SIMP 6.0 AWS

40 views
Skip to first unread message

winz...@gmail.com

unread,
Sep 26, 2017, 10:23:14 AM9/26/17
to SIMP Q&A Forum
Hello,

I have been running testing and dev for SIMP with the AWS Marketplace SIMP 6.0 image.  Just ran the puppet master through a STIG policy scanner and it looks like SIMP is only applying about 30% of the controls.  Have been poking around in the security profiles mapping and everything seems to be set to STIG.  Has anyone else noticed this?  I can upload one of our scans if it helps.  

Thanks,

Trevor Vaughan

unread,
Sep 26, 2017, 12:45:23 PM9/26/17
to winz...@gmail.com, SIMP Q&A Forum
Hello,

Thanks for trying out the AWS image!

You can find a list of SSG scan responses at https://github.com/trevor-vaughan/ssg-scans for the 6.0 release.

There were a small handful of findings that have been fixed and will be out shortly with our release of 6.1.

If you find anything that we've missed, definitely let us know!

Thanks,

Trevor

--
You received this message because you are subscribed to the Google Groups "SIMP Q&A Forum" group.
To unsubscribe from this group and stop receiving emails from it, send an email to simp+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/simp/ca2dc4c2-1812-4e8b-9c65-5d9fd090a5b3%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.



--
Trevor Vaughan
Vice President, Onyx Point, Inc

-- This account not approved for unencrypted proprietary information --

winz...@gmail.com

unread,
Sep 26, 2017, 3:53:51 PM9/26/17
to SIMP Q&A Forum
Thanks I will compare this to our scans from nessus.
Reply all
Reply to author
Forward
0 new messages