Skip to content

Oracle Linux 8 Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • There must be no ".shosts" files on the OL 8 operating system.

    <VulnDiscussion>The ".shosts" files are used to configure host-based authentication for individual users or the system via SSH. Host-based au...
    Rule High Severity
  • SRG-OS-000480-GPOS-00227

    <GroupDescription></GroupDescription>
    Group
  • OL 8 must use a separate file system for /var/tmp.

    &lt;VulnDiscussion&gt;The use of separate file systems for different paths can protect the system from failures resulting from a file system becomi...
    Rule Medium Severity
  • SRG-OS-000109-GPOS-00056

    <GroupDescription></GroupDescription>
    Group
  • OL 8 must not permit direct logons to the root account using remote access via SSH.

    &lt;VulnDiscussion&gt;Although the communications channel may be encrypted, an additional layer of security is gained by extending the policy of no...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules