Skip to content
Log In

III - Administrative Sensitive

Rules and Groups employed by this XCCDF Profile

  • SRG-OS-000080

    Group
    Show

  • ROSCOE Install data sets are not properly protected.

    ROSCOE Install data sets provide the capability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to their data sets could result in violating th...
    Rule Medium Severity
    Show

  • SRG-OS-000259

    Group
    Show

  • ROSCOE STC data sets are not properly protected.

    ROSCOE STC data sets provide the capability to use privileged functions and/or have access to sensitive data. Failure to properly restrict access to their data sets could result in violating the in...
    Rule Medium Severity
    Show

  • SRG-OS-000018

    Group
    Show

  • ROSCOE resources must be properly defined and protected.

    ROSCOE can run with sensitive system privileges, and potentially can circumvent system controls. Failure to properly control access to product resources could result in the compromise of the operat...
    Rule Medium Severity
    Show

  • SRG-OS-000104

    Group
    Show

  • ROSCOE Started Task name is not properly identified / defined to the system ACP.

    Products that require a started task will require that the started task be restricted to certain resources, datasets and other system functions. By defining the started task as a userid to the syst...
    Rule Medium Severity
    Show

  • SRG-OS-000104

    Group
    Show

  • ROSCOE Started task(s) must be properly defined to the STARTED resource class for RACF.

    Access to product resources should be restricted to only those individuals responsible for the application connectivity and who have a requirement to access these resources. Improper control of pr...
    Rule Medium Severity
    Show

  • SRG-OS-000309

    Group
    Show

  • The Roscoe Resource Class will be defined or active in the ACP.

    Failure to use a robust ACP to control a product could potentially compromise the integrity and availability of the MVS operating system and user data.
    Rule Medium Severity
    Show

  • SRG-OS-000018

    Group
    Show

  • Product configuration/parameter values are not specified properly.

    Product configuration/parameters control the security and operational characteristics of products. If these parameter values are improperly specified, security and operational controls may be weak...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules