[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [Open-scap] Video preview of the OSCAP Anaconda addon



On Wed, 2013-05-15 at 16:16 -0400, Shawn Wells wrote:
> On 5/15/13 6:19 AM, Martin Preisler wrote:
> > ----- Original Message -----
> >> >From: "Shawn Wells"<shawn redhat com>
> >> >To:open-scap-list redhat com
> >> >Sent: Wednesday, May 15, 2013 3:19:14 AM
> >> >Subject: Re: [Open-scap] Video preview of the OSCAP Anaconda addon
> >> >
> >> >On 5/14/13 5:26 AM, Vratislav Podzimek wrote:
> >>> > >Hello again,
> >>> > >I've recorded another video [1] showing the current state of the addon's
> >>> > >UI and functionality.
> >>> > >
> >>> > >The addon now handles not only data stream collections but also various
> >>> > >archives (ZIPs and tarballs) containing separate files with the XCCDF
> >>> > >benchmark with OVAL checks etc.
> >>> > >
> >>> > >In the UI it is now possible to switch between profiles and in case of a
> >>> > >data stream collection content, it is also possible to switch between
> >>> > >data streams and checklists.
> >>> > >
> >>> > >[1]http://vimeo.com/66085973
> >>> > >
> >>> > >Enjoy the video and let me know, what you think about it!
> >> >
> >> >The work you're doing on this is fantastic!
Thanks!

> >> >
> >> >If someone presents a signed datastream, is there any ability to perform
> >> >signature verification?
> > Hi,
> > openscap itself won't do any verification but it can be done with the xmlsec
> > tools.
> >
> > Seehttps://www.redhat.com/archives/open-scap-list/2012-December/msg00000.html
> 
> For my use case I would like to validate the datastream before it 
> becomes processed in Anaconda. Will this be possible?
I'm definitely planning to add such checks. There are many things that
should be added -- e.g. there already is a support for verifying SSL
certificate of the server the content is downloaded from, but is not
hooked up properly. But for now I need to pass the first checkpoint --
defending my master thesis the addon is a part of. Then I will package
the addon, create a project (with Trac instance) for it and do further
development based on my ideas, bugs, feature requests etc.

The plan is to have the addon as some "technical preview" for the Fedora
19 (in a custom compose I will provide) and then properly packaged and
easily deployable for the Fedora 20.

-- 
Vratislav Podzimek

Anaconda Rider | Red Hat, Inc. | Brno - Czech Republic


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]