II - Mission Support Public
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000266-DB-000162
Group -
VMware Postgres must provide nonprivileged users with minimal error information.
Any database management system (DBMS) or associated application providing too much information in error messages on the screen or printout risks compromising the data and security of the system. Th...Rule Medium Severity -
SRG-APP-000356-DB-000314
Group -
VMware Postgres must have log collection enabled.
Without the ability to centrally manage the content captured in the audit records, identification, troubleshooting, and correlation of suspicious behavior would be difficult and could lead to a del...Rule Medium Severity -
SRG-APP-000359-DB-000319
Group -
VMware Postgres must be configured to log to "stderr".
Without the ability to centrally manage the content captured in the audit records, identification, troubleshooting, and correlation of suspicious behavior would be difficult and could lead to a del...Rule Medium Severity -
SRG-APP-000359-DB-000319
Group -
"Rsyslog" must be configured to monitor VMware Postgres logs.
For performance reasons, "rsyslog" file monitoring is preferred over configuring VMware Postgres to send events to a "syslog" facility. Without ensuring that logs are created, that "rsyslog" config...Rule Medium Severity -
SRG-APP-000374-DB-000322
Group -
VMware Postgres must use Coordinated Universal Time (UTC) for log timestamps.
If time stamps are not consistently applied and there is no common time reference, it is difficult to perform forensic analysis. Time stamps generated by VMware Postgres must include date and time ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules