CIS IBM AIX 7.1 L2 v2.1.0

Audit Details

Name: CIS IBM AIX 7.1 L2 v2.1.0

Updated: 6/17/2024

Authority: CIS

Plugin: Unix

Revision: 1.4

Estimated Item Count: 79

File Details

Filename: CIS_AIX_7.1_Benchmark_v2.1.0_Level_2.audit

Size: 173 kB

MD5: c3f43cd72ab72a603e9a02ddaccebbb1
SHA256: 137a531672803ca3069cef21320b9b425d88199152f5cfc92a38cbebaf1f04f2

Audit Items

DescriptionCategories
2.1 EFS - implementation

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.1.1.2 dt

CONFIGURATION MANAGEMENT

3.1.1.3 piobe

CONFIGURATION MANAGEMENT

3.1.1.5 rcnfs

CONFIGURATION MANAGEMENT

3.1.2.2 aixmibd

CONFIGURATION MANAGEMENT

3.1.2.3 dhcpcd

CONFIGURATION MANAGEMENT

3.1.2.4 dhcprd

CONFIGURATION MANAGEMENT

3.1.2.5 dhcpsd

CONFIGURATION MANAGEMENT

3.1.2.6 dpid2

CONFIGURATION MANAGEMENT

3.1.2.7 gated

CONFIGURATION MANAGEMENT

3.1.2.8 hostmibd

CONFIGURATION MANAGEMENT

3.1.2.10 mrouted

CONFIGURATION MANAGEMENT

3.1.2.11 named

CONFIGURATION MANAGEMENT

3.1.2.12 portmap

CONFIGURATION MANAGEMENT

3.1.2.13 routed

CONFIGURATION MANAGEMENT

3.1.2.14 rwhod

CONFIGURATION MANAGEMENT

3.1.2.15 sendmail

CONFIGURATION MANAGEMENT

3.1.2.16 snmpd

CONFIGURATION MANAGEMENT

3.1.2.17 snmpmibd

CONFIGURATION MANAGEMENT

3.1.3.1 autoconf6

CONFIGURATION MANAGEMENT

3.1.3.2 ndpd-host

CONFIGURATION MANAGEMENT

3.1.3.3 ndpd-router

CONFIGURATION MANAGEMENT

3.1.4.1 NFS - de-install NFS server - /etc/exports

CONFIGURATION MANAGEMENT

3.1.4.1 NFS - de-install NFS server - server installed

CONFIGURATION MANAGEMENT

3.1.4.4 NFS - restrict NFS access - restrict NFS access

CONFIGURATION MANAGEMENT

3.1.4.6 NFS - secure NFS - secure NFS

CONFIGURATION MANAGEMENT

3.2.1 CDE - de-installing CDE

CONFIGURATION MANAGEMENT

3.2.2 /etc/inetd.conf - cmsd - cmsd

CONFIGURATION MANAGEMENT

3.2.3 CDE - disabling dtlogin - disabling dtlogin

CONFIGURATION MANAGEMENT

3.2.4 /etc/inetd.conf - dtspc - dtspc

CONFIGURATION MANAGEMENT

3.2.6 CDE - remote GUI login disabled - remote GUI login disabled

CONFIGURATION MANAGEMENT

3.4.6 Unattended terminal session timeout is 900 seconds (or less) - readonly

ACCESS CONTROL

3.4.6 Unattended terminal session timeout is 900 seconds (or less) - TIMEOUT

ACCESS CONTROL

3.4.6 Unattended terminal session timeout is 900 seconds (or less) - TMOUT

ACCESS CONTROL

3.5.1.1 NIS - de-install NIS client - de-install NIS client

CONFIGURATION MANAGEMENT

3.5.1.2 NIS - de-install NIS server - de-install NIS server

CONFIGURATION MANAGEMENT

3.5.1.3 NIS - remove NIS markers from password and group files - /etc/group

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

3.5.1.3 NIS - remove NIS markers from password and group files - /etc/passwd

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

3.5.1.4 NIS - restrict NIS server communication - file permissions

CONFIGURATION MANAGEMENT

3.5.1.4 NIS - restrict NIS server communication - review contents

CONFIGURATION MANAGEMENT

3.5.2.1 SNMP - disable private community string - disable private community string

CONFIGURATION MANAGEMENT

3.5.2.2 SNMP - disable system community string - disable system community string

CONFIGURATION MANAGEMENT

3.5.2.3 SNMP - disable public community string - disable public community string

CONFIGURATION MANAGEMENT

3.5.2.4 SNMP - disable Readwrite community access - disable Readwrite community access

CONFIGURATION MANAGEMENT

3.5.2.5 SNMP - restrict community access - restrict community access

CONFIGURATION MANAGEMENT

3.5.3 Remote command lockdown - rcp

ACCESS CONTROL, MEDIA PROTECTION

3.5.3 Remote command lockdown - rlogin

ACCESS CONTROL, MEDIA PROTECTION

3.5.3 Remote command lockdown - rsh

ACCESS CONTROL, MEDIA PROTECTION

3.5.4 Removal of entries from /etc/hosts.equiv

CONFIGURATION MANAGEMENT

3.5.5 Removal of .rhosts and .netrc files - .netrc

CONFIGURATION MANAGEMENT