There are a lot of RHEL 5 boxes in production. Any solution that doesn't take it into account isn't a solution for me. On Wed, Apr 29, 2015 at 3:05 PM, Jim Perrin <jperrin at centos.org> wrote: > > > On 04/29/2015 01:28 PM, leam hall wrote: > > Red Hat seems to not be putting a lot of work into RHEL 5 STIG > compliance. > > That's been one of my motivators. > > > EL5 dies in a year and a half or so, and has several outstanding (minor > to medium) cve's presently. I'm absolutely fine with ignoring it until > it goes away as well. > > > > -- > Jim Perrin > The CentOS Project | http://www.centos.org > twitter: @BitIntegrity | GPG Key: FA09AD77 > _______________________________________________ > CentOS-devel mailing list > CentOS-devel at centos.org > http://lists.centos.org/mailman/listinfo/centos-devel > -- Mind on a Mission <http://leamhall.blogspot.com/> -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos-devel/attachments/20150429/3f00f537/attachment-0008.html>