Wazuh OpenScap redhat9

[Radosław]

Hello wazuh team, 

I start my jorney with Wazuh. I installed Wazuh and integrated with ELK. Looks promising. 

However i have few questions. 

1) i see OpenScap is mostly for redhat7, is it possible to use it for redhat 8 and 9 also ? If no is there any plan for that or no ?

2)Vulnerabilities works, but i would like to add some additional applications like for example 7zip for check, is it possible? 

Thanks,

Radosław

[Nicolas Stefani]

Hi Radosław,

1) OpenSCAP has been deprecated in favor of SCA. In this module, we have policies up to RHEL9.

2) Could you explain more about what you want to achieve?

Regards,

--
You received this message because you are subscribed to the Google Groups "Wazuh | Mailing List" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/502b8681-8b05-4955-baef-fd458dc8cf82n%40googlegroups.com.

--

Nicolás Stefani Software Engineer

[Antti Backman]

Hi, cy

Sorry to bust in to this thread, but I share similar needs. As in our environment our common approach is to have openscap based hardening profiles and subsequently scanning based on the same tools, I would like to be able to use the same tools to report in Wazuh. I find it adding unnecessary overhead by maintaining two overlapping policy scanning cionfigurations. I am able ot influece what we do in our Wazuh deployment, but cannot change what we get from "above" in terms of corporate policies. 

So the integration and support for openscap would be very much appreciated or if I have missed something in Wazuh capabilities (SCA in parcticular) in regards the objective using the same policies for scanning, thus not needing to worry about should there be differencies between our corporate openscap custom profiles as opposed to SCA profiles shipped with Wazuh, I would appreciate your valued help / suggestions.

Thanks, Antti