Skip to content

I - Mission Critical Sensitive

Rules and Groups employed by this XCCDF Profile

  • SRG-OS-000480-GPOS-00227

    <GroupDescription></GroupDescription>
    Group
  • SLEM 5 SSH daemon private host key files must have mode 640 or less permissive.

    &lt;VulnDiscussion&gt;If an unauthorized user obtains the private SSH host key file, the host could be impersonated.&lt;/VulnDiscussion&gt;&lt;Fals...
    Rule Medium Severity
  • SRG-OS-000259-GPOS-00100

    <GroupDescription></GroupDescription>
    Group
  • SLEM 5 library files must be owned by root.

    &lt;VulnDiscussion&gt;If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...
    Rule Medium Severity
  • SRG-OS-000259-GPOS-00100

    <GroupDescription></GroupDescription>
    Group
  • SLEM 5 library files must be group-owned by root.

    &lt;VulnDiscussion&gt;If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...
    Rule Medium Severity
  • SRG-OS-000259-GPOS-00100

    <GroupDescription></GroupDescription>
    Group
  • SLEM 5 library directories must be owned by root.

    &lt;VulnDiscussion&gt;If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...
    Rule Medium Severity
  • SRG-OS-000259-GPOS-00100

    <GroupDescription></GroupDescription>
    Group
  • SLEM 5 library directories must be group-owned by root.

    &lt;VulnDiscussion&gt;If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...
    Rule Medium Severity
  • SRG-OS-000259-GPOS-00100

    <GroupDescription></GroupDescription>
    Group
  • SLEM 5 must have system commands owned by root.

    &lt;VulnDiscussion&gt;If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...
    Rule Medium Severity
  • SRG-OS-000259-GPOS-00100

    <GroupDescription></GroupDescription>
    Group
  • SLEM 5 must have system commands group-owned by root or a system account.

    &lt;VulnDiscussion&gt;If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...
    Rule Medium Severity
  • SRG-OS-000259-GPOS-00100

    <GroupDescription></GroupDescription>
    Group
  • SLEM 5 must have directories that contain system commands owned by root.

    &lt;VulnDiscussion&gt;If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...
    Rule Medium Severity
  • SRG-OS-000259-GPOS-00100

    <GroupDescription></GroupDescription>
    Group
  • SLEM 5 must have directories that contain system commands group-owned by root.

    &lt;VulnDiscussion&gt;If SLEM 5 were to allow any user to make changes to software libraries, then those changes might be implemented without under...
    Rule Medium Severity
  • SRG-OS-000480-GPOS-00227

    <GroupDescription></GroupDescription>
    Group
  • All SLEM 5 files and directories must have a valid owner.

    &lt;VulnDiscussion&gt;Unowned files and directories may be unintentionally inherited if a user is assigned the same User Identifier (UID) as the UI...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules