RHEL comes with a built in security/vulnerability scanner

Did you know RHEL comes with a built in security/vulnerability scanner? Here is the commands for RHEL7 as an example:

Install OpenSCAP : yum install openscap openscap-scanner
Download the OpenSCAP datastream file : wget -c https://www.redhat.com/security/data/metrics/ds/com.redhat.rhsa-RHEL7.ds.xml
Run OpenSCAP command to scan : sudo oscap xccdf eval --results results.xml --report report.html com.redhat.rhsa-RHEL7.ds.xml
Review scanner report : firefox report.html

Attachments

Started 2020-01-02T22:38:52+00:00 by

Robin Price

Newbie 17 points

Here are the common uses of Markdown.

Code blocks

~~~
Code surrounded in tildes is easier to read
~~~

Links/URLs

[Red Hat Customer Portal](https://access.redhat.com)