Skip to content
Log In

II - Mission Support Classified

Rules and Groups employed by this XCCDF Profile

  • SRG-OS-000259-GPOS-00100

    Group
    Show

  • All system command files must not have extended ACLs.

    Restricting permissions will protect system command files from unauthorized modification. System command files include files present in directories used by the operating system for storing default ...
    Rule Medium Severity
    Show

  • SRG-OS-000259-GPOS-00100

    Group
    Show

  • All library files must not have extended ACLs.

    Unauthorized access could destroy the integrity of the library files.
    Rule Medium Severity
    Show

  • SRG-OS-000480-GPOS-00227

    Group
    Show

  • AIX passwd.nntp file must have mode 0600 or less permissive.

    File permissions more permissive than 0600 for /etc/news/passwd.nntp may allow access to privileged information by system intruders or malicious users.
    Rule Medium Severity
    Show

  • SRG-OS-000480-GPOS-00227

    Group
    Show

  • The AIX /etc/group file must not have an extended ACL.

    The "/etc/group" file contains information regarding groups that are configured on the system. Protection of this file is important for system security.
    Rule Medium Severity
    Show

  • SRG-OS-000480-GPOS-00227

    Group
    Show

  • The AIX ldd command must be disabled.

    The ldd command provides a list of dependent libraries needed by a given binary, which is useful for troubleshooting software. Instead of parsing the binary file, some ldd implementations invoke th...
    Rule Medium Severity
    Show

  • SRG-OS-000480-GPOS-00227

    Group
    Show

  • AIX NFS server must be configured to restrict file system access to local hosts.

    The NFS access option limits user access to the specified level. This assists in protecting exported file systems. If access is not restricted, unauthorized hosts may be able to access the system's...
    Rule Medium Severity
    Show

  • SRG-OS-000480-GPOS-00230

    Group
    Show

  • All AIX users home directories must have mode 0750 or less permissive.

    Excessive permissions on home directories allow unauthorized access to user files.
    Rule Medium Severity
    Show

  • SRG-OS-000480-GPOS-00230

    Group
    Show

  • The AIX user home directories must not have extended ACLs.

    Excessive permissions on home directories allow unauthorized access to user files.
    Rule Medium Severity
    Show

  • SRG-OS-000312-GPOS-00124

    Group
    Show

  • AIX must use Trusted Execution (TE) Check policy.

    Discretionary Access Control (DAC) is based on the notion that individual users are "owners" of objects and therefore have discretion over who should be authorized to access the object and in which...
    Rule Medium Severity
    Show

  • SRG-OS-000365-GPOS-00152

    Group
    Show

  • AIX must disable trivial file transfer protocol.

    Without auditing the enforcement of access restrictions against changes to the application configuration, it will be difficult to identify attempted attacks and an audit trail will not be available...
    Rule High Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules