Microsoft Windows 2012 Server Domain Name System Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
The Windows 2012 DNS Server must not contain zone records that have not been validated in over a year.
<VulnDiscussion>If zone information has not been validated in over a year, then there is no assurance that it is still valid. If invalid rec...Rule Medium Severity -
SRG-APP-000246-DNS-000035
<GroupDescription></GroupDescription>Group -
The Windows 2012 DNS Server must restrict individuals from using it for launching Denial of Service (DoS) attacks against other information systems.
<VulnDiscussion>Applications and application developers must take the steps needed to ensure users cannot use an authorized application to la...Rule Medium Severity -
SRG-APP-000247-DNS-000036
<GroupDescription></GroupDescription>Group -
The Windows 2012 DNS Server must use DNS Notify to prevent denial of service through increase in workload.
<VulnDiscussion>In the case of application DoS attacks, care must be taken when designing the application to ensure the application makes the...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules