AC-6

Rule

Severity: Medium

Ensure that System Accounts Do Not Run a Shell Upon Login

Rule

Severity: Medium

Restrict Serial Port Root Logins

Rule

Severity: Medium

Restrict Virtual Console Root Logins

Rule

Severity: Medium

Ensure that System Accounts Are Locked

Rule

Severity: Medium

Add nodev Option to /dev/shm

Rule

Severity: Medium

Add nosuid Option to /dev/shm

Rule

Severity: Medium

Enable Use of Strict Mode Checking

Rule

Severity: Medium

Enable Use of Privilege Separation

Rule

Severity: Medium

Add nodev Option to /boot

Rule

Severity: Medium

Add nosuid Option to /boot

Rule

Severity: Medium

Add noexec Option to /dev/shm

Rule

Severity: Medium

Add nosuid Option to /home

Rule

Severity: Medium

Add nodev Option to Non-Root Local Partitions

Rule

Severity: Medium

Add nodev Option to Removable Media Partitions

Rule

Severity: Medium

Add noexec Option to Removable Media Partitions

Rule

Severity: Medium

Add nosuid Option to Removable Media Partitions

Rule

Severity: Medium

Add nodev Option to /tmp

Rule

Severity: Medium

Add noexec Option to /tmp

Rule

Severity: Medium

Add nosuid Option to /tmp

Rule

Severity: Medium

Add nodev Option to /var/log/audit

Rule

Severity: Medium

Add noexec Option to /var/log/audit

Rule

Severity: Medium

Add nosuid Option to /var/log/audit

Rule

Severity: Medium

Add nodev Option to /var/log

Rule

Severity: Medium

Add noexec Option to /var/log

Rule

Severity: Medium

Add nosuid Option to /var/log

Rule

Severity: Medium

Add nodev Option to /var

Rule

Severity: Unknown

Bind Mount /var/tmp To /tmp

Rule

Severity: Low

Disallow kernel profiling by unprivileged users

Rule

Severity: Medium

Ensure No Device Files are Unlabeled by SELinux

Rule

Severity: Medium

Ensure No Daemons are Unconfined by SELinux

Rule

Severity: Medium

Mount Remote Filesystems with noexec

Rule

Severity: Medium

Mount Remote Filesystems with nosuid

Rule

Severity: Medium

Ensure tftp Daemon Uses Secure Mode

Rule

Severity: Medium

Disable Access to Network bpf() Syscall From Unprivileged Processes

Rule

Severity: Medium

Limit Containers Ability to use the HostDir volume plugin

Patternfly

PatternFly elements

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity

Modules