exit; } $_SESSION['directive'] = serialize($direct); if ($XML_FILE != '/etc/ossim/server/directives.xml') { release_file($XML_FILE); } if (!empty($directive_id)) { $direct->printDirective($level, $directive_xml); } ?> </table> <?php $directive_name = Plugin_sid::get_name_by_idsid($conn, "1505", $directive_id); list($properties, $num_properties) = Compliance::get_category($conn, "AND category.sid={$directive_id}"); $iso_groups = ISO27001::get_groups($conn, "WHERE SIDSS_Ref LIKE '{$directive_id}' OR SIDSS_Ref LIKE '{$directive_id},%' OR SIDSS_Ref LIKE '%,{$directive_id}' OR SIDSS_Ref LIKE '%,{$directive_id},%'"); $pci_groups = PCI::get_groups($conn, "WHERE SIDSS_ref LIKE '{$directive_id}' OR SIDSS_ref LIKE '{$directive_id},%' OR SIDSS_ref LIKE '%,{$directive_id}' OR SIDSS_ref LIKE '%,{$directive_id},%'"); list($alarms, $num_alarms) = Alarm::get_list3($conn, "", "", 0, "", null, null, null, null, "", $directive_id); $kdocs = Repository::get_linked_by_directive($conn, $directive_id); ?> <table class="transparent" height="100%" width="100%"> <tr> <td class="nobborder" valign="top"> <table height="100%" width="100%"> <tr><th colspan="2" height="15"><?php echo _("Properties"); ?> </th></tr> <?php if (count($properties) < 1) { ?> <tr><td class="nobborder" style="color:gray;padding:10px"><i><?php
require_once 'ossim_conf.inc'; $db = new ossim_db(); $conn = $db->connect(); $table = GET('table'); $ref = GET('ref'); $toggle = GET('toggle'); ossim_valid($table, OSS_ALPHA, OSS_SCORE, OSS_NULLABLE, 'illegal:' . _("Table value")); ossim_valid($ref, OSS_ALPHA, OSS_PUNC, OSS_NULLABLE, 'illegal:' . _("Ref value")); ossim_valid($toggle, OSS_ALPHA, OSS_PUNC, OSS_NULLABLE, 'illegal:' . _("toggle")); if (ossim_error()) { die(ossim_error()); } if ($table != "" && $ref != "") { PCI::update_attr($conn, $table, $ref); } $groups = PCI::get_groups($conn); $sections = array("R01 FW Config" => "Requirement 1: Install and maintain a firewall configuration to protect cardholder data", "R02 Vendor default" => "Requirement 2: Do not use vendor-supplied defaults for system passwords and other security parameters", "R03 Stored cardholder" => "Requirement 3: Protect stored cardholder data", "R04 Data encryption" => "Requirement 4: Encrypt transmission of cardholder data across open, public networks", "R05 Antivirus" => "Requirement 5: Use and regularly update anti-virus software or programs", "R06 System app" => "Requirement 6: Develop and maintain secure systems and applications", "R07 Access control" => "Requirement 7: Restrict access to cardholder data by business need to knows", "R08 UniqueID" => "Requirement 8: Assign a unique ID to each person with computer access", "R09 Physical Access" => "Requirement 9: Restrict physical access to cardholder data", "R10 Monitoring" => "Requirement 10: Track and monitor all access to network resources and cardholder data", "R11 Security test" => "Requirement 11: Regularly test security systems and processes", "R12 IS Policy" => "Requirement 12: Maintain a policy that addresses information security for all personnel"); ?> <html> <head> <title> <?php echo gettext("OSSIM Framework"); ?> - Compliance </title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/> <META HTTP-EQUIV="Pragma" CONTENT="no-cache"> <link rel="stylesheet" type="text/css" href="../style/style.css"/> <link rel="stylesheet" type="text/css" href="../style/greybox.css"/> <script type="text/javascript" src="../js/jquery-1.3.2.min.js"></script> <script type="text/javascript" src="../js/jquery.simpletip.js"></script> <script type="text/javascript" src="../js/greybox.js"></script>
* Class and Function List: * Function list: * Classes list: */ require_once 'classes/Session.inc'; Session::logcheck("MenuIntelligence", "ComplianceMapping"); require_once 'classes/Security.inc'; require_once 'classes/Compliance.inc'; require_once 'classes/Plugin_sid.inc'; require_once 'ossim_db.inc'; require_once 'ossim_conf.inc'; $db = new ossim_db(); $conn = $db->connect(); $ref = explode("_", GET('ref')); $is_pci = GET('pci') != "" ? 1 : 0; $groups = $is_pci ? PCI::get_groups($conn) : ISO27001::get_groups($conn); $sids = $groups[$ref[0]]['subgroups'][$ref[1]]['SIDSS_Ref']; ossim_valid($sids, OSS_DIGIT, ',', 'illegal:' . _("sids")); if (ossim_error()) { die(ossim_error()); } $plugin_list = Plugin_sid::get_list($conn, "WHERE plugin_id = 1505 AND sid in ({$sids})"); if (count($plugin_list) > 0) { ?> <table width="100%" align="center"> <?php foreach ($plugin_list as $p) { ?> <tr><td><?php echo $p->get_name(); ?>