III - Administrative Public
Rules and Groups employed by this XCCDF Profile
-
SRG-OS-000073-GPOS-00041
<GroupDescription></GroupDescription>Group -
NIST FIPS-validated cryptography must be used to protect passwords in the security database.
<VulnDiscussion>Password complexity is one factor of several that determines how long it takes to crack a password. The more complex the pass...Rule High Severity -
SRG-OS-000138-GPOS-00069
<GroupDescription></GroupDescription>Group -
The IBM RACF ERASE ALL SETROPTS value must be set to ERASE(ALL) on all systems.
<VulnDiscussion>Preventing unauthorized information transfers mitigates the risk of information, including encrypted representations of infor...Rule Medium Severity -
SRG-OS-000080-GPOS-00048
<GroupDescription></GroupDescription>Group -
IBM RACF DASD Management USERIDs must be properly controlled.
<VulnDiscussion>To mitigate the risk of unauthorized access to sensitive information by entities that have been issued certificates by DoD-ap...Rule Medium Severity -
SRG-OS-000032-GPOS-00013
<GroupDescription></GroupDescription>Group -
IBM z/OS SMF recording options for the FTP Server must be configured to write SMF records for all eligible events.
<VulnDiscussion>The FTP Server can provide audit data in the form of SMF records. The SMF data produced by the FTP Server provides transactio...Rule Medium Severity -
SRG-OS-000080-GPOS-00048
<GroupDescription></GroupDescription>Group -
IBM RACF permission bits and user audit bits for HFS objects that are part of the FTP server component must be properly configured.
<VulnDiscussion>MVS data sets of the FTP Server provide the configuration and operational characteristics of this product. Failure to properl...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.