OpenSCAP for SLES 15 docker container and/or image

Question

I see from this page that it is possible to scan either a running RHEL 7 docker container or the docker image.

Is this only possible for RHEL 7 or can it be done for other operating systems? Specifically interested in SLES.

Right, so I'd love to try it but I don't understand where I get the policy file for SLES from. — Jay, Oct 12 '20 at 08:39

score 0 · Answer 1 · answered Oct 12 '20 at 07:56

0

It should be possible, go ahead and tell us how it went for you. The RHEL7 way of scanning containers is to use the atomic scan functionality, but oscap-docker or oscap-podman should also work there as well as on other Linux distributions that ship OpenSCAP.

answered Oct 12 '20 at 07:56

bubla

101
3

Would you happen to know where I might get the policy file for SLES? – Jay Oct 12 '20 at 08:39
Isn't SLES a vendor-supported system? I would ask there. – bubla Oct 12 '20 at 09:46

OpenSCAP for SLES 15 docker container and/or image

1 Answers1