[BESAdmin-Announcements] SCM Content Update for DISA & USGCB Checklists

Announcements for BES Administrators besadmin-announcements at bigmail.bigfix.com
Wed Jun 27 16:12:43 PDT 2012 

IBM Tivoli Endpoint Manager for Security and Compliance 

Security Configuration Management (SCM)

The Security and Compliance team at IBM has updated the content within the 
DISA and USGCB Checklists for Windows Operating Systems.

1) Additional DISA Vulnerability IDs have been added:

1.      V-1077
2.      V-1089
3.      V-1095
4.      V-1102
5.      V-1103
6.      V-1122
7.      V-1126
8.      V-1130
9.      V-14250
10.     V-14267
11.     V-14268
12.     V-14269
13.     V-14270
14.     V-15705
15.     V-15706
16.     V-15727
17.     V-16021
18.     V-16048
19.     V-18010
20.     V-3337
21.     V-3481
22.     V-3487


*Affected Sites*
DISA STIG Checklist for Windows 7: site version 9

2) The Relevance has been updated to enhance the following checks:

CCE-9067-0      Interactive logon: Smart card removal behavior
CCE-9308-8      Account Lockout Duration 
CCE-8591-0      MSS: (ScreenSaverGracePeriod) The time in seconds before 
the screen saver grace period expires (0 recommended)
CCE-8945-8      Recovery Console: Allow Floppy Copy and Access to All 
Drives and All Folders
CCE-8807-0      Recovery Console: Allow Automatic Administrative Logon
CCE-9342-7      MSS: (AutoAdminLogon) Enable Automatic Logon (Not 
Recommended)
CCE-8818-7      Interactive logon: Require Domain Controller 
authentication to unlock workstation
CCE-9440-9      Devices: Restrict floppy access to locally logged-on user 
only
CCE-9304-7      Devices: Restrict CD-ROM access to locally logged-on user 
only
CCE-9307-0      Interactive logon: Prompt user to change password before 
expiration
CCE-8487-1      Interactive logon: Number of previous logons to cache (in 
case domain controller is not available)

*Affected Sites*
USGCB Checklist for Internet Explorer 7: site version 4
USGCB Checklist for Internet Explorer 8: sites version 11
USGCB Checklist for Windows 7: site version 8
USGCB Checklist for Windows 7 Firewall: site version 10
USGCB Checklist for Windows 7 Energy: site version 11
USGCB Checklist for Windows Vista: site version 3
USGCB Checklist for Windows Vista Firewall: site version 3
USGCB Checklist for Windows Vista Energy: site version 3
USGCB Checklist for Windows XP: site version 3
USGCB Checklist for Windows XP Firewall: site version 3

Please contact IBM Tivoli Endpoint Manager Technical Support if you have 
any questions regarding this update.

We hope you find this latest release of SCM content useful and effective. 
Thank you!

  -- The Tivoli Endpoint Manager for Security and Compliance product team
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20120627/330b16c2/attachment.html

More information about the Besadmin-announcements mailing list