Skip to content
ATO Pathways
  Log In

Guide to the Secure Configuration of openEuler 2203

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Record Information on the Use of Privileged Commands

    At a minimum, the audit system should collect the execution of privileged commands for all users and root.
    Group
    Show

  • Verify Permissions on Files with Local Account Information and Credentials

    The default restrictive permissions for files which act as important security databases such as <code>passwd</code>, <code>shadow</code>, <code>gro...
    Group
    Show

  • Verify Group Who Owns Backup gshadow File

    To properly set the group owner of /etc/gshadow-, run the command: 
    $ sudo chgrp root /etc/gshadow-
    Rule Medium Severity
    Show

  • Verify Group Who Owns shadow File

    To properly set the group owner of /etc/shadow, run the command: 
    $ sudo chgrp root /etc/shadow
    Rule Medium Severity
    Show

  • Ensure PAM Enforces Password Requirements - Enforce for root User

    The pam_pwquality module's <code>enforce_for_root</code> parameter controls requirements for enforcing password complexity for the root user. Enabl...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules