Skip to content
Log In

I - Mission Critical Public

Rules and Groups employed by this XCCDF Profile

  • The manufacturer’s default passwords have not been changed for all SAN management software.

    The changing of passwords from the default value blocks malicious users with knowledge of the default passwords for the manufacturer's SAN Management software from creating a denial of service by d...
    Rule High Severity
    Show

  • SAN Fabric Zoning List Deny-By-Default

    Group
    Show

  • The SAN fabric zoning lists are not based on a policy of Deny-by-Default with blocks on all services and protocols not required on the given port or by the site.

    By using the Deny-by-Default based policy, any service or protocol not required by a port and overlooked in the zoning list will be denied access. If Deny-by-Default based policy was not used any ...
    Rule High Severity
    Show

  • Logging Failed Access to Port, Protocols, Services

    Group
    Show

  • Attempts to access ports, protocols, or services that are denied are not logged..

    Logging or auditing of failed access attempts is a necessary component for the forensic investigation of security incidents. Without logging there is no way to demonstrate that the access attempt ...
    Rule Low Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules