aix:powersc
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
aix:powersc [2025/08/21 14:10] manu [PowerSC standalone command line] |
aix:powersc [2025/08/21 17:43] (current) manu [Check CIS policy] |
||
|---|---|---|---|
| Line 205: | Line 205: | ||
| Consider the following recommendations, as specified in https://www.cisecurity.org/benchmark/ibm_aix/: | Consider the following recommendations, as specified in https://www.cisecurity.org/benchmark/ibm_aix/: | ||
| * Level 1 benchmark recommendations are intended to: | * Level 1 benchmark recommendations are intended to: | ||
| - | Be practical and prudent | + | <code> |
| - | Provide a clear security benefit | + | Be practical and prudent |
| - | Do not inhibit the utility of the technology beyond acceptable means | + | Provide a clear security benefit |
| + | Do not inhibit the utility of the technology beyond acceptable means | ||
| + | </code> | ||
| * Level 2 benchmark recommendations exhibit one or more of the following characteristics: | * Level 2 benchmark recommendations exhibit one or more of the following characteristics: | ||
| - | Are intended for environments or use cases where security is paramount | + | <code> |
| - | Acts as defense in depth measure | + | Are intended for environments or use cases where security is paramount |
| - | May negatively inhibit the utility or performance of the technology | + | Acts as defense in depth measure |
| + | May negatively inhibit the utility or performance of the technology | ||
| + | </code> | ||
| + | |||
| + | **<color #ed1c24>Best practice for AIX is to use CISv3_Lev1.xml</color>**, it combine the best practice for AIX 7.2 and 7.3 | ||
| ==== Apply the accurate policy ==== | ==== Apply the accurate policy ==== | ||
| Line 219: | Line 225: | ||
| # pscxpert -f /etc/security/aixpert/custom/CISv2_Lev1.xml CIS Security Benchmark for AIX 7.2 | # pscxpert -f /etc/security/aixpert/custom/CISv2_Lev1.xml CIS Security Benchmark for AIX 7.2 | ||
| # pscxpert -f /etc/security/aixpert/custom/CISv2_Lev2.xml CIS Security Benchmark for AIX 7.2 | # pscxpert -f /etc/security/aixpert/custom/CISv2_Lev2.xml CIS Security Benchmark for AIX 7.2 | ||
| + | # pscxpert -f /etc/security/aixpert/custom/CISv3_Lev1.xml CIS Security Benchmark for AIX 7 | ||
| + | # pscxpert -f /etc/security/aixpert/custom/CISv3_Lev2.xml CIS Security Benchmark for AIX 7 | ||
| # pscxpert -f /etc/security/aixpert/custom/GDPRv1.xml General Data Protection Regulation (GDPR) | # pscxpert -f /etc/security/aixpert/custom/GDPRv1.xml General Data Protection Regulation (GDPR) | ||
| </cli> | </cli> | ||
| Line 263: | Line 271: | ||
| Compare current settings to CISv2 level 1 | Compare current settings to CISv2 level 1 | ||
| <cli prompt='#'> | <cli prompt='#'> | ||
| - | root@nim ~# pscxpert -c -P /etc/security/aixpert/custom/CISv2_Lev1.xml -p -r | + | root@nim ~# pscxpert -c -P /etc/security/aixpert/custom/CISv3_Lev1.xml -p -r |
| Processing cisv2_sysintegrity : failed. | Processing cisv2_sysintegrity : failed. | ||
| Processing cisv2_brokenlinks : failed. | Processing cisv2_brokenlinks : failed. | ||
aix/powersc.1755778218.txt.gz · Last modified: 2025/08/21 14:10 by manu
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
