Skip to content
Log In

General Purpose Operating System Security Requirements Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • The operating system must limit privileges to change software resident within software libraries.

    If the operating system were to allow any user to make changes to software libraries, then those changes might be implemented without undergoing the appropriate testing and approvals that are part...
    Rule Medium Severity
    Show

  • SRG-OS-000266

    Group
    Show

  • The operating system must enforce password complexity by requiring that at least one special character be used.

    Use of a complex password helps to increase the time and resources required to compromise the password. Password complexity or strength is a measure of the effectiveness of a password in resisting ...
    Rule Medium Severity
    Show

  • SRG-OS-000269

    Group
    Show

  • SRG-OS-000274

    Group
    Show

  • SRG-OS-000275

    Group
    Show

  • SRG-OS-000276

    Group
    Show

  • SRG-OS-000277

    Group
    Show

  • SRG-OS-000278

    Group
    Show

  • SRG-OS-000279

    Group
    Show

  • SRG-OS-000280

    Group
    Show

  • SRG-OS-000281

    Group
    Show

  • The operating system must display an explicit logoff message to users indicating the reliable termination of authenticated communications sessions.

    If a user cannot explicitly end an operating system session, the session may remain open and be exploited by an attacker; this is referred to as a zombie session. Users need to be aware of whether ...
    Rule Medium Severity
    Show

  • SRG-OS-000297

    Group
    Show

  • SRG-OS-000298

    Group
    Show

  • The operating system must provide the capability to immediately disconnect or disable remote access to the operating system.

    Without the ability to immediately disconnect or disable remote access, an attack or other compromise taking place would not be immediately stopped. Operating system remote access functionality mu...
    Rule Medium Severity
    Show

  • SRG-OS-000299

    Group
    Show

  • SRG-OS-000300

    Group
    Show

  • The operating system must protect wireless access to the system using authentication of users and/or devices.

    Allowing devices and users to connect to the system without first authenticating them allows untrusted access and can lead to a compromise or attack. Wireless technologies include, for example, mi...
    Rule Medium Severity
    Show

  • SRG-OS-000303

    Group
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules