Does Red Hat Enterprise Linux include specific OpenSCAP profiles for container image scanning ?
Issue
- The scap-security-guide rpm includes multiple security benchmarks, and the openscap-utils rpm includes the command
oscap-podman
to scan container images. However some of the rules included with the benchmarks don't make sense in containers, like boot loader settings.
Environment
- Red Hat Enterprise Linux (RHEL) 7
- Red Hat Enterprise Linux (RHEL) 8
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.