II - Mission Support Public
Rules and Groups employed by this XCCDF Profile
-
The Palo Alto Networks security platform, if used as a TLS gateway/decryption point or VPN concentrator, must control remote access methods (inspect and filter traffic).
<VulnDiscussion>Remote access devices, such as those providing remote access to network devices and information systems, which lack automated...Rule Medium Severity -
SRG-NET-000314-ALG-000013
<GroupDescription></GroupDescription>Group -
The Palo Alto Networks security, if used as a TLS gateway/decryption point or VPN concentrator, must provide the capability to immediately disconnect or disable remote access to the information system.
<VulnDiscussion>Without the ability to immediately disconnect or disable remote access, an attack or other compromise taking place would not ...Rule Medium Severity -
SRG-NET-000318-ALG-000014
<GroupDescription></GroupDescription>Group -
To protect against data mining, the Palo Alto Networks security platform must detect and prevent SQL and other code injection attacks launched against data storage objects, including, at a minimum, databases, database records, queries, and fields.
<VulnDiscussion>Data mining is the analysis of large quantities of data to discover patterns and is used in intelligence gathering. Failure t...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.