III - Administrative Public

Rules and Groups employed by this XCCDF Profile

SRG-OS-000064-GPOS-00033

Group

Show

Successful/unsuccessful uses of the truncate system call in TOSS must generate an audit record.

Without generating audit records that are specific to the security and mission needs of the organization, it would be difficult to establish, correlate, and investigate the events relating to an in...

Rule Medium Severity

Show

SRG-OS-000256-GPOS-00097

Group

Show

TOSS audit tools must be owned by "root".

Protecting audit information also includes identifying and protecting the tools used to view and manipulate log data. Therefore, protecting audit tools is necessary to prevent unauthorized operatio...

Rule Medium Severity

Show

SRG-OS-000278-GPOS-00108

Group

Show

TOSS must use cryptographic mechanisms to protect the integrity of audit tools.

Protecting the integrity of the tools used for auditing purposes is a critical step toward ensuring the integrity of audit information. Audit information includes all information (e.g., audit recor...

Rule Medium Severity

Show

SRG-OS-000303-GPOS-00120

Group

Show

TOSS must generate audit records for all account creations, modifications, disabling, and termination events that affect "/etc/group".

Once an attacker establishes access to a system, the attacker often attempts to create a persistent method of reestablishing access. One way to accomplish this is for the attacker to enable a new o...

Rule Medium Severity

Show

SRG-OS-000303-GPOS-00120

Group

Show

TOSS must generate audit records for all account creations, modifications, disabling, and termination events that affect "/etc/gshadow".

Rule Medium Severity

Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity

Modules