Capacity
10.3
26
Rule
Severity: Medium
Ensure System Log Files Have Correct Permissions
25
Rule
Severity: Medium
Ensure Log Files Are Owned By Appropriate Group
25
Rule
Severity: Medium
Ensure Log Files Are Owned By Appropriate User
25
Rule
Severity: Medium
Make the auditd Configuration Immutable
25
Rule
Severity: Medium
Record Events that Modify the System's Mandatory Access Controls
25
Rule
Severity: Medium
Record Events that Modify the System's Network Environment
25
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - chmod
25
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - chown
26
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - fchmod
25
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - fchmodat
25
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - fchown
25
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - fchownat
26
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - fremovexattr
25
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - fsetxattr
26
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - lchown
25
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - lremovexattr
25
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - lsetxattr
25
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - removexattr
25
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - setxattr
24
Rule
Severity: Medium
System Audit Logs Must Be Owned By Root
24
Rule
Severity: Medium
Configure auditd to use audispd's syslog plugin
11
Rule
Severity: Medium
Install audispd-plugins Package
9
Rule
Severity: Medium
Ensure the default plugins for the audit dispatcher are Installed
11
Rule
Severity: Medium
Record Access Events to Audit Log Directory
9
Rule
Severity: Medium
System Audit Logs Must Be Group Owned By Root
15
Rule
Severity: Medium
System Audit Logs Must Have Mode 0640 or Less Permissive
5
Rule
Severity: Medium
Verify permissions of log files
1
Rule
Severity: Medium
Ensure that File Integrity Operator is scanning the cluster
1
Rule
Severity: Medium
Record Access Events to Kubernetes Audit Log Directory
1
Rule
Severity: Medium
Record Access Events to OAuth Audit Log Directory
1
Rule
Severity: Medium
Record Access Events to OpenShift Audit Log Directory
1
Rule
Severity: Medium
The Kubernetes Audit Logs Directory Must Have Mode 0700
1
Rule
Severity: Medium
The OAuth Audit Logs Directory Must Have Mode 0700
1
Rule
Severity: Medium
The OpenShift Audit Logs Directory Must Have Mode 0700
1
Rule
Severity: Medium
Kubernetes Audit Logs Must Be Owned By Root
1
Rule
Severity: Medium
OAuth Audit Logs Must Be Owned By Root
1
Rule
Severity: Medium
OpenShift Audit Logs Must Be Owned By Root
1
Rule
Severity: Medium
Kubernetes Audit Logs Must Have Mode 0600
1
Rule
Severity: Medium
OAuth Audit Logs Must Have Mode 0600
1
Rule
Severity: Medium
OpenShift Audit Logs Must Have Mode 0600
1
Rule
Severity: Medium
Ensure that the cluster-admin role is only used where required
Patternfly
PatternFly elements
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Modules