From Fedora Project Wiki

Line 34: Line 34:
# Fully update your '''Fedora 13''' or '''Fedora 14'''.
# Fully update your '''Fedora 13''' or '''Fedora 14'''.
# Install '''openscap, openscap-utils''' and '''openscap-python''' packages version '''0.6.1'''. Download them from: [http://people.redhat.com/pvrabec/openscap/ ToDo].
# Install '''openscap, openscap-utils''' and '''openscap-python''' packages version '''0.6.1'''. Download them from: [http://people.redhat.com/pvrabec/openscap/ ToDo].
# Get the most recent OVAL and XCCDF content from [http://git.fedorahosted.org/git/?p=openscap.git;a=tree;f=dist/fedora our GIT] (i.e. look for ''scap-fedora14-oval.xml'' and ''scap-fedora14-xccdf.xml'' for Fedora 14).
# Get the most recent SCAP content from [http://git.fedorahosted.org/git/?p=openscap.git;a=tree;f=dist/fedora our GIT] (i.e. look for ''scap-fedora14-oval.xml'' and ''scap-fedora14-xccdf.xml'' for Fedora 14/13/12).
# Follow the test cases below.
# Follow the test cases below.
# Write your results to the result matrix.
# Write your results to the result matrix.

Revision as of 16:39, 24 August 2010

DATE TIME WHERE
2010-08-26 From 9:00 to 16:00 UTC #fedora-test-day (webirc)
Can't make the date?
If you come to this page before or after the test day is completed, your testing is still valuable, and you can use the information on this page to test, file any bugs you find at Bugzilla, and add your results to the results section. If this page is more than a month old when you arrive here, please check the current schedule - which should be linked at QA/Test_Days - and see if a similar but more recent Test Day is planned or has already happened.

What to test?

Page not ready yet
This page is still being worked on. The instructions here are not final yet and they will probably change substantially soon.

Have you ever used any security scanning application? Does the security configuration of your box matters? Do you want to keep you system in consistent state? If you have positive answer to any of these questions then it's probably worth to joint this Fedora Test Day that will focus on OpenSCAP feature.

What is SCAP? It is a line of standards managed by NIST. It was created to provide a standardized approach to maintaining the security of systems, such as automatically verifying the presence of patches, checking system security configuration settings, and examining systems for signs of compromise.

The SCAP suite contains multiple complex data exchange formats that are to be used to transmit important vulnerability, configuration, and other security data. Historically, there have been few tools that provide a way to query this data in the needed format. This lack of tools makes the barrier to entry very high and discourages adoption of these protocols by the community. It's a goal of OpenSCAP project to create a framework of libraries to improve the accessibility of SCAP and enhance the usability of the information it represents.

Who's available

The following cast of characters will be available testing, workarounds, bug fixes, and general discussion:

  • Development - Peter Vrabec (wrabco), Tomas Heinrich (theinric), Maros Barabas (mbarabas), Daniel Kopecek (dkopecek)
  • Quality Assurance - Kamil Páral (kparal)

Prerequisite for Test Day

  • A fully updated Fedora 13 or 14.
    • We are interested in different software setups, so if possible please use your real workstation, rather than clean install of F13 or F14. You don't have to be afraid, this software is not destructive in any way.

How to test?

  1. Fully update your Fedora 13 or Fedora 14.
  2. Install openscap, openscap-utils and openscap-python packages version 0.6.1. Download them from: ToDo.
  3. Get the most recent SCAP content from our GIT (i.e. look for scap-fedora14-oval.xml and scap-fedora14-xccdf.xml for Fedora 14/13/12).
  4. Follow the test cases below.
  5. Write your results to the result matrix.

Test Cases

Please execute as many test cases from the following list of OpenSCAP Test Cases as possible:

Test Results

If you have problems with any of the tests, report a bug to Bugzilla for the openscap component. If you are unsure about exactly how to file the report or what other information to include, just ask on IRC and we will help you. Once you have completed the tests, add your results to the Results table below, following the example results from the first line as a template.

User Sample test 1 Sample test 2 Sample test 3 Sample test 4 References
Sample User
none
Pass pass
Warning warn
[1]
Fail fail
[2]
  1. Test pass, but also encountered RHBZ #54321
  2. RHBZ #12345