Skip to content

I - Mission Critical Classified

Rules and Groups employed by this XCCDF Profile

  • Direct root account login must not be permitted for SSH access.

    <VulnDiscussion>The system should not allow users to log in as the root user directly, as audited actions would be non-attributable to a spec...
    Rule Medium Severity
  • SRG-OS-000480

    <GroupDescription></GroupDescription>
    Group
  • Login must not be permitted with empty/null passwords for SSH.

    &lt;VulnDiscussion&gt;Permitting login without a password is inherently risky.&lt;/VulnDiscussion&gt;&lt;FalsePositives&gt;&lt;/FalsePositives&gt;&...
    Rule High Severity
  • SRG-OS-000163

    <GroupDescription></GroupDescription>
    Group
  • The operating system must terminate the network connection associated with a communications session at the end of the session or after 10 minutes of inactivity.

    &lt;VulnDiscussion&gt;This requirement applies to both internal and external networks. Terminating network connections associated with communicat...
    Rule Low Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules