使用opencap評估CentOS 6的PCI DSS合規
阿新 • • 發佈:2018-06-25
PE cap osc open pre PC -s pen enc 安裝
[root@localhost ~]# yum install scap-security-guide -y
- 修改配置
如果使用的是 redhat 則可以跳過此步
[root@localhost ~]# sed -i -e "s#<platform>Red Hat Enterprise Linux 6</platform>#<platform>CentOS 6</platform>##g" /usr/share/xml/scap/ssg/content/ssg-rhel6-cpe-oval.xml [root@localhost ~]# sed -i -e "s#cpe:/o:redhat:enterprise_linux:6#cpe:/o:centos:centos:6##g" /usr/share/xml/scap/ssg/content/ssg-rhel6-cpe-oval.xml [root@localhost ~]# sed -i -e "s#cpe:/o:redhat:enterprise_linux#cpe:/o:centos:centos##g" /usr/share/xml/scap/ssg/content/ssg-rhel6-xccdf.xml
-
評估PCI DSS合規的內容
oscap xccdf eval --results results.xml --profile xccdf_org.ssgproject.content_profile_pci-dss /usr/share/xml/scap/ssg/content/ssg-rhel6-ds.xml
- 生成HTML的報告
oscap xccdf generate report --output report.html results.xml
使用opencap評估CentOS 6的PCI DSS合規