- From: Chris McClimans <
>
- To:
- Subject: [chef] Re: Re: CIS (Windows) Benkmarks
- Date: Mon, 28 Sep 2015 11:03:54 -0400
Thanks Galen!
Access to the Audit-Tool would be useful during development
http://benchmarks.cisecurity.org/downloads/audit-tools/
I'll reach out to CIS to see if I can get some assistance there.
On Mon, Sep 28, 2015 at 11:01 AM, Galen Emery
<
>
wrote:
>
Chris,
>
>
There's a bunch of work on the audit-cis cookbook. I'd recommend there as a
>
starting point.
>
>
>
https://github.com/chef-cookbooks/audit-cis
>
>
On Mon, Sep 28, 2015 at 10:43 AM, Chris McClimans
>
<
>
>
wrote:
>
>
>
> CIS puts out security benchmarks and guides to ensure compliance to a
>
> 'hardened' os from the base put out by the OS vendors. Is anyone seen
>
> any efforts within the chef community to create a security policy
>
> cookbook that checks for compliance against these (or similar)
>
> standards? I'm thinking of picking something like this up, but it's a
>
> large undertaking and would interest from more than just one customer
>
> to fund it.
>
>
>
> Windows Benchmarks:
>
>
>
>
>
> https://benchmarks.cisecurity.org/downloads/browse/?category=benchmarks.os.windows
>
>
>
> Linux Benchmarks:
>
>
>
>
>
> https://benchmarks.cisecurity.org/downloads/browse/index.cfm?category=benchmarks.os.linux
>
>
>
> Database Benchmarks:
>
>
>
>
>
> https://benchmarks.cisecurity.org/downloads/browse/index.cfm?category=benchmarks.servers.database
>
>
>
> MSSQL Benchmarks:
>
>
>
>
>
> https://benchmarks.cisecurity.org/downloads/browse/?category=benchmarks.servers.database.mssql
>
>
>
> (One of my current customers would benefit from Windows 2012r2 + MSSQL
>
> security policy cookbooks)
>
>
Archive powered by MHonArc 2.6.16.