6.6 Displaying Available Profiles

You can use the oscap info command to display the profiles that are supported by a checklist file such as the SCAP Security Guide, for example:

# oscap info "/usr/share/xml/scap/ssg/content/ssg-rhel6-xccdf.xml"
Document type: XCCDF Checklist
Checklist version: 1.1
Imported: 2017-02-22T14:53:20
Status: draft
Generated: 2017-02-22
Resolved: true
Profiles:
        standard
        CS2
        common
        server
        stig-rhel6-server-upstream
        usgcb-rhel6-server
        rht-ccp
        CSCF-RHEL6-MLS
        C2S
        pci-dss
        nist-cl-il-al
Referenced check files:
        ssg-rhel6-oval.xml
                system: http://oval.mitre.org/XMLSchema/oval-definitions-5

This output shows that ssg-rhel6-xccdf.xml provides several different profiles. Each profile contains generic security recommendations that apply to all Oracle Linux installations and additional security recommendations that are specific to the intended usage of a system.

Note

The provided profiles might or might not be appropriate to your system. However, you can use them to create new profiles that test compliance with your site's security policies.