II - Mission Support Sensitive
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000516-WSR-000174
Group -
OHS must have the RewriteLogLevel directive set to the proper log level.
Logging must not contain sensitive information or more information necessary than that needed to administer the system. The log levels from the rewrite engine range from 0 to 9 where 0 is no loggi...Rule Low Severity -
SRG-APP-000516-WSR-000174
Group -
OHS must have the RewriteLog directive set properly.
Specifying where the log files are written gives the system administrator the capability to store the files in a location other than the default, with system files or in a globally accessible locat...Rule Low Severity -
SRG-APP-000516-WSR-000174
Group -
All accounts installed with the web server software and tools must have passwords assigned and default passwords changed.
During installation of the web server software, accounts are created for the web server to operate properly. The accounts installed can have either no password installed or a default password, whic...Rule Medium Severity -
SRG-APP-000516-WSR-000174
Group -
A production OHS Installation must prohibit the installation of a compiler.
The presence of a compiler on a production server facilitates the malicious user’s task of creating custom versions of programs and installing Trojan Horses or viruses. For example, the attacker’s...Rule Medium Severity -
SRG-APP-000516-WSR-000174
Group -
A public OHS installation, if hosted on the NIPRNet, must be isolated in an accredited DoD DMZ Extension.
To minimize exposure of private assets to unnecessary risk by attackers, public web servers must be isolated from internal systems. Public web servers are by nature more vulnerable to attack from ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.