SCAP Security Guide Contributor WorkShop
01. [About](#about)
02. [Past sessions](#past)
03. [Upcoming / future sessions](#future)
04. [Disclaimer](#disclaimer)
05. [Topics covered](#topics)
06. [Frequently Asked Questions](#faq)
The SCAP Security Guide (SSG) Contributor WorkShop is a term for regular sessions, hold by SSG upstream. The point of these sessions is to help people willing to contribute to the SCAP Security Guide project by providing additional information / guidance, where to start. The sessions have the form of a webinar (accessible online, recorded, presented slides available offline for following self-study). The sessions tend to be interactive (practice the covered topics interactively). It is primarily designed for SCAP content developers (searching for the internal details & build blocks SCAP Security Guide content is created from). But audience from wider community is welcome too.
| Date: | Presentation | Recordings | Code examples: |
|---|---|---|---|
| Tuesday, November the 24-th 2015 | Download PDF | Not recorded | GitHub branch |
| Date: | Time: | Presentation | Recordings | Code examples: |
|---|---|---|---|---|
| Monday, January the 11-th 2016 | 9:00am - 11:00am [ET](http://www.timeanddate.com/time/zones/est) | To come | Recordings to come | To come |
The plan is to have the sessions recorded. By subscribing to some of the upcoming events you accept this fact.
* Introductory Notes: * Purpose of SCAP Security Guide project * SCAP protocol standards * Source code / Repository Notes: * Where to obtain the source code * Developer workflow * Pull request reviewer workflow * Repository structure * Currently supported SSG products * SSG "shorthand" format * Contributing new rule * Contributing XCCDF part * Contributing OVAL part * Contributing remediation part * Advanced topics: * Using SSG ```templates``` to contribute new OVAL checks * Purpose of different locations of various OVAL checks * Selected use cases: * How to contribute new rule from scratch * How to contribute new rule from ```templates``` * How to port existing rules, profiles, benchmarks across different productsIn the case you did not find the desired topics in the above list, propose it for inclusion.
Q: Is the workshop agenda always the same?
A: No. The covered agenda is a combination of topics intended to be covered by session holders and topics requested previously by attendees to be covered.
--
Q: How do I propose topic to be covered?
A: Send an email to scap-security-guide mailing list.
--
Q: How do I subscribe to receive the official event invitation?
A: Send an email with the subject [SSG_CWS Date_Of_The_Upcoming_Event: Subscribe] to the scap-security-guide mailing list. Example: [SSG_CWS 2016-01-11: Subscribe]
--
Q: What technology is used to provide the webinar?
A: BlueJeans
--
Q: What software do I need to be able to access the webinar?
A: A web browser able to connect to BlueJeans session is sufficient.
--
Q: Is it possible to check ahead if my connection will work?
A: Yes. Try this instance
--
Q: I am experiencing issues trying to connect to the webinar instance. What should I do?
A: Try a different browser, different browser version etc.
--
Q: How much time should I reserve for one session?
A: Approx. 2 hours
--
Q: Which timezone are these webinars hold in?
--
Q: Are the provided examples reachable for later testing / inspection?
A: Yes. See the Code Examples: column for each session
--
Q: How do I provide feedback, comments, suggestions?
A: Send an email to scap-security-guide mailing list preferably specifying [SSG_CWS] field in the Subject:
--