chef - [chef] Re: CIS (Windows) Benkmarks

First login ?
Lost password ?

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Re: CIS (Windows) Benkmarks

From: Galen Emery < >
To:
Subject: [chef] Re: CIS (Windows) Benkmarks
Date: Mon, 28 Sep 2015 11:01:40 -0400

Chris,

There's a bunch of work on the audit-cis cookbook. I'd recommend there as a starting point.

https://github.com/chef-cookbooks/audit-cis

On Mon, Sep 28, 2015 at 10:43 AM, Chris McClimans < " target="_blank"> > wrote:

CIS puts out security benchmarks and guides to ensure compliance to a
'hardened' os from the base put out by the OS vendors. Is anyone seen
any efforts within the chef community to create a security policy
cookbook that checks for compliance against these (or similar)
standards? I'm thinking of picking something like this up, but it's a
large undertaking and would interest from more than just one customer
to fund it.

Windows Benchmarks:

https://benchmarks.cisecurity.org/downloads/browse/?category=benchmarks.os.windows

Linux Benchmarks:

https://benchmarks.cisecurity.org/downloads/browse/index.cfm?category=benchmarks.os.linux

Database Benchmarks:

https://benchmarks.cisecurity.org/downloads/browse/index.cfm?category=benchmarks.servers.database

MSSQL Benchmarks:

https://benchmarks.cisecurity.org/downloads/browse/?category=benchmarks.servers.database.mssql

(One of my current customers would benefit from Windows 2012r2 + MSSQL
security policy cookbooks)

[chef] CIS (Windows) Benkmarks, Chris McClimans, 09/28/2015
- [chef] Re: CIS (Windows) Benkmarks, Galen Emery, 09/28/2015
  - [chef] Re: Re: CIS (Windows) Benkmarks, Chris McClimans, 09/28/2015
- [chef] RE: CIS (Windows) Benkmarks, Stuart Preston, 09/28/2015
  - [chef] RE: RE: CIS (Windows) Benkmarks, Sean Farrow, 09/28/2015