Skip to content
ATO Pathways
  Log In

No profile (default benchmark)

Rules and Groups employed by this XCCDF Profile

  • SRG-APP-000246

    <GroupDescription></GroupDescription>
    Group
    Show

  • The DNS server implementation must restrict the ability of individuals to use the DNS server to launch Denial of Service (DoS) attacks against other information systems.

    &lt;VulnDiscussion&gt;A DoS is a condition where a resource is not available for legitimate users. When this occurs, the organization either cannot...
    Rule Medium Severity
    Show

  • SRG-APP-000247

    <GroupDescription></GroupDescription>
    Group
    Show

  • The DNS server implementation must manage excess capacity, bandwidth, or other redundancy to limit the effects of information flooding types of Denial of Service (DoS) attacks.

    &lt;VulnDiscussion&gt;A DoS is a condition when a resource is not available for legitimate users. When this occurs, the organization either cannot ...
    Rule Medium Severity
    Show

  • SRG-APP-000251

    <GroupDescription></GroupDescription>
    Group
    Show

  • The DNS server implementation must check the validity of all data inputs except those specifically identified by the organization.

    &lt;VulnDiscussion&gt;Invalid user input occurs when a user inserts data or characters into an application's data entry fields and the application ...
    Rule Medium Severity
    Show

  • SRG-APP-000268

    <GroupDescription></GroupDescription>
    Group
    Show

  • The DNS server implementation must, when a component failure is detected, activate a notification to the system administrator.

    &lt;VulnDiscussion&gt;Predictable failure prevention requires organizational planning to address system failure issues. If components key to mainta...
    Rule Medium Severity
    Show

  • SRG-APP-000275

    <GroupDescription></GroupDescription>
    Group
    Show

  • The DNS server implementation must be configured to generate audit records for failed security verification tests so that the ISSO and ISSM can be notified of the failures.

    &lt;VulnDiscussion&gt;Security function is defined as the hardware, software, and/or firmware of the information system responsible for enforcing t...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules