Detections
Analytics

CIS IBM AIX 7.1 L1 v1.1.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS IBM AIX 7.1 L1 v1.1.0

Updated: 9/23/2022

Authority: Operating Systems and Applications

Plugin: Unix

Revision: 1.41

Estimated Item Count: 121

Audit Items

DescriptionCategories
3.1.1 /etc/security/user - mindiff
3.1.2 /etc/security/user - minage
3.1.3 /etc/security/user - maxage
3.1.4 /etc/security/user - minlen
3.1.5 /etc/security/user - minalpha
3.1.6 /etc/security/user - minother
3.1.7 /etc/security/user - maxrepeats
3.1.8 /etc/security/user - histexpire
3.1.9 /etc/security/user - histsize
3.1.10 /etc/security/user - maxexpired
3.1.11 /etc/security/user - minloweralpha
3.1.12 /etc/security/user - minupperalpha
3.1.13 /etc/security/user - mindigit
3.1.14 /etc/security/user - minspecialchar
3.1.15 /etc/security/login.cfg - pwd_algorithm
3.2.2 /etc/security/login.cfg - logininterval
3.2.3 /etc/security/login.cfg - logindisable
3.2.4 /etc/security/login.cfg - loginreenable
3.2.5 /etc/security/login.cfg - logintimeout
3.2.6 /etc/security/login.cfg - logindelay
3.2.7 /etc/security/user - loginretries
3.2.8 /etc/security/user - rlogin
3.2.9 /etc/security/user - su
3.2.9 /etc/security/user - sugroups
3.3.24 /etc/inetd.conf - telnet
3.3.25 /etc/inetd.conf - exec
3.3.26 /etc/inetd.conf - daytime
3.3.27 /etc/inetd.conf - shell
3.3.32 /etc/inetd.conf - login
3.3.35 /etc/inetd.conf - ftp
3.3.36 /etc/inetd.conf - chargen
3.3.37 /etc/inetd.conf - discard
3.3.39 /etc/inetd.conf - echo
3.3.44 /etc/inetd.conf - sprayd
3.3.51 /etc/inetd.conf - finger
3.3.53 /etc/inetd.conf - permissions and ownership
3.7.3 Miscellaneous Enhancements - /etc/ftpusers
3.7.4 Miscellaneous Enhancements - login herald
3.7.5 Miscellaneous Enhancements - guest account removal
3.7.6 Miscellaneous Enhancements - crontab permissions
4.2.2 Configuring SSH - disabling direct root access
4.2.3 Configuring SSH - server protocol 2
4.2.4 Configuring SSH - client protocol 2
4.2.5 Configuring SSH - banner configuration - ssh_banner
4.2.5 Configuring SSH - banner configuration - sshd_config
4.2.6 Configuring SSH - ignore .shosts and .rhosts
4.2.7 Configuring SSH - disable null passwords
4.2.9 Configuring SSH - set privilege separation
4.2.12 Configuring SSH - set LogLevel to INFO
4.2.13 Configuring SSH - set MaxAuthTries to 4 or Less