Skip to content

I - Mission Critical Sensitive

Rules and Groups employed by this XCCDF Profile

  • Access to a logical domain console must be restricted to authorized users.

    <VulnDiscussion>A logical domain is a discrete, logical grouping with its own operating system, resources, and identity within a single compu...
    Rule Medium Severity
  • SRG-OS-000480

    <GroupDescription></GroupDescription>
    Group
  • The nobody access for RPC encryption key storage service must be disabled.

    &lt;VulnDiscussion&gt;If login by the user "nobody" is allowed for secure RPC, there is an increased risk of system compromise. If keyserv holds a ...
    Rule Medium Severity
  • SRG-OS-000480

    <GroupDescription></GroupDescription>
    Group
  • X11 forwarding for SSH must be disabled.

    &lt;VulnDiscussion&gt;As enabling X11 Forwarding on the host can permit a malicious user to secretly open another X11 connection to another remote ...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules