CIS based Compliance check for Ubuntu 22.04 using OpenSCAP

nipanesanjay

12/23/23, 10:36 AM

We are working on implementing Hardening and Compliance check for Windows and Linux family OS. We are following OpenSCAP for Linux family OS. Presently we are working on implementing same for Ubuntu 22.04. We are referring CIS Benchmark Level 1 Server configurations.

For Ubuntu 20.04, to get compliance report, we use below command -

sudo oscap xccdf eval --profile xccdf_org.ssgproject.content_profile_cis_level1_server --results-arf arf.xml --report $1 /usr/share/ubuntu-scap-security-guides/1/benchmarks/ssg-ubuntu2004-ds.xml

We are looking for similar command for Ubuntu 22.04 as well. Please advise if we can get some direction in this area. Thanks

998

0 + 4

22.04

nipanesanjay

12/26/23, 9:39 PM

For Ubuntu 22.x = 22.04

nipanesanjay

12/26/23, 9:54 PM

In our case, its 22.04 specific

Rinzwind

12/28/23, 4:59 PM

why would the command be different between 20.04/20.10/22.04/22.10? See https://manpages.ubuntu.com/manpages/jammy/man8/oscap.8.html

nipanesanjay

12/29/23, 8:09 PM

sure, I will go through it.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: CIS based Compliance check for Ubuntu 22.04 using OpenSCAP

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.