CIS Amazon Linux 2 STIG v1.0.0 L3

Audit Details

Name: CIS Amazon Linux 2 STIG v1.0.0 L3

Updated: 10/15/2024

Authority: CIS

Plugin: Unix

Revision: 1.22

Estimated Item Count: 168

File Details

Filename: CIS_Amazon_Linux_2_STIG_v1.0.0_L3.audit

Size: 475 kB

MD5: 3039aa2e8586a457ad0d846fc0fcfa22
SHA256: d41d5328e03f32e18e6fc1730f2a48db4b38948ece8f74cae43b436462325982

Audit Changelog

 
Revision 1.22

Oct 15, 2024

Functional Update
  • 1.1.21 Ensure all world-writable directories are group-owned.
  • 1.4.3 Ensure boot loader does not allow removable media
Informational Update
  • 1.4.3 Ensure boot loader does not allow removable media
Miscellaneous
  • References updated.
Added
  • 5.2.32 Ensure no '.shosts' files exist on the system.
  • 5.2.33 Ensure no 'shosts.equiv' files exist on the system.
Removed
  • 5.2.32 Ensure no '.shosts' files exist on the system - .shosts files exist on the system
  • 5.2.33 Ensure no 'shosts.equiv' files exist on the system - shosts.equiv files exist on the system
Revision 1.21

Aug 7, 2024

Functional Update
  • 4.5 Ensure system notification is sent out when voume is 75% full
Revision 1.20

Jun 17, 2024

Miscellaneous
  • Metadata updated.
Revision 1.19

Apr 24, 2024

Functional Update
  • 4.5 Ensure system notification is sent out when voume is 75% full
Miscellaneous
  • Metadata updated.
Revision 1.18

Apr 3, 2024

Miscellaneous
  • Metadata updated.
  • Platform check updated.
Revision 1.17

Oct 3, 2023

Functional Update
  • 1.9 Ensure anti-virus is installed and running
Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.16

May 30, 2023

Functional Update
  • 4.8 Enure off-load of audit logs - path
  • 4.8 Enure off-load of audit logs - type
Revision 1.15

May 2, 2023

Functional Update
  • 5.4.1.9 Ensure password expiration is 60 Day maximum for exisiting passwords
Miscellaneous
  • References updated.
Revision 1.14

Apr 12, 2023

Functional Update
  • 5.3.5 Ensure minimum and maximum requirements are set for password changes - difok
  • 5.3.5 Ensure minimum and maximum requirements are set for password changes - maxclassrepeat
  • 5.3.5 Ensure minimum and maximum requirements are set for password changes - maxrepeat
  • 5.3.5 Ensure minimum and maximum requirements are set for password changes - minclass
  • 5.3.5 Ensure minimum and maximum requirements are set for password changes - minlen
  • 5.4.1.10 Ensure delay between logon prompts on failure
  • 5.4.1.6 Ensure encrypted respresentation of passwords is set.
  • 5.4.1.8 Ensure password expiration is 60 Day maximum for new users
  • 5.4.8 Ensure Default user umask is 077
  • 6.2.28 Ensure upon user creation a home directory is assigned.
Miscellaneous
  • Metadata updated.
  • Platform check updated.
  • References updated.
  • Variables updated.
Revision 1.13

Mar 7, 2023

Miscellaneous
  • Metadata updated.
  • References updated.