Microsoft Windows 10 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-OS-000373-GPOS-00157
<GroupDescription></GroupDescription>Group -
Simple Network Management Protocol (SNMP) must not be installed on the system.
<VulnDiscussion>Some protocols and services do not support required security features, such as encrypting passwords or traffic.</VulnDiscu...Rule Medium Severity -
SRG-OS-000095-GPOS-00049
<GroupDescription></GroupDescription>Group -
Simple TCP/IP Services must not be installed on the system.
<VulnDiscussion>Some protocols and services do not support required security features, such as encrypting passwords or traffic.</VulnDiscu...Rule Medium Severity -
SRG-OS-000096-GPOS-00050
<GroupDescription></GroupDescription>Group -
The Telnet Client must not be installed on the system.
<VulnDiscussion>Some protocols and services do not support required security features, such as encrypting passwords or traffic.</VulnDiscu...Rule Medium Severity -
SRG-OS-000096-GPOS-00050
<GroupDescription></GroupDescription>Group -
The TFTP Client must not be installed on the system.
<VulnDiscussion>Some protocols and services do not support required security features, such as encrypting passwords or traffic.</VulnDiscu...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
Software certificate installation files must be removed from Windows 10.
<VulnDiscussion>Use of software certificates and their accompanying installation files for end users to access resources is less secure than ...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
A host-based firewall must be installed and enabled on the system.
<VulnDiscussion>A firewall provides a line of defense against attack, allowing or blocking inbound and outbound connections based on a set of...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
Bluetooth must be turned off when not in use.
<VulnDiscussion>If not configured properly, Bluetooth may allow rogue devices to communicate with a system. If a rogue device is paired with ...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
The system must notify the user when a Bluetooth device attempts to connect.
<VulnDiscussion>If not configured properly, Bluetooth may allow rogue devices to communicate with a system. If a rogue device is paired with ...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
SRG-OS-000076-GPOS-00044
<GroupDescription></GroupDescription>Group -
The system must be configured to prevent IP source routing.
<VulnDiscussion>Configuring the system to disable IP source routing protects against spoofing.</VulnDiscussion><FalsePositives>&l...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.