DOD_EXAMPLE - by Rules then LJK/Security Test

This DoD Instruction (DoDI) 8500.2 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.
DOD_EXAMPLE

by Rules then LJK/Security Test

Full Assessment (including non-automatic items)

Assessment as of

14-APR-2010 19:37:32.90

Covering Nodes

BOSTON - Completed using policy DOD_EXAMPLE

Default LJK/Security Policy

Findings Color Code
Passed
Untested
Failed

RULES FAMILY SUMMARY
DoDI 8500.2 COAS-2		Alternate Site Designation
DoDI 8500.2 COBR-1		Protection of Backup and Restoration Assets
DoDI 8500.2 CODB-2		Data Back-up Procedures
DoDI 8500.2 CODP-2		Disaster and Recovery Planning
DoDI 8500.2 COEB-1		Enclave Boundary Defense
DoDI 8500.2 COED-1		Scheduled Exercises and Drills
DoDI 8500.2 COEF-2		Identification of Essential Functions
DoDI 8500.2 COMS-2		Maintenance Support
DoDI 8500.2 COPS-2		Power Supply
DoDI 8500.2 COSP-1		Spares and Parts
DoDI 8500.2 COSW-1		Backup Copies of Critical SW
DoDI 8500.2 COTR-1		Trusted Recovery
DoDI 8500.2 DCAR-1		Procedural Review
DoDI 8500.2 DCAS-1		Acquisition Standards
DoDI 8500.2 DCBP-1		Best Security Practices
DoDI 8500.2 DCCB-2		Control Board
DoDI 8500.2 DCCS-2		Configuration Specifications
DoDI 8500.2 DCCT-1		Compliance Testing
DoDI 8500.2 DCDS-1		Dedicated IA Services
DoDI 8500.2 DCFA-1		Functional Architecture for AIS Applications
DoDI 8500.2 DCHW-1		HW Baseline
DoDI 8500.2 DCID-1		Interconnection Documentation
DoDI 8500.2 DCII-1		IA Impact Assessment
DoDI 8500.2 DCIT-1		IA for IT Services
DoDI 8500.2 DCMC-1		Mobile Code
DoDI 8500.2 DCNR-1		Non-repudiation
DoDI 8500.2 DCPA-1		Partitioning the Application
DoDI 8500.2 DCPB-1		IA Program and Budget
DoDI 8500.2 DCPD-1		Public Domain Software Controls
DoDI 8500.2 DCPP-1		Ports, Protocols, and Services
DoDI 8500.2 DCPR-1		CM Process
DoDI 8500.2 DCSD-1		IA Documentation
DoDI 8500.2 DCSL-1		System Library Management Controls
DoDI 8500.2 DCSP-1		Security Support Structure Partitioning
DoDI 8500.2 DCSQ-1		Software Quality
DoDI 8500.2 DCSR-2		Specified Robustness - Medium
DoDI 8500.2 DCSS-2		System State Changes
DoDI 8500.2 DCSW-1		SW Baseline
DoDI 8500.2 EBBD-2		Boundary Defense
DoDI 8500.2 EBCR-1		Connection Rules
DoDI 8500.2 EBPW-1		Public WAN Connection
DoDI 8500.2 EBRP-1		Remote Access for Privileged Functions
DoDI 8500.2 EBRU-1		Remote Access for User Functions
DoDI 8500.2 EBVC-1		VPN Controls
DoDI 8500.2 ECAD-1		Affiliation Display
DoDI 8500.2 ECAN-1		Access for Need-to-Know
DoDI 8500.2 ECAR-2		Audit Record Content
DoDI 8500.2 ECAT-1		Audit Trail, Monitoring, Analysis and Reporting
DoDI 8500.2 ECAT-2		Audit Trail, Monitoring, Analysis and Reporting
DoDI 8500.2 ECCD-2		Changes to Data
DoDI 8500.2 ECCR-1		Encryption for Confidentiality (Data at Rest)
DoDI 8500.2 ECCT-1		Encryption for Confidentiality (Data in Transit)
DoDI 8500.2 ECDC-1		Data Change Controls
DoDI 8500.2 ECIC-1		Interconnections among DoD Systems and Enclaves
DoDI 8500.2 ECID-1		Host Based IDS
DoDI 8500.2 ECIM-1		Instant Messaging
DoDI 8500.2 ECLO-1		Logon
DoDI 8500.2 ECLP-1		Least Privilege
DoDI 8500.2 ECML-1		Marking and Labeling
DoDI 8500.2 ECMT-1		Conformance Monitoring and Testing
DoDI 8500.2 ECND-2		Network Device Controls
DoDI 8500.2 ECNK-1		Encryption for Need-To-Know
DoDI 8500.2 ECPA-1		Privileged Account Control
DoDI 8500.2 ECPC-2		Production Code Change Controls
DoDI 8500.2 ECRC-1		Resource Control
DoDI 8500.2 ECRG-1		Audit Reduction and Report Generation
DoDI 8500.2 ECRR-1		Audit Record Retention
DoDI 8500.2 ECSC-1		Security Configuration Compliance
DoDI 8500.2 ECSD-2		Software Development Change Controls
DoDI 8500.2 ECTB-1		Audit Trail Backup
DoDI 8500.2 ECTC-1		Tempest Controls
DoDI 8500.2 ECTM-2		Transmission Integrity Controls
DoDI 8500.2 ECTP-1		Audit Trail Protection
DoDI 8500.2 ECVI-1		Voice over IP
DoDI 8500.2 ECVP-1		Virus Protection
DoDI 8500.2 ECWM-1		Warning Message
DoDI 8500.2 ECWN-1		Wireless Computing and Networking
DoDI 8500.2 IAAC-1		Account Control
DoDI 8500.2 IAGA-1		Group Identification and Authentication
DoDI 8500.2 IAIA-1		Individual Identification and Authentication
DoDI 8500.2 IAKM-2		Key Management
DoDI 8500.2 IATS-2		Token and Certificate Standards
DoDI 8500.2 PECF-1		Access to Computing Facilities
DoDI 8500.2 PECS-1		Clearing and Sanitizing
DoDI 8500.2 PEDI-1		Data Interception
DoDI 8500.2 PEEL-2		Emergency Lighting
DoDI 8500.2 PEFD-2		Fire Detection
DoDI 8500.2 PEFI-1		Fire Inspection
DoDI 8500.2 PEFS-2		Fire Suppression System
DoDI 8500.2 PEHC-2		Humidity Controls
DoDI 8500.2 PEMS-1		Master Power Switch
DoDI 8500.2 PEPF-1		Physical Protection of Facilities
DoDI 8500.2 PEPS-1		Physical Security Testing
DoDI 8500.2 PESL-1		Screen Lock
DoDI 8500.2 PESP-1		Workplace Security Procedures
DoDI 8500.2 PESS-1		Storage
DoDI 8500.2 PETC-2		Temperature Controls
DoDI 8500.2 PETN-1		Environmental Control Training
DoDI 8500.2 PEVC-1		Visitor Control to Computing Facilities
DoDI 8500.2 PEVR-1		Voltage Regulators
DoDI 8500.2 PRAS-1		Access to Information
DoDI 8500.2 PRMP-1		Maintenance Personnel
DoDI 8500.2 PRNK-1		Access to Need-to-Know Information
DoDI 8500.2 PRRB-1		Security Rules of Behavior or Acceptable Use Policy
DoDI 8500.2 PRTN-1		Information Assurance Training
DoDI 8500.2 VIIR-1		Incident Response Planning
DoDI 8500.2 VIVM-1		Vulnerability Management

Security Object Coverage	Number Present	Number Assessed	Percent Assessed
Capabilities	unknown	0	0
Common Event Clusters	unknown	0	0
Devices	72	72	100
Disks mounted	1	1	100
Files on disks mounted	22496	22496	100
Group Global Sections	unknown	0	0
ICC Associations	unknown	0	0
Logical Name Tables	unknown	0	0
Queue Jobs	6	6	100
Queue Managers	1	1	100
Queues	9	9	100
Resource Domains	unknown	0	0
Security Classes	unknown	0	0
System Global Sections	unknown	0	0
Terminals	16	16	100
Usernames	79	79	100
VMS V5 proxy entries	1	1	100
VMS V5 proxy records	1	1	100

This DoD Instruction (DoDI) 8500.2 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.