II - Mission Support Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-OS-000051-GPOS-00024
Group -
The NixOS audit records must be off-loaded onto a different system or storage media from the system being audited.
Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common process in information systems with limited audit storage capacity. Ni...Rule Medium Severity -
SRG-OS-000051-GPOS-00024
Group -
NixOS must authenticate the remote logging server for off-loading audit logs.
Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common process in information systems with limited audit storage capacity. Ni...Rule Medium Severity -
SRG-OS-000057-GPOS-00027
Group -
NixOS audit daemon must generate logs that are group-owned by root.
Only authorized personnel should be aware of errors and the details of the errors. Error messages are an indicator of an organization's operational state or can identify the NixOS system or platfor...Rule Medium Severity -
SRG-OS-000057-GPOS-00027
Group -
NixOS audit directory and logs must be owned by root to prevent unauthorized read access.
Only authorized personnel should be aware of errors and the details of the errors. Error messages are an indicator of an organization's operational state or can identify the NixOS system or platfor...Rule Medium Severity -
SRG-OS-000057-GPOS-00027
Group -
NixOS audit directory and logs must be group-owned by root to prevent unauthorized read access.
Only authorized personnel should be aware of errors and the details of the errors. Error messages are an indicator of an organization's operational state or can identify the NixOS system or platfor...Rule Medium Severity -
SRG-OS-000057-GPOS-00027
Group -
NixOS audit log directory must have a mode of 0700 or less permissive.
Unauthorized disclosure of audit records can reveal system and configuration data to attackers, thus compromising its confidentiality. Audit information includes all information (e.g., audit recor...Rule Medium Severity -
SRG-OS-000057-GPOS-00027
Group -
NixOS audit logs must have a mode of 0600 or less permissive.
Only authorized personnel should be aware of errors and the details of the errors. Error messages are an indicator of an organization's operational state or can identify the NixOS system or platfor...Rule Medium Severity -
SRG-OS-000057-GPOS-00027
Group -
NixOS syslog directory and logs must be owned by root to prevent unauthorized read access.
Only authorized personnel should be aware of errors and the details of the errors. Error messages are an indicator of an organization's operational state or can identify the NixOS system or platfor...Rule Medium Severity -
SRG-OS-000057-GPOS-00027
Group -
NixOS syslog directory and logs must be group-owned by root to prevent unauthorized read access.
Only authorized personnel should be aware of errors and the details of the errors. Error messages are an indicator of an organization's operational state or can identify the NixOS system or platfor...Rule Medium Severity -
SRG-OS-000057-GPOS-00027
Group -
NixOS syslog log directory must have a mode of 0750 or less permissive.
Unauthorized disclosure of audit records can reveal system and configuration data to attackers, thus compromising its confidentiality. Audit information includes all information (e.g., audit recor...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.