Skip to content

I - Mission Critical Classified

Rules and Groups employed by this XCCDF Profile

  • SRG-OS-000095-GPOS-00049

    <GroupDescription></GroupDescription>
    Group
  • Basic authentication for RSS feeds over HTTP must not be used.

    &lt;VulnDiscussion&gt;Basic authentication uses plain text passwords that could be used to compromise a system.&lt;/VulnDiscussion&gt;&lt;FalsePosi...
    Rule Medium Severity
  • SRG-OS-000095-GPOS-00049

    <GroupDescription></GroupDescription>
    Group
  • Indexing of encrypted files must be turned off.

    &lt;VulnDiscussion&gt;Indexing of encrypted files may expose sensitive data. This setting prevents encrypted files from being indexed.&lt;/VulnDis...
    Rule Medium Severity
  • SRG-OS-000362-GPOS-00149

    <GroupDescription></GroupDescription>
    Group
  • Users must be prevented from changing installation options.

    &lt;VulnDiscussion&gt;Installation options for applications are typically controlled by administrators. This setting prevents users from changing ...
    Rule Medium Severity
  • SRG-OS-000362-GPOS-00149

    <GroupDescription></GroupDescription>
    Group
  • The Windows Installer Always install with elevated privileges must be disabled.

    &lt;VulnDiscussion&gt;Standard user accounts must not be granted elevated privileges. Enabling Windows Installer to elevate privileges when instal...
    Rule High Severity
  • SRG-OS-000480-GPOS-00227

    <GroupDescription></GroupDescription>
    Group
  • Users must be notified if a web-based program attempts to install software.

    &lt;VulnDiscussion&gt;Web-based programs may attempt to install malicious software on a system. Ensuring users are notified if a web-based program...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules