I - Mission Critical Sensitive
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000275
<GroupDescription></GroupDescription>Group -
The DNS server implementation must be configured to generate audit records for failed security verification tests so that the ISSO and ISSM can be notified of the failures.
<VulnDiscussion>Security function is defined as the hardware, software, and/or firmware of the information system responsible for enforcing t...Rule Medium Severity -
SRG-APP-000347
<GroupDescription></GroupDescription>Group -
The DNS server implementation must strongly bind the identity of the DNS server with the DNS information.
<VulnDiscussion>Weakly bound credentials can be modified without invalidating the credential; therefore, non-repudiation can be violated. Th...Rule Medium Severity -
SRG-APP-000348
<GroupDescription></GroupDescription>Group -
The DNS server implementation must provide the means for authorized individuals to determine the identity of the source of the DNS server-provided information.
<VulnDiscussion>Without a means for identifying the individual that produced the information, the information cannot be relied upon. Identify...Rule Medium Severity -
SRG-APP-000349
<GroupDescription></GroupDescription>Group -
The DNS server implementation must validate the binding of the other DNS servers identity to the DNS information for a server-to-server transaction (e.g., zone transfer).
<VulnDiscussion>Validation of the binding of the information prevents the modification of information between production and review. The vali...Rule Medium Severity -
SRG-APP-000350
<GroupDescription></GroupDescription>Group -
In the event of an error when validating the binding of another DNS servers identity to the DNS information, the DNS server implementation must log the event and send notification to the DNS administrator.
<VulnDiscussion>Failing to act on the validation errors may result in the use of invalid, corrupted, or compromised information. The validati...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.