search for: compliance

Hi CentOS experts,* Short Version* I would like to produce a weekly report in HTML for each CentOS 5.x server we have indicating configuration compliance with some industry benchmark. I am looking for a tool or tools to implement this, I am happy to use 3rd party proprietary stuff if necessary. * Long(er) Version* Current Situation.. I have a client with many (200x) CentOS 5.x servers deployed in various web, mail, database and file server r...

Good afternoon, I work in export compliance and would like to know if you would please answer the questions below in regards to your application, R for Windows 1.3.1. The information I'm requesting is for export compliance. RE: Application: R for Windows 1.3.1 Application Description: statistical computing and graphics Vendor: R...

The Xen platform device (introduced in changeset 11161) would cause HCT''s PCI Compliance Test to generate a failure message. The patch fixes this. Thanks Dexuan Cui Signed-off-by: Dexuan Cui <dexuan.cui@intel.com> _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel

HP, Sybase and DM Review present Converting Compliance Cost into Business Advantage ? A Roadmap to Real-Time Data Analysis Date: March 18, 2004 Time: 1:00 p.m. - 2:00 p.m. EST Compliance with industry and government regulations is a mandatory cost of doing business. Architecting systems to handle reporting requirements ? often on five to ten year&...

Hi , I want to use PE 2.0 compliance feature , however i am not seeing any data on puppet-dashboard on compliance tab , it says no baseline set , reviewed NA etc..... I have written audit manifests class foo { file {''/etc/resolv.conf'': audit => all, } file {''/etc/services...

I have a client project to implement PCI/DSS compliance. The PCI/DSS auditor has stipulated that the web server, application middleware (tomcat), the db server have to be on different systems. In addition the auditor has also stipulated that there be a NTP server, a "patch" server, The Host OS on all of the above nodes will be CentOS 6.2. B...

...4 at 10:40 PM, ???? ?????? <bart.gopnik at gmail.com> wrote: > Please help me solve the following problem: > > FLAC tools have a lots of warnings about non-subset files during > encoding, but unfortunately don't have easy way to check/test existing > FLAC stream for subset compliance. > > "flac -a" generates the big text file that has data about each frame > and subframe. But looks like I need parser and statistics tools to > answer on question about subset compliance of stream. > > Looks like "metaflac --show-min-blocksize --show-max-blocksize...

...vention that allows lowercase, dash, underscore and dot as only valid characters for new package names and keep the ancient format validation scheme for older package names? This could be implemented by a single function, taking a strictNaming_b_1 parameter which defaults to true. Easy to use, and compliance results will vary according to the parameter value, allowing strict compliance for new package names and lazy compliance for older ones. Doing so allows to enforce a new package name convention while also insuring continuity of compliance for already existing package names. Fabien GELINEAU alias...

Hi, I modified the metaflac program to output in JSON format if the --output-json switch is used, and made a simple Go program to demonstrate use of the output. I imported the MIT licensed json-c library into src/share/json-c and put headers in include/share/json-c. For example, # metaflac --output-json --list myfile.flac example output: https://gist.github.com/waitman/847a8cae4a650a8898ee If

Hi Everyone, As many of you out there I''m "protected" by the firewall which prevents me from checking my code for W3C compliance, I am able to check the production code but i would like to test my code before it goes to production. So if anyone was able to have that check done locally, possibly including some sort of tests in to the integration process, I would truly appreciate knowledge exchange. Sincerely: Gregory Bl...

On 4/18/23 05:05, Norbert Pocs wrote: > Hi OpenSSH mailing list, > > I would like to announce the newly introduced patch in Fedora rawhide [0] > for FIPS compliance efforts. The change will be introduced in an upcoming RHEL 9 > version. Why does Fedora care about FIPS 140? To me, this seems like it should be specific to RHEL and maybe CentOS Stream, not Fedora. My understanding is that Fedora will never be FIPS 140 complaint anyway so there is no point in...

On Tue, 18 Apr 2023, Norbert Pocs wrote: > Hi OpenSSH mailing list, > > I would like to announce the newly introduced patch in Fedora rawhide [0] > for > > FIPS compliance efforts. The change will be introduced in an upcoming RHEL 9 > > version. > > The patch targets OpenSSL support of OpenSSH, specifically the usage of > > old low level API. The new OpenSSL version 3.0 introduces a FIPS > > module (going through FIPS 140-2 validation and...

Hello All, Im using OpenSSH 4.2p1 statically linked with OpenSSL 0.9.7i. It looks now that a fips certified OpenSSL is now available at http://www.openssl.org/source/OpenSSL-fips-1.0.tar.gz . I like to know of any patches applicable for OpenSSH versions to make it fips compliant. Is there any idea for OpenSSH core team to make OpenSSH as fips compliant? What amount of work it needs at this

-------- Original Message -------- Subject: password quality compliance Date: Fri, 14 Jan 2005 10:45:37 +0100 From: fandino <fandino@ng.fadesa.es> Reply-To: fandino@ng.fadesa.es To: samba@lists.samba.org Hello list, I'd like to have an advice about how to configure samba with password quality compliance. My file server is running samba 3.0.10 with a ld...

Dear Sirs, we currently manufacture/import UPS units in Italy and distribute them all over the country. How can we obtain an official certification to offer our products with full compliance with QNAP, Synology and similar hardware? Looking forward to hearing from you, Best Regards ________________________ Alessandro Gualtieri LAER Accumulatori Srl Via Pio XII, 65/c 20060 - Pozzuolo Martesana MI C.F.-P.IVA: 03882470150 Centralino: 02 95 35 92 58 Diretto: 02 845 72 762...

Hello, I work for an organization that uses a Secure Dovecot server for messaging, and recently we've had to undergo some security screenings for PKI compliance (credit card industry standards). However, the screening returned to us a failure due to the following reason (attributed to our Dovecot server, which runs on port 993 and is the only "open" port on our firewall): Synopsis : The remote service encrypts traffic using a protocol with know...

...S 7 VPAT can be posted? Recommending under FAQ or AdditionalResources -Jason > -----Original Message----- > From: Jason Pyeron [mailto:jpyeron at pdinc.us] > Sent: Friday, October 30, 2015 14:08 > To: 'centos-devel at centos.org' > Subject: VPAT for centos 7 - section 508 compliance statement > > I am working on getting Centos 7 approved for use at a > federal agency, RHEL is already approved for use in production. > > One of the blockers I hit is, "Does the vendor provide a VPAT?" > > Does the attached look right? Where should this be posted...

...ot use SAS or MATLAB, but for which I would greatly prefer to use R instead. On the other hand ( to take one of a couple of examples), in the past I have not even been permitted to use "R" whatsoever in clinical trials applications, which also typically involve a need for CFR Part 11 compliance. In this context, though, may I ask if there are people who have recently been able to use R for clinical trials work that is done within an FDA-approved 21 CFR Part 11-compliant framework? Thanks very much. Rich Haney Richard.Haney@duke.edu Duke Comprehensive Cancer Center [[alternative...

Hi OpenSSH mailing list, I would like to announce the newly introduced patch in Fedora rawhide [0] for FIPS compliance efforts. The change will be introduced in an upcoming RHEL 9 version. The patch targets OpenSSL support of OpenSSH, specifically the usage of old low level API. The new OpenSSL version 3.0 introduces a FIPS module (going through FIPS 140-2 validation and to be FIPS 140-3 validated) which can b...

Hi, Can someone recommend a good vulnerability scanning service? I just need the minimum for PCI compliance (it's a sort of credit card processing certification). I got a free scan from https://www.hackerguardian.com/ and their scan reported a number of "Fail" results. I haven't checked them all yet but most seem to be things for which fixes were backported looong ago by The Upstream V...