💼 CM-7 (1) PERIODIC REVIEW

Contextual name: 💼 CM-7 (1) PERIODIC REVIEW
ID: /frameworks/nist-sp-800-53-r4/cm/07/01
Located in: 💼 CM-7 LEAST FUNCTIONALITY

Description

The organization: CM-7 (1)(a) Reviews the information system [Assignment: organization-defined frequency] to identify unnecessary and/or nonsecure functions, ports, protocols, and services; and CM-7 (1)(b) Disables [Assignment: organization-defined functions, ports, protocols, and services within the information system deemed to be unnecessary and/or nonsecure].

Similar

Internal
- ID: dec-c-394a8cde

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Policies (4)

Policy	Logic Count	Flags
📝 AWS EC2 Security Group allows public IPv4 (0.0.0.0/0) access to admin ports 🟢	1	🟢 x6
📝 AWS EC2 Security Group allows public IPv6 (::/0) access to admin ports 🟢	1	🟢 x6
📝 AWS S3 Bucket is not configured to block public access 🟢	1	🟢 x6
📝 AWS S3 Bucket Policy is not set to deny HTTP requests 🟢	1	🟢 x6

Internal Rules

Rule	Policies	Flags
✉️ dec-x-bcae85fb	2
✉️ dec-x-d5fbfc40	1
✉️ dec-x-ec547a7c	1

Description​

Similar​

Sub Sections​

Policies (4)​

Internal Rules​

Description

Similar

Sub Sections

Policies (4)

Internal Rules