III - Administrative Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
The Photon operating system must enforce password complexity on the root account.
<VulnDiscussion>Password complexity rules must apply to all accounts on the system, including root. Without specifying the "enforce_for_root ...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
The Photon operating system must protect all boot configuration files from unauthorized modification.
<VulnDiscussion>Boot configuration files control how the system boots, including single-user mode, auditing, log levels, etc. Improper or mal...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
The Photon operating system must protect sshd configuration from unauthorized access.
<VulnDiscussion>The "sshd_config" file contains all the configuration items for sshd. Incorrect or malicious configuration of sshd can allow ...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
The Photon operating system must protect all "sysctl" configuration files from unauthorized access.
<VulnDiscussion>The "sysctl" configuration file specifies values for kernel parameters to be set on boot. Incorrect or malicious configuratio...Rule Medium Severity -
SRG-OS-000480-GPOS-00228
<GroupDescription></GroupDescription>Group -
The Photon operating system must set the "umask" parameter correctly.
<VulnDiscussion>The "umask" value influences the permissions assigned to files when they are created. The "umask" setting in "login.defs" con...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.