SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
All SLEM 5 local interactive user home directories must have mode 750 or less permissive.
<VulnDiscussion>Excessive permissions on local interactive user home directories may allow unauthorized access to user files by other users.&...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
All SLEM 5 local initialization files must have mode 740 or less permissive.
<VulnDiscussion>Local initialization files are used to configure the user's shell environment upon logon. Malicious modification of these fil...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
SLEM 5 SSH daemon public host key files must have mode 644 or less permissive.
<VulnDiscussion>If a public host key file is modified by an unauthorized user, the SSH service may be compromised.</VulnDiscussion><...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
SLEM 5 library files must be owned by root.
<VulnDiscussion>If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
<GroupDescription></GroupDescription>Group -
SLEM 5 library files must be group-owned by root.
<VulnDiscussion>If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
<GroupDescription></GroupDescription>Group -
SLEM 5 library directories must be owned by root.
<VulnDiscussion>If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
<GroupDescription></GroupDescription>Group -
SLEM 5 library directories must be group-owned by root.
<VulnDiscussion>If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
<GroupDescription></GroupDescription>Group -
SLEM 5 must have system commands owned by root.
<VulnDiscussion>If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
<GroupDescription></GroupDescription>Group -
SLEM 5 must have system commands group-owned by root or a system account.
<VulnDiscussion>If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
<GroupDescription></GroupDescription>Group -
SLEM 5 must have directories that contain system commands owned by root.
<VulnDiscussion>If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.