There are a lot of RHEL 5 boxes in production. Any solution that doesn't take it into account isn't a solution for me.

On Wed, Apr 29, 2015 at 3:05 PM, Jim Perrin <jperrin@centos.org> wrote:


On 04/29/2015 01:28 PM, leam hall wrote:
> Red Hat seems to not be putting a lot of work into RHEL 5 STIG compliance.
> That's been one of my motivators.


EL5 dies in a year and a half or so, and has several outstanding (minor
to medium) cve's presently. I'm absolutely fine with ignoring it until
it goes away as well.



--
Jim Perrin
The CentOS Project | http://www.centos.org
twitter: @BitIntegrity | GPG Key: FA09AD77
_______________________________________________
CentOS-devel mailing list
CentOS-devel@centos.org
http://lists.centos.org/mailman/listinfo/centos-devel



--
Mind on a Mission