Skip to content

Commit 6526c5d

Browse files
committed
Update Simple access control
1 parent 802bb91 commit 6526c5d

File tree

1 file changed

+4
-2
lines changed

1 file changed

+4
-2
lines changed

src/assets/YAML/default/Implementation/InfrastructureHardening.yaml

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -336,10 +336,12 @@ Implementation:
336336
comments: ""
337337
Simple access control for systems:
338338
uuid: 82e499d1-f463-4a4b-be90-68812a874af6
339-
risk: Attackers a gaining access to internal systems and application interfaces
339+
description: Basic access control for internal systems is implemented.
340+
risk: Attackers a gaining access to other internal systems and application interfaces is one breach occurs.
340341
measure: All internal systems are using simple authentication
341342
assessment: |
342-
- Demonstrate that every team member has appropriate access (least privilege).
343+
- Presenting the documentation of the review of all user privileges yearly.
344+
- Presenting the admin count and validating that there are less than 5 admins per system.
343345
difficultyOfImplementation:
344346
knowledge: 3
345347
time: 3

0 commit comments

Comments
 (0)