CIS for Centos Stream 9

888 views
Skip to first unread message

Raúl Rodríguez Macías

unread,
Mar 10, 2022, 11:57:28 AM3/10/22
to wa...@googlegroups.com

Hi there:

I reviewed the CIS Benchmark and still the don't  release a benchmark for CENTOS Sream 9, so the agent I installed on it  do not have anyway to do a Security configuration assessment.

Can you please provide me with some workaround.

Thank in advance
--
Raúl Rodríguez Macías
Message has been deleted

Raul Del Pozo Moreno

unread,
Mar 10, 2022, 1:26:31 PM3/10/22
to Wazuh mailing list
Hello Raúl,

Currently Centos 9 stream is a very recent system and unfortunately there are no Benchmarks available yet, so Wazuh still does not have templates as you say.

While they publish said benchmark, you can make your own SCA template with the policies you consider appropriate based on other versions, but keep in mind that they are different versions and may not be fully compatible, for this, we have this documentation: https://documentation.wazuh.com/current/user-manual/capabilities/sec-config-assessment/creating-custom-policies.html

Here you can see the templates for centos that we currently have: https://github.com/wazuh/wazuh/tree/v4.2.5/ruleset/sca/centos

Regards, Raúl.

Raul Del Pozo Moreno

unread,
Mar 10, 2022, 4:18:53 PM3/10/22
to Wazuh mailing list
Hello Raul

Please, if you reply to this thread, do it with reply all instead of reply, this way your answer/question can be visible to all users instead of only us, which can be of great help to other users who see the thread.

----
> Thank you very much for your answer. Centos is just because your POC is supposed to be done with Centos, but if you recommend me, for example, Ubuntu, I can substitute it without any problem 
> But if you can orient me how much an agent in Amazon Linux 2 uses of CPU, RAM and disk, this will be great for me, 
> Thanks in advance
----

Regarding the systems used in the POC guide, in principle you can use other systems like Ubuntu instead of Centos, but you should keep in mind that certain commands will vary (like yum install)

Regarding the agent use question, I see that my coworker Gonzalo has answered you in his thread, so as not to mix thematic, please, continues by that thread the questions related to the use of the agent, thank you!

Regards, Raúl.
Reply all
Reply to author
Forward
0 new messages