Skip to content

Commit

Permalink
Apply suggestions from code review
Browse files Browse the repository at this point in the history 
Co-authored-by: Evgeny Kolesnikov <[email protected]>
  • Loading branch information
@jan-cerny @evgenyz
jan-cerny and evgenyz authored Oct 17, 2023
1 parent 0be8d49 commit fce4223
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 5 deletions.
4 changes: 2 additions & 2 deletions docs/manual/manual.adoc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2212,15 +2212,15 @@ The downloaded guidance contains rule descriptions, but it doesn't contain OVAL

*How can I create a tailoring file if I can't install SCAP Workbench?*

Use the `autotailor` tool which allows you to create tailoring files on command line.
Use the `autotailor` tool which allows you to create tailoring files using command line options.
For more information, please refer to section <<_tailoring,Tailoring>>.

*I try to apply a tailoring file, but OpenSCAP still evaluates rules that I have unselected. How can I enforce my changes of the profile?*

Make sure that you provide the ID of the customized profile in `--profile` option instead of the ID of the original profile.
If you created the tailoring file using `autotailor` and you haven't used the `-p` or `--new-profile-id` option, the ID of the customized profile is the original profile ID with `_customized` suffix appended.
If you created the tailoring file using SCAP Workbench, you were prompted to choose the ID of the customized profile. By default, the ID of the customized profile is the original profile ID with `_customized` suffix appended.
You can display the ID of the customized profile by running `oscap info <your_tailoring_file>`.
You can find the ID of the customized profile with `oscap info <your_tailoring_file>` command.

*My SCAP source data stream contains rule `security_patches_up_to_date` which needs to download some data from the internet to work.*
*But I'm in an air gapped environment so it can't download it.*
Expand Down
6 changes: 3 additions & 3 deletions utils/autotailor.8
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,7 +12,7 @@ Note however, that the referenced data stream is not opened, and the validity of
The tool doesn't prevent you from extending non-existent profiles, selecting non-existent rules, and so on.

.SH SYNOPSIS
autotailor [OPTION...] DS_FILENAME BASE_PROFILE_ID
autotailor [OPTION...] DATASTREAM_FILE BASE_PROFILE_ID

.SH OPTIONS
.TP
Expand Down Expand Up @@ -44,12 +44,12 @@ Specify refinement of the XCCDF rule severity in form <rule_id>=<severity>. Name
.TP
\fB-s RULE_ID, --select RULE_ID\fR
.RS
Specify what rules to select. The rule ID can be either full, or just the suffix, in which case the 'xccdf_<id-namespace>_rule' prefix will be prepended internally. Specify the argument multiple times if needed.
Specify the rule to select. The rule ID can be either full, or just the suffix, in which case the 'xccdf_<id-namespace>_rule' prefix will be prepended internally. Specify the argument multiple times if needed.
.RE
.TP
\fB-u RULE_ID, --unselect RULE_ID\fR
.RS
Specify what rules to unselect. The argument works the same way as the --select argument.
Specify the rule to unselect. The argument works the same way as the --select argument.
.RE
.TP
\fB-p NEW_PROFILE_ID, --new-profile-id NEW_PROFILE_ID\fR
Expand Down

0 comments on commit fce4223

Please sign in to comment.