Revision 1.7

1.1.1.1 Ensure mounting of squashfs filesystems is disabled
1.1.1.2 Ensure mounting of udf filesystems is disabled
3.1.2 Ensure DCCP is disabled
3.1.3 Ensure SCTP is disabled
3.1.4 Ensure RDS is disabled
3.1.5 Ensure TIPC is disabled
3.4.1.2 Ensure a single firewall configuration utility is in use
3.4.2.4 Ensure host based firewall loopback traffic is configured
3.4.2.6 Ensure nftables established connections are configured
5.2.3.10 Ensure successful file system mounts are collected
5.2.3.13 Ensure file deletion events by users are collected
5.2.3.15 Ensure successful and unsuccessful attempts to use the chcon command are recorded
5.2.3.16 Ensure successful and unsuccessful attempts to use the setfacl command are recorded
5.2.3.17 Ensure successful and unsuccessful attempts to use the chacl command are recorded
5.2.3.18 Ensure successful and unsuccessful attempts to use the usermod command are recorded
5.2.3.19 Ensure kernel module loading unloading and modification is collected
5.2.3.3 Ensure events that modify the sudo log file are collected
5.2.3.6 Ensure use of privileged commands are collected
5.2.3.7 Ensure unsuccessful file access attempts are collected
5.2.3.9 Ensure discretionary access control permission modification events are collected
5.2.4.1 Ensure audit log files are mode 0640 or less permissive
5.2.4.2 Ensure only authorized users own audit log files