Running OSCAP on Centos 7

If you choose the draft DISA STIG security policy when installing Centos 7 you can run the OSCAP security audit tool to check your configuration. The command to do so is not obvious and is not well-documented. [Here I would… Read More ›

Switching to Centos 7

I’ve decided to migrate from Centos 6 to 7. This wasn’t an easy decision because my voluminous Ansible config files are Centos 6 based. The good news is that most of my roles still work, albeit with some modification. I… Read More ›

Containers, Speed, and Security

Though I decided not to use Linux containers, I like the technology a lot. Everything I have read seems to indicate that containers/zones are faster and more resource efficient than VMs. The engineers at Joyent frequently write articles about the… Read More ›

FedRAMP Security Guidelines

FedRAMP is a recent US government initiative to standardize the way security is assessed for cloud service vendors. As you might expect from the government the security guidelines are voluminous. The system security plan alone is 353 pages! Unless you… Read More ›