Openscap package too outdated

Jesus Linares jesus at wazuh.com
Mon Jul 10 11:25:26 UTC 2017 

Hi all,

finally, @pthierry38 fixed the package:
https://github.com/OpenSCAP/scap-security-guide/issues/2130#issuecomment-313784687

It will be great if you update the official one.

Thanks.
Regards.


On Thu, Jul 6, 2017 at 5:16 PM, Tyler Hicks <tyhicks at canonical.com> wrote:

> On 07/06/2017 04:24 AM, Jesus Linares wrote:
> > Thanks Tyler for clarifying.
> >
> > I'm not expert on OpenSCAP or deb packages, so I'm not able to
> > contribute with this update. But it is necessary because the package
> > seems to be useless without OVAL 5.11.
> >
> > Who created the current package?.
>
> It was automatically imported from Debian.
>
> It is also worth noting that the Ubuntu Security Team didn't receive the
> contribution of the script to generate OVAL data until 2015, well after
> 14.04 was released.
>
> Tyler
>
> >
> > Thanks.
> > Regards.
> >
> >
> > On Thu, Jul 6, 2017 at 8:45 AM, Robie Basak <robie.basak at ubuntu.com
> > <mailto:robie.basak at ubuntu.com>> wrote:
> >
> >     On Wed, Jul 05, 2017 at 07:12:57PM -0500, Tyler Hicks wrote:
> >     > I doubt anyone out there is making much use of the existing
> openscap in
> >     > 14.04. If a newer version, such as what's in 16.04, was pulled
> back to
> >     > trusty-updates, it might actually be useful.
> >     >
> >     > Note that I haven't looked at the changes between 14.04 and 16.04's
> >     > openscap so I don't know how disruptive such a backport would be.
> I also
> >     > don't have the time to prepare and test such a backport. I just
> wanted
> >     > to elaborate on why Jesus is advocating for the backport as I feel
> like
> >     > it could be something worth an exception to the usual SRU rules.
> >
> >     Thank you for clarifying. Yes - that sounds like it might qualify
> for an
> >     exception under the "change to the environment" qualification.
> >
> >     Jesus: https://wiki.ubuntu.com/StableReleaseUpdates
> >     <https://wiki.ubuntu.com/StableReleaseUpdates> still applies -
> >     policies for exceptions are documented there also, along with the
> >     procedure to follow if you are able to contribute this update.
> >
> >     Thanks,
> >
> >     Robie
> >
> >
> >
> >
> > --
> > *Jesus Linares*
> > /IT Security Engineer/
> > /
> > /
>
>
>


-- 
*Jesus Linares*
*IT Security Engineer*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-devel-discuss/attachments/20170710/e2f943a3/attachment.html>

More information about the Ubuntu-devel-discuss mailing list