpful […]

Read More