Hello,
As you may be aware, development efforts for the Red Hat
Enterprise Linux 6 (RHEL6) STIG have been occurring over the past
several months. The draft content has been developed through an open
source project, called the SCAP Security Guide [1], with partnership
from NSA, DISA FSO, Red Hat, and other interested parties.
In the theme of transparency, and as part of the DoD Consensus
Process, we will be hosting a public call to receive user feedback
on the latest draft content. This is your chance to influence
settings, including the voicing of concerns relating to any impact
the STIG may have on daily operations. While last minute, we
realized that mailing lists such as this would be a great place to
spread awareness of the call.
The current draft of the RHEL6 STIG is located at:
http://people.redhat.com/swells/scap-security-guide/RHEL6/output/table-rhel6-stig-server.html
We are actively seeking feedback in areas such as:
- Do you feel any of the proposed settings would have a negative
mission impact?
- Are the proposed settings operationally feasible?
- Is there anything we forgot?
To RSVP for the public DoD Consensus call,
occurring
Thursday 25-OCT at 1100 EST, please reach out to either
of the following:
Shawn Wells - Red Hat -
sh...@redhat.com
Jeffrey Blank - NSA IAD -
bl...@eclipse.ncsc.mil
Regards,
Shawn
[1]
https://fedorahosted.org/scap-security-guide/
--
Shawn Wells
Technical Director,
U.S. Intelligence Programs
(e) sh...@redhat.com
(c) 443.534.0130