Security technical implementation guides (STIGs)

The STIGs provide more application-specific secure configuration suggestions. However, the STIG security guides are in XML format. To view the STIGs, you needs to download a STIG Viewer, which is a Java JAR. Follow the following steps to view the Ubuntu STIG:

  1. Download the STIG Viewer from the URL. https://iase.disa.mil/stigs/pages/stig-viewing-guidance.aspx
  2. Unzip the file and click the STIGViewer-2.8.jar to open the viewer
  3. Download the Ubuntu STIG from the https://iase.disa.mil/stigs/os/unix-linux/Pages/index.aspx
  4. Unzip to get the file, U_Canonical_Ubuntu_16-04_LTS_STIG_V1R1_Manual-xccdf.xml
  5. Use the STIG Viewer to load the XML by the menu File | Import STIG

The following screenshot shows ...

Get Practical Security Automation and Testing now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.