1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
|
.TH ovaldi 1 "July 29, 2010" "Version 5.7.2" "USER COMMANDS"
.SH NAME
ovaldi \- a reference interpreter for the Open Vulnerability and Assessment Language
.SH SYNOPSIS
.B ovaldi
[\-a dir name] [\-c filename] [\-d filename] [\-e <string>] [\-f filename] [\-i filename] [\-l <integer>] [\-o filename] [\-r filename] [\-t filename] [\-v filename] [\-x filename] [\-hmnpsyz] [MD5Hash]
.SH DESCRIPTION
The MITRE Corporation developed the Open Vulnerability and Assessment Language
(OVAL) Interpreter to provide the OVAL Community with an open source reference
implementation of the OVAL Language. The OVAL Interpreter uses OVAL Definitions
to gather security relevant configuration information on a computer (e.g., rpm
parameters, registry keys, file information, etc.), analyze the information for
vulnerabilities and configuration issues, and report the results of the
analysis for each OVAL Definition.
.SH OPTIONS
.TP
.B \-h
Displays command line options.
.TP
.B \-o filename
Specifies the pathname of the OVAL Definition document to use. If none is
specified then the OVAL Interpreter will default to "definitions.xml" in the
OVAL Interpreter directory.
.TP
.B \-v filename
Specifies the pathname of the OVAL Variables document to use. If none is
specified then the OVAL Interpreter will default to "external-variables.xml" in
the OVAL Interpreter directory.
.TP
.B \-e definition id list
Specifies a list of OVAL Definition ids to evaluate in the input OVAL
Definitions document. Supply OVAL Definition ids as a comma separated list
like:
oval:com.example:def:123,oval:com.example:def:234
.TP
.B \-f filename
Path to a file containing a list of OVAL Definitions to be evaluated. The file
must comply with the evaluation-id schema.
.TP
.B \-m
Run without requiring an MD5 checksum. Running the OVAL Interpreter with this
option DISABLES an important security feature. In normal usage, a trusted
checksum provided on the command line is used to verify the integrity of the
OVAL Definitions document.
Use of this option is recommended only when testing your own draft OVAL
Definitions before submitting them to the OVAL Community Forum for public
review.
.TP
.B \-n
Perform Schematron validation of the OVAL Definitions document.
.TP
.B \-c filename
Specifies the pathname of the oval-definitions-schematron.xsl to be used for
Schematron validation. If none is specified then the OVAL Interpreter will
default to "oval-definitions-schematron.xsl" in the OVAL Interpreter directory.
.TP
.B \-a dir name
Specifies the pathname of the directory that contains the OVAL Language Schema
and other XML resources. DEFAULT="/usr/share/ovaldi"
.TP
.B \-i filename
Specifies the pathname of a OVAL System Characteristics document that is to be
used as the basis of the analysis. In this mode, the OVAL Interpreter does not
perform data collection on the local system, but relies upon the input file,
which may have been generated on another system.
.TP
.B \-d filename
Specifies the pathname of the file to which collected configuration data is to
be saved. This data is stored in the format defined by the OVAL Systems
Characteristics Schema.
.TP
.B \-g filename
Specifies the pathname of the file containing the directives which are used to
control what information is included in the generated OVAL Results document. The
file must comply with the OVAL Directives schema.
.TP
.B \-r filename
Specifies the pathname of the file to which analysis results are to be saved.
This data is stored according to the format defined by the OVAL Results Schema.
If none is specified than the OVAL Interpreter will default to "results.xml" in
the OVAL Interpreter directory.
.TP
.B \-s
If set do not apply the XSL to the OVAL Results xml.
.TP
.B \-t filename
Specifies the pathname of the XSL file which should be used to transform the
OVAL Results document. If none is specified then the OVAL Interpreter will
default to "results_to_html.xsl" in the OVAL Interpreter directory.
.TP
.B \-x filename
Specifies the pathname of the file which XSL transform results are to be saved.
If none is specified then the OVAL Interpreter will default to "results.html"
in the OVAL Interpreter directory.
.TP
.B \-l <integer>
Logging level. Log messages at the specified level.
(DEBUG = 1, INFO = 2, MESSAGE = 3, FATAL = 4). DEFAULT=2
.TP
.B \-p
Verbose output. Print all information and error message to the console.
.TP
.B \-y dir name
Save the ovaldi.log file to a specific location. The default location is the
current working directory when the executable is run.
.TP
.B \-z
Calculates and prints to the screen the MD5 checksum of the current data file
(definitions.xml by default, or as specified by the \-o option). This can be
used to manually compare the current file with the trusted checksum available
from the OVAL Web site.
.SH EXAMPLES
.TP
Run the OVAL Interpreter against an OVAL Definitions document, without
verifying MD5 checksum:
.B ovaldi
\-a /usr/share/ovaldi
\-o linux.definitions.xml
\-m
.SH FILES
.TP
/usr/share/ovaldi/*.xsd
The OVAL Language scheam files.
.SH AUTHOR
Man page written by Jonathan Baker (bakerj@mitre.org)
|
