Riverbed SteelHead CX v8 NDM Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000023-NDM-000205
<GroupDescription></GroupDescription>Group -
Riverbed Optimization System (RiOS) must provide automated support for account management functions.
<VulnDiscussion>Account management functions include: assignment of group or role membership; identifying account type; specifying user acces...Rule Medium Severity -
SRG-APP-000317-NDM-000282
<GroupDescription></GroupDescription>Group -
Riverbed Optimization System (RiOS) must terminate local shared/group account credentials, such as the Admin account is used, when members who know the account password leave the group.
<VulnDiscussion>If shared/group account credentials are not terminated when individuals leave the group, the user that left the group can sti...Rule Medium Severity -
SRG-APP-000317-NDM-000282
<GroupDescription></GroupDescription>Group -
SRG-APP-000168-NDM-000256
<GroupDescription></GroupDescription>Group -
Riverbed Optimization System (RiOS) must disable the local Shark and Monitor accounts so they cannot be used as shared accounts by users.
<VulnDiscussion>The Monitor and Shark accounts which are default group accounts with shared credentials. Monitor and Shark accounts are not e...Rule Medium Severity -
SRG-APP-000026-NDM-000208
<GroupDescription></GroupDescription>Group -
Riverbed Optimization System (RiOS) must automatically generate a log event for account creation events.
<VulnDiscussion>Upon gaining access to a network device, an attacker will often first attempt to create a persistent method of reestablishing...Rule Low Severity -
SRG-APP-000027-NDM-000209
<GroupDescription></GroupDescription>Group -
Riverbed Optimization System (RiOS) must automatically log event for account modification.
<VulnDiscussion>Since the accounts in the network device are privileged or system-level accounts, account management is vital to the security...Rule Low Severity -
SRG-APP-000028-NDM-000210
<GroupDescription></GroupDescription>Group -
Riverbed Optimization System (RiOS) must automatically generate a log event for account disabling actions.
<VulnDiscussion>Account management, as a whole, ensures access to the network device is being controlled in a secure manner by granting acces...Rule Low Severity -
SRG-APP-000029-NDM-000211
<GroupDescription></GroupDescription>Group -
Riverbed Optimization System (RiOS) must automatically generate a log event for account removal actions.
<VulnDiscussion>Account management, as a whole, ensures access to the network device is being controlled in a secure manner by granting acces...Rule Low Severity -
SRG-APP-000291-NDM-000275
<GroupDescription></GroupDescription>Group -
Riverbed Optimization System (RiOS) must generate alerts that can be forwarded to the administrators and ISSO when local accounts are created.
<VulnDiscussion>An authorized insider or individual who maliciously creates a local account could gain immediate access from a remote locatio...Rule Medium Severity -
SRG-APP-000292-NDM-000276
<GroupDescription></GroupDescription>Group -
Riverbed Optimization System (RiOS) must generate alerts that can be forwarded to the administrators and ISSO when accounts are modified.
<VulnDiscussion>Once an attacker establishes initial access to a system, the attacker often attempts to create a persistent method of reestab...Rule Low Severity -
SRG-APP-000293-NDM-000277
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.