II - Mission Support Sensitive
Rules and Groups employed by this XCCDF Profile
-
SRG-OS-000480-GPOS-00227
Group -
SLEM 5 SSH daemon private host key files must have mode 640 or less permissive.
If an unauthorized user obtains the private SSH host key file, the host could be impersonated.Rule Medium Severity -
SRG-OS-000259-GPOS-00100
Group -
SLEM 5 library files must be owned by root.
If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without undergoing the appropriate testing and approvals that are part of a robust ch...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
Group -
SLEM 5 library files must be group-owned by root.
If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without undergoing the appropriate testing and approvals that are part of a robust ch...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
Group -
SLEM 5 library directories must be owned by root.
If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without undergoing the appropriate testing and approvals that are part of a robust ch...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
Group -
SLEM 5 library directories must be group-owned by root.
If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without undergoing the appropriate testing and approvals that are part of a robust ch...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
Group -
SLEM 5 must have system commands owned by root.
If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without undergoing the appropriate testing and approvals that are part of a robust ch...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
Group -
SLEM 5 must have system commands group-owned by root or a system account.
If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without undergoing the appropriate testing and approvals that are part of a robust ch...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
Group -
SLEM 5 must have directories that contain system commands owned by root.
If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without undergoing the appropriate testing and approvals that are part of a robust ch...Rule Medium Severity -
SRG-OS-000259-GPOS-00100
Group -
SLEM 5 must have directories that contain system commands group-owned by root.
If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without undergoing the appropriate testing and approvals that are part of a robust ch...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
Group -
All SLEM 5 files and directories must have a valid owner.
Unowned files and directories may be unintentionally inherited if a user is assigned the same User Identifier (UID) as the UID of the unowned files.Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.