III - Administrative Sensitive

Rules and Groups employed by this XCCDF Profile

SRG-OS-000433

Group

Show

The VMM must implement address space layout randomization to protect its memory from unauthorized code execution.

<VulnDiscussion>Some adversaries launch attacks with the intent of executing code in non-executable regions of memory or in memory locations ...

Rule Medium Severity

Show

SRG-OS-000437

Group

Show

The VMM must remove all software components after updated versions have been installed.

<VulnDiscussion>Previous versions of software components that are not removed from the VMM after updates have been installed may be exploited...

Rule Medium Severity

Show

SRG-OS-000445

Group

Show

The VMM must verify correct operation of all security functions.

<VulnDiscussion>Without verification of the security functions, security functions may not operate correctly and the failure may go unnoticed...

Rule Medium Severity

Show

SRG-OS-000446

Group

Show

The VMM must perform verification of the correct operation of security functions: upon system startup and/or restart; upon command by a user with privileged access; and/or every 30 days.

<VulnDiscussion>Without verification of the security functions, security functions may not operate correctly and the failure may go unnoticed...

Rule Medium Severity

Show

SRG-OS-000447

Group

Show

The VMM must shut down, restart, and/or notify the system administrator when anomalies in the operation of any security functions are discovered.

<VulnDiscussion>If anomalies are not acted upon, security functions may fail to secure the system. Security function is defined as the hard...

Rule Medium Severity

Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity

Modules