Skip to content

IBM AIX 7.x Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-OS-000480-GPOS-00227

    <GroupDescription></GroupDescription>
    Group
  • AIX NFS server must be configured to restrict file system access to local hosts.

    &lt;VulnDiscussion&gt;The NFS access option limits user access to the specified level. This assists in protecting exported file systems. If access ...
    Rule Medium Severity
  • SRG-OS-000480-GPOS-00230

    <GroupDescription></GroupDescription>
    Group
  • All AIX users home directories must have mode 0750 or less permissive.

    &lt;VulnDiscussion&gt;Excessive permissions on home directories allow unauthorized access to user files.&lt;/VulnDiscussion&gt;&lt;FalsePositives&g...
    Rule Medium Severity
  • SRG-OS-000480-GPOS-00230

    <GroupDescription></GroupDescription>
    Group
  • The AIX user home directories must not have extended ACLs.

    &lt;VulnDiscussion&gt;Excessive permissions on home directories allow unauthorized access to user files.&lt;/VulnDiscussion&gt;&lt;FalsePositives&g...
    Rule Medium Severity
  • SRG-OS-000312-GPOS-00124

    <GroupDescription></GroupDescription>
    Group
  • AIX must use Trusted Execution (TE) Check policy.

    &lt;VulnDiscussion&gt;Discretionary Access Control (DAC) is based on the notion that individual users are "owners" of objects and therefore have di...
    Rule Medium Severity
  • SRG-OS-000365-GPOS-00152

    <GroupDescription></GroupDescription>
    Group
  • AIX must disable trivial file transfer protocol.

    &lt;VulnDiscussion&gt;Without auditing the enforcement of access restrictions against changes to the application configuration, it will be difficul...
    Rule High Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules