I finally got a chance to install RedHat 6, but I am having troubles getting secstate started. After some digging, I found a reference to missing puppet configuration files. Looks like I will have to wait for secstate to come out of beta; but I still like the concept of locking down a system and keeping it locked-down.
P.S.> Finally found the examples, but I was hoping for more. At least an example to would put a system into FDCC/USGCB format. The authors of secstate come from TreSys CLIP project which uses Puppet to maintain a system in a secure state.
