II - Mission Support Public
Rules and Groups employed by this XCCDF Profile
-
SRG-OS-000032-GPOS-00013
Group -
The Photon operating system must have the sshd SyslogFacility set to "authpriv".
Automated monitoring of remote access sessions allows organizations to detect cyberattacks and ensure ongoing compliance with remote access policies by auditing connection activities.Rule Medium Severity -
SRG-OS-000032-GPOS-00013
Group -
The Photon operating system must have sshd authentication logging enabled.
Automated monitoring of remote access sessions allows organizations to detect cyberattacks and ensure ongoing compliance with remote access policies by auditing connection activities. Shipping ssh...Rule Medium Severity -
SRG-OS-000032-GPOS-00013
Group -
The Photon operating system must have the sshd LogLevel set to "INFO".
Automated monitoring of remote access sessions allows organizations to detect cyberattacks and ensure ongoing compliance with remote access policies by auditing connection activities. The INFO Log...Rule Medium Severity -
SRG-OS-000033-GPOS-00014
Group -
The Photon operating system must configure sshd to use approved encryption algorithms.
Without confidentiality protection mechanisms, unauthorized individuals may gain access to sensitive information via a remote access session. OpenSSH on the Photon operating system is compiled wit...Rule Low Severity -
SRG-OS-000037-GPOS-00015
Group -
The Photon operating system must configure auditd to log to disk.
Without establishing what type of events occurred, it would be difficult to establish, correlate, and investigate the events leading up to an outage or attack. Audit record content must be shipped...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.