ssg-centos7-ds.xml not found on openscap1.2.14
334 views
Skip to first unread message
ramzey...@gmail.com
Mar 1, 2018, 1:28:53 PM3/1/18
to Wazuh mailing list
hey team,
i have the following versions,
openscap-1.2.14-2.el7.x86_64
openscap-scanner-1.2.14-2.el7.x86_64
wazuh-agent-3.2.0-2.x86_64
looks like the new version of openscap changed the name to
ssg-centos-7-ds.xml
and wazuh is looking for
DEBUG: OUTPUT: oscap: ERROR: File "wodles/oscap/content/ssg-centos7-ds.xml" does not exist
Just wanted to make sure you guys know about this, right now i manually changed the name and it worked.
thanks
ramzey...@gmail.com
Mar 1, 2018, 3:33:08 PM3/1/18
to Wazuh mailing list
Let me re-phrase,
openscap does not install any new file but wazuh does relay on a file that does not exist according to the debug logs, is this a bug?
2018/03/01 20:32:04 wazuh-modulesd:oscap: WARNING: Ignoring content 'ssg-centos7-ds.xml' due to error (1).
2018/03/01 20:32:04 wazuh-modulesd:oscap: DEBUG: OUTPUT: oscap: ERROR: File "wodles/oscap/content/ssg-centos7-ds.xml" does not exist.
Victor Fernandez
Mar 2, 2018, 11:27:15 PM3/2/18
to ramzey...@gmail.com, Wazuh mailing list
Hi,
Thank you for notifying us. However, the agent should install a reference to the file "ssg-centos-7-ds.xml", not to "ssg-centos7-ds.xml".
Both packages and sources install the correct reference. Could you tell us which steps you followed to run into this issue? Maybe you upgraded from an old version?
Thank you again.
Best regards,
Victor M Fernandez-Castro
IT Engineer — Wazuh, Inc.
IT Engineer — Wazuh, Inc.
--
You received this message because you are subscribed to the Google Groups "Wazuh mailing list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+unsubscribe@googlegroups.com.
To post to this group, send email to wa...@googlegroups.com.
Visit this group at https://groups.google.com/group/wazuh.
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/75e887d6-9a81-4dce-b610-79a1f154f33a%40googlegroups.com.
Ramesh Patel
Mar 5, 2018, 10:59:42 AM3/5/18
to Victor Fernandez, Wazuh mailing list
hey Victor,
yes i did a yum install to 3.2.0-2.x86_64.rpm from 3.1.0-1.x86_64.rpm. Should i have removed the older version first and ran a fresh intall?Victor Fernandez
Mar 5, 2018, 3:53:16 PM3/5/18
to Ramesh Patel, Wazuh mailing list
Hi Ramesh,
I've followed your steps but none of these packages install "ssg-centos7-ds.xml". In fact, upgrades don't modify the configuration. You don't have to install a fresh version.
However, I've just noticed a typo in our documentation: https://documentation.wazuh.com/current/user-manual/capabilities/policy-monitoring/openscap/oscap-configuration.html.
There are four examples that read "ssg-centos7-ds.xml" instead of "ssg-centos7-ds.xml".
Is it possible that you got the configuration from that page? Anyway I confirm that the default configuration is now installed properly, referencing the correct file "ssg-centos7-ds.xml". I will correct the text immediately.
Thank you again.
Best regards,
Victor M Fernandez-Castro
IT Engineer — Wazuh, Inc.
IT Engineer — Wazuh, Inc.
Victor Fernandez
Mar 5, 2018, 3:56:32 PM3/5/18
to Ramesh Patel, Wazuh mailing list
Hi Ramesh,
I'm sorry, I wanted to write that the correct file name is "ssg-centos-7-ds.xml", including the dash.
Best regards,
Victor M Fernandez-Castro
IT Engineer — Wazuh, Inc.
IT Engineer — Wazuh, Inc.
Reply all
Reply to author
Forward
0 new messages