Practical Steps Toward Compliance With OpenSCAP
In this blog I described some of the logical problems with vulnerability scanners. False positive and false negative errors. Additionally, the worry that problems exist but our tool hasn’t even tried looking for them. Let’s try to make this practical! I’m working on a consulting job as a sub-sub-contractor on a U.S. Department of Defense […]
RHEL 7 Changes: Where Did My Network Interface Go?
There are enormous changes when upgrading from RHEL 6 to 7 (Red Hat Enterprise Linux). It’s not that Red Hat decided to change almost everything. Several different communities working on different projects have independently made significant RHEL 7 changes. These occurred between the release of RHEL 6 in November, 2010, and the release of RHEL […]
What Is Going On With The Free Operating Systems?
I’m a big advocate of FOSS or Free and Open-Source Software. Although, is it really more stable and secure? We keep hearing the “Many eyes make bugs shallow” mantra, but it took how long for the Heartbleed bug in OpenSSL to be noticed? The way I look at it is that all operating systems have […]