IBM AIX 7.x Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-OS-000112-GPOS-00057
<GroupDescription></GroupDescription>Group -
AIX must use the SSH server to implement replay-resistant authentication mechanisms for network access to privileged and non-privileged accounts.
<VulnDiscussion>A replay attack may enable an unauthorized user to gain access to the operating system. Authentication sessions between the a...Rule High Severity -
The AIX system must automatically remove or disable emergency accounts after the crisis is resolved or 72 hours.
<VulnDiscussion>Emergency accounts are privileged accounts that are established in response to crisis situations where the need for rapid acc...Rule Medium Severity -
SRG-OS-000001-GPOS-00001
<GroupDescription></GroupDescription>Group -
The shipped /etc/security/mkuser.sys file on AIX must not be customized directly.
<VulnDiscussion>The "/etc/security/mkuser.sys" script customizes the new user account when a new user is created, or a user is logging into t...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules