Skip to content

Redis Enterprise 6.x Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Redis Enterprise DBMS must protect its audit configuration from unauthorized modification.

    <VulnDiscussion>Redis Enterprise does not come with unique tools to view log data and logging is not configurable. Logs are stored in a stand...
    Rule Medium Severity
  • SRG-APP-000123-DB-000204

    <GroupDescription></GroupDescription>
    Group
  • Redis Enterprise DBMS must protect its audit features from unauthorized removal.

    &lt;VulnDiscussion&gt;Redis Enterprise does not come with unique tools to view log data and logging is not configurable. Logs are stored in a stand...
    Rule Medium Severity
  • SRG-APP-000378-DB-000365

    <GroupDescription></GroupDescription>
    Group
  • Redis Enterprise DBMS must prohibit user installation of logic modules (stored procedures, functions, triggers, views, etc.) without explicit privileged status.

    &lt;VulnDiscussion&gt;Redis Enterprise permits the installation of logic modules through a control plane layer to the database, which requires priv...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules