OpenSCAP - feedback from the real world

Latest response

I wanted to get a feeler of whether folks are using OpenSCAP. I also was curious if people were using it with their Satellite/Spacewalk infrastructure, or stand-alone.

Was it worth implementing (i.e. would you do it again)?
Did you use it with Satellite, and would you implement it stand-alone if given the option to do it over)?
How much customization of the pre-canned audit files did you need?
What particular skills did you find helpful (i.e. did you find yourself using Python quite often)?
Were there any blatant issues you had to work through that you would advise researching in advance?

Thanks!

Did you end up altering your build standard to pass the standard audit? (i.e. separate /var/log and /var/log/audit)
What kind of issues did you run in to that were not anticipated?

EDIT:
Any idea whether OpenSCAP will continue to be integrated with Satellite 6.x? Will it be more tightly-coupled?

Responses