III - Administrative Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-OS-000076-GPOS-00044
<GroupDescription></GroupDescription>Group -
SLEM 5 must employ user passwords with a maximum lifetime of 60 days.
<VulnDiscussion>Any password, no matter how complex, can eventually be cracked. Therefore, passwords need to be changed periodically. If SLEM...Rule Medium Severity -
SRG-OS-000077-GPOS-00045
<GroupDescription></GroupDescription>Group -
SLEM 5 must employ a password history file.
<VulnDiscussion>Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute...Rule Medium Severity -
SRG-OS-000073-GPOS-00041
<GroupDescription></GroupDescription>Group -
SLEM 5 must employ FIPS 140-2/140-3-approved cryptographic hashing algorithms for system authentication.
<VulnDiscussion>The system must use a strong hashing algorithm to store the password. The system must use a sufficient number of hashing roun...Rule High Severity -
SRG-OS-000073-GPOS-00041
<GroupDescription></GroupDescription>Group -
SLEM 5 shadow password suite must be configured to use a sufficient number of hashing rounds.
<VulnDiscussion>The system must use a strong hashing algorithm to store the password. The system must use a sufficient number of hashing roun...Rule High Severity -
SRG-OS-000120-GPOS-00061
<GroupDescription></GroupDescription>Group -
SLEM 5 must employ FIPS 140-2/140-3 approved cryptographic hashing algorithm for system authentication (login.defs).
<VulnDiscussion>Unapproved mechanisms that are used for authentication to the cryptographic module are not verified and therefore cannot be r...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.