Skip to content

III - Administrative Classified

Rules and Groups employed by this XCCDF Profile

  • ZWAS0020

    <GroupDescription></GroupDescription>
    Group
  • HFS objects for the WebSphere Application Server are not protected in accordance with the proper security requirements.

    &lt;VulnDiscussion&gt;HFS directories and files provide the configuration, operational, and executable properties of the WebSphere Application Serv...
    Rule Medium Severity
  • ZWAS0030

    <GroupDescription></GroupDescription>
    Group
  • The CBIND Resource Class for the WebSphere Application Server is not configured in accordance with security requirements.

    &lt;VulnDiscussion&gt;SAF resources provide the ability to control access to functions and services of the WebSphere Application Server (WAS) envir...
    Rule Medium Severity
  • ZWAS0040

    <GroupDescription></GroupDescription>
    Group
  • Vendor-supplied user accounts for the WebSphere Application Server must be defined to the ACP.

    &lt;VulnDiscussion&gt;Vendor-supplied user accounts are defined to the ACP with factory-set passwords during the installation of the WebSphere Appl...
    Rule High Severity
  • ZWAS0050

    <GroupDescription></GroupDescription>
    Group
  • The WebSphere Application Server plug-in is not specified in accordance with the proper security requirements.

    &lt;VulnDiscussion&gt;Requests processed by the WebSphere Application Server (WAS) are dependent on directives configured in the HTTP server httpd....
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules