Output Normalization and Compliance IDs - Palo Alto Edition...
Output Normalization and Compliance IDs - Palo Alto Edition Summary In an effort to normalize the output from the compliance plugins, and provide a consistent identifier for the output, we are releasing a patch to the Palo Alto compliance plugin that makes the following improvements: ID generation is more consistent between audits. All results should have a policy value reported. The majority of results should have actual value or error reported. The exception to this is policies that use a "report" check type. Potential Impacts: Any customers that rely on exact content matches of actual values by using third party tools or custom audit files may have failed results following the update. This would include customers that use the known good functionality from tools that provide baseline or gold image auditing. Tenable Plugins 64095 - Palo Alto Compliance Plugin Target Release Date March 18, 20022 Additional Notes: The Palo Alto plugin no longer supports the 'AUDIT_REPORTS' check. This does not affect any current audits, however any customers using custom audits may have to update accordingly. Equivalent functionality exists by using the 'AUDIT_XML' check with 'api_request_type' set to 'report'.BlueCoat ProxySG Visual Policy Manager Enhancement Summary...
BlueCoat ProxySG Visual Policy Manager Enhancement Summary The BlueCoat ProxySG compliance plugin is being enhanced to support processing and evaluation against the Visual Policy Manager (VPM) configuration. This configuration is stored on the target device as XML. A new check type is being added to the plugin as 'AUDIT_XML_VPM'. This check type supports the usage of XSL transformations to select data for evaluation. Tenable Plugins 70470 - BlueCoat ProxySG Compliance Plugin Target Release Date Immediate Release Example: The following custom_item will return the output of the Client Cipher name and values for evaluation. <check_type:"BlueCoat"> <custom_item> type : AUDIT_XML_VPM description : "AUDIT_XML_VPM Client Cipher" xsl_stmt : "<xsl:template match=\"vpmapp\"> <xsl:text>Client Cipher Name - </xsl:text><xsl:value-of select=\"conditionObjects/clnt-cipher/@name\"/><xsl:text> </xsl:text> <xsl:text>Client Cipher Values - </xsl:text><xsl:value-of select=\"conditionObjects/clnt-cipher/@v\"/> </xsl:template>" expect : "ECDHE-RSA-AES256-GCM-SHA384" </custom_item> </check_type> Additional Notes: DISA STIG content will be updated to support this new feature. Customers currently using the DISA STIG Symantec ProxySG ALG and NDM audits will begin to see updated check content soon. Please be on the lookout for the next Release Highlight for the audit updates!