I - Mission Critical Public
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000516-WSR-000174
Group -
The vCenter VAMI service must implement HTTP Strict Transport Security (HSTS).
HSTS instructs web browsers to only use secure connections for all future requests when communicating with a website. Doing so helps prevent SSL protocol attacks, SSL stripping, cookie hijacking, a...Rule Medium Severity -
SRG-APP-000516-WSR-000174
Group -
The vCenter VAMI service must implement prevent rendering inside a frame or iframe on another site.
Clickjacking, also known as a “UI redress attack”, is when an attacker uses multiple transparent or opaque layers to trick a user into clicking on a button or link on another page when they were in...Rule Medium Severity -
SRG-APP-000516-WSR-000174
Group -
The vCenter VAMI service must protect against MIME sniffing.
MIME sniffing was, and still is, a technique used by some web browsers to examine the content of a particular asset. This is done for the purpose of determining an asset's file format. This techniq...Rule Medium Severity -
SRG-APP-000516-WSR-000174
Group -
The vCenter VAMI service must enable Content Security Policy.
A Content Security Policy (CSP) requires careful tuning and precise definition of the policy. If enabled, CSP has significant impact on the way browsers render pages (e.g., inline JavaScript is dis...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules