Solaris 11 SPARC Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Duplicate User IDs (UIDs) must not exist for users within the organization.
<VulnDiscussion>Users within the organization must be assigned unique UIDs for accountability and to ensure appropriate access protections.&l...Rule Medium Severity -
SRG-OS-000121
<GroupDescription></GroupDescription>Group -
Duplicate UIDs must not exist for multiple non-organizational users.
<VulnDiscussion>Non-organizational users must be assigned unique UIDs for accountability and to ensure appropriate access protections.</Vu...Rule Medium Severity -
SRG-OS-000480
<GroupDescription></GroupDescription>Group -
Duplicate Group IDs (GIDs) must not exist for multiple groups.
<VulnDiscussion>User groups must be assigned unique GIDs for accountability and to ensure appropriate access protections.</VulnDiscussion&...Rule Medium Severity -
SRG-OS-000480
<GroupDescription></GroupDescription>Group -
The operating system must configure auditing to reduce the likelihood of storage capacity being exceeded.
<VulnDiscussion>Overflowing the audit storage area can result in a denial of service or system outage.</VulnDiscussion><FalsePositiv...Rule High Severity -
SRG-OS-000366
<GroupDescription></GroupDescription>Group -
The system must verify that package updates are digitally signed.
<VulnDiscussion>Digitally signed packages ensure that the source of the package can be identified.</VulnDiscussion><FalsePositives&g...Rule Medium Severity -
SRG-OS-000363
<GroupDescription></GroupDescription>Group -
The audit system must be configured to audit login, logout, and session initiation.
<VulnDiscussion>Without auditing, individual system accesses cannot be tracked, and malicious activity cannot be detected and traced back to ...Rule Low Severity -
SRG-OS-000480
<GroupDescription></GroupDescription>Group -
The operating system must automatically audit account disabling actions.
<VulnDiscussion>Without auditing, malicious activity cannot be detected.</VulnDiscussion><FalsePositives></FalsePositives>&...Rule Medium Severity -
SRG-OS-000241
<GroupDescription></GroupDescription>Group -
The operating system must automatically audit account termination.
<VulnDiscussion>Without auditing, malicious activity cannot be detected.</VulnDiscussion><FalsePositives></FalsePositives>&...Rule Medium Severity -
SRG-OS-000480
<GroupDescription></GroupDescription>Group -
The operating system must protect audit tools from unauthorized deletion.
<VulnDiscussion>Failure to maintain system configurations may result in privilege escalation.</VulnDiscussion><FalsePositives><...Rule Medium Severity -
SRG-OS-000278
<GroupDescription></GroupDescription>Group -
The operating system must ensure unauthorized, security-relevant configuration changes detected are tracked.
<VulnDiscussion>Without auditing, malicious activity cannot be detected.</VulnDiscussion><FalsePositives></FalsePositives>&...Rule Medium Severity -
SRG-OS-000480
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.