Hi all Is there maybe a document that specify for financial institutions that fall under PCI this is what needs to be done minimally? there are so many ways this can be done by script, I'm thinking that there should prob be a min standard banks require. G On Tue, Mar 24, 2015 at 6:59 PM, Waldirio Manhães Pinheiro < waldirio@xxxxxxxxx> wrote: > Hello Friends > > Really recommend the use of OpenSCAP to generate great and completely > security reports, showing you how to fix/configure. You can use SCAP with > RHN Satellite, Spacewalk or individually (just install the pack). > > > Take Care > Waldirio > > ______________ > Atenciosamente > Waldirio > msn: waldirio@xxxxxxxxx > Skype: waldirio > Site: www.waldirio.com.br > Blog: blog.waldirio.com.br > LinkedIn: http://br.linkedin.com/pub/waldirio-pinheiro/22/b21/646 > PGP: www.waldirio.com.br/public.html > > On Tue, Mar 24, 2015 at 1:32 PM, Hans Forbrich <fuzzy.graybeard@xxxxxxxxx> > wrote: > >> RH (and Oracle) Linux 5, but very relevant to 6 as well: >> >> https://www.nsa.gov/ia/_files/os/redhat/rhel5-guide-i731.pdf >> >> /Hans >> >> On 24/03/2015 8:56 AM, George wrote: >> >>> Hi guys >>> >>> Does anyone have a good white paper that covers how/what to change to >>> harder a Linux OS. >>> >>> >> -- >> //www.freelists.org/webpage/oracle-l >> >> >> > -- You have the obligation to inform one honestly of the risk, and as a person you are committed to educate yourself to the total risk in any activity! Once informed & totally aware of the risk, every fool has the right to kill or injure themselves as they see fit!