III - Administrative Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-OS-000426-GPOS-00190
<GroupDescription></GroupDescription>Group -
The IBM z/VM TCP/IP SECURETELNETCLIENT option for telnet must be set to YES.
<VulnDiscussion>Information can be either unintentionally or maliciously disclosed or modified during preparation for transmission, for examp...Rule Medium Severity -
SRG-OS-000324-GPOS-00125
<GroupDescription></GroupDescription>Group -
The IBM z/VM Privilege Classes C and E must be restricted to appropriate system administrators.
<VulnDiscussion>Preventing non-privileged users from executing privileged functions mitigates the risk that unauthorized individuals or proce...Rule Medium Severity -
SRG-OS-000324-GPOS-00125
<GroupDescription></GroupDescription>Group -
The IBM z/VM Privilege Class F must be restricted to service representatives and system administrators only.
<VulnDiscussion>Preventing non-privileged users from executing privileged functions mitigates the risk that unauthorized individuals or proce...Rule Medium Severity -
SRG-OS-000324-GPOS-00125
<GroupDescription></GroupDescription>Group -
The IBM z/VM ANY Privilege Class must not be listed for privilege commands.
<VulnDiscussion>Preventing non-privileged users from executing privileged functions mitigates the risk that unauthorized individuals or proce...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
CA VM:Secure product VMXRPI configuration file must be restricted to authorized personnel.
<VulnDiscussion>Configuring the operating system to implement organization-wide security implementation guides and security checklists ensure...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
CA VM:Secure product DASD CONFIG file must be restricted to appropriate personnel.
<VulnDiscussion>Configuring the operating system to implement organization-wide security implementation guides and security checklists ensure...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
CA VM:Secure product AUTHORIZ CONFIG file must be restricted to appropriate personnel.
<VulnDiscussion>Configuring the operating system to implement organization-wide security implementation guides and security checklists ensure...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
CA VM:Secure product CONFIG file must be restricted to appropriate personnel.
<VulnDiscussion>Configuration settings are the set of parameters that can be changed in hardware, software, or firmware components of the sys...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
CA VM:Secure Product SFS configuration file must be restricted to appropriate personnel.
<VulnDiscussion>Configuring the operating system to implement organization-wide security implementation guides and security checklists ensure...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
CA VM:Secure product Rules Facility must be restricted to appropriate personnel.
<VulnDiscussion>Configuring the operating system to implement organization-wide security implementation guides and security checklists ensure...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.