CloudLinux AlmaLinux OS 9 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-OS-000109-GPOS-00056
Group -
AlmaLinux OS 9 must not permit direct logons to the root account using remote access via SSH.
Even though the communications channel may be encrypted, an additional layer of security is gained by extending the policy of not logging directly on as root. In addition, logging in with a user-s...Rule Medium Severity -
SRG-OS-000378-GPOS-00163
Group -
AlmaLinux OS 9 must disable the graphical user interface automount function unless required.
Automatically mounting file systems permits easy introduction of unknown devices, thereby facilitating malicious activity. Satisfies: SRG-OS-000378-GPOS-00163, SRG-OS-000114-GPOS-00059Rule Medium Severity -
SRG-OS-000378-GPOS-00163
Group -
AlmaLinux OS 9 must prevent a user from overriding the disabling of the graphical user interface automount function.
Automatically mounting file systems permits easy introduction of unknown devices, thereby facilitating malicious activity. Satisfies: SRG-OS-000378-GPOS-00163, SRG-OS-000114-GPOS-00059Rule Medium Severity -
SRG-OS-000378-GPOS-00163
Group -
SRG-OS-000378-GPOS-00163
Group -
SRG-OS-000378-GPOS-00163
Group -
AlmaLinux OS 9 must have the USBGuard package enabled.
The USBGuard-daemon is the main component of the USBGuard software framework. It runs as a service in the background and enforces the USB device authorization policy for all USB devices. The policy...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.