IBM AIX 7.x Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
The cmsd daemon must be disabled on AIX.
<VulnDiscussion>This is a calendar and appointment service for CDE. The cmsd service is utilized by CDE to provide calendar functionality. I...Rule Medium Severity -
SRG-OS-000095-GPOS-00049
<GroupDescription></GroupDescription>Group -
The ttdbserver daemon must be disabled on AIX.
<VulnDiscussion>The ttdbserver service is the tool-talk database service for CDE. This service runs as root and should be disabled. Unless re...Rule Medium Severity -
SRG-OS-000095-GPOS-00049
<GroupDescription></GroupDescription>Group -
The uucp (UNIX to UNIX Copy Program) daemon must be disabled on AIX.
<VulnDiscussion>This service facilitates file copying between networked servers. The uucp (UNIX to UNIX Copy Program), service allows users ...Rule Medium Severity -
SRG-OS-000095-GPOS-00049
<GroupDescription></GroupDescription>Group -
The time daemon must be disabled on AIX.
<VulnDiscussion>This service can be used to synchronize system clocks. The time service is an obsolete process used to synchronize system cl...Rule Medium Severity -
SRG-OS-000095-GPOS-00049
<GroupDescription></GroupDescription>Group -
AIX must not have accounts configured with blank or null passwords.
<VulnDiscussion>If an account is configured for password authentication but does not have an assigned password, it may be possible to log int...Rule High Severity -
SRG-OS-000480-GPOS-00230
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules