I - Mission Critical Public
Rules and Groups employed by this XCCDF Profile
-
SRG-OS-000074-GPOS-00042
Group -
AIX telnet daemon must not be running.
This telnet service is used to service remote user connections. This is historically the most commonly used remote access method for UNIX servers. The username and passwords are passed over the net...Rule High Severity -
SRG-OS-000074-GPOS-00042
Group -
AIX ftpd daemon must not be running.
The ftp service is used to transfer files from or to a remote machine. The username and passwords are passed over the network in clear text and therefore insecurely. Remote file transfer, if requir...Rule High Severity -
SRG-OS-000373-GPOS-00156
Group -
AIX must remove NOPASSWD tag from sudo config files.
sudo command does not require reauthentication if NOPASSWD tag is specified in /etc/sudoers config file, or sudoers files in /etc/sudoers.d/ directory. With this tag in sudoers file, users are not ...Rule High Severity -
SRG-OS-000373-GPOS-00156
Group -
AIX must remove !authenticate option from sudo config files.
sudo command does not require reauthentication if !authenticate option is specified in /etc/sudoers config file, or config files in /etc/sudoers.d/ directory. With this tag in sudoers, users are no...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
Group -
AIX must be configured with a default gateway for IPv4 if the system uses IPv4, unless the system is a router.
If a system has no default gateway defined, the system is at increased risk of man-in-the-middle, monitoring, and Denial of Service attacks.Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules