Detections
Analytics

CIS CentOS 7 v3.1.1 Workstation L1

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS CentOS 7 v3.1.1 Workstation L1

Updated: 10/3/2023

Authority: CIS

Plugin: Unix

Revision: 1.6

Estimated Item Count: 318

Audit Changelog

 
Revision 1.6

Oct 3, 2023

Informational Update
  • 5.5.5 Ensure default user umask is configured - system wide default
  • 5.5.5 Ensure default user umask is configured - system wide umask
Revision 1.5

Jan 10, 2022

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
Revision 1.4

Jan 7, 2022

Functional Update
  • 3.2.1 Ensure IP forwarding is disabled - ipv6 sysctlc.conf sysctl.d
  • 5.3.16 Ensure SSH Idle Timeout Interval is configured - ClientAliveCountMax
  • 5.3.16 Ensure SSH Idle Timeout Interval is configured - ClientAliveInterval
Miscellaneous
  • Metadata updated.
Revision 1.3

Nov 16, 2021

Functional Update
  • 3.2.1 Ensure IP forwarding is disabled - ipv6 sysctl
  • 3.2.1 Ensure IP forwarding is disabled - ipv6 sysctlc.conf sysctl.d
  • 3.5.3.1.3 Ensure firewalld is either not installed or masked with iptables - masked
  • 5.4.2 Ensure lockout for failed password attempts is configured - password-auth 'auth sufficient pam_unix.so'
  • 5.4.2 Ensure lockout for failed password attempts is configured - system-auth 'auth sufficient pam_unix.so'
Miscellaneous
  • References updated.
Added
  • 3.2.1 Ensure IP forwarding is disabled - ipv4 sysctlc.conf sysctl.d
  • 3.2.1 Ensure IP forwarding is disabled - ipv6 sysctl.conf sysctl.d
Removed
  • 3.2.1 Ensure IP forwarding is disabled - ipv6 files
  • 3.2.1 Ensure IP forwarding is disabled - sysctlc.conf sysctl.d
Revision 1.2

Aug 24, 2021

Functional Update
  • 5.5.1.5 Ensure all users last password change date is in the past
Revision 1.1

Jul 20, 2021

Functional Update
  • 5.5.1.1 Ensure password expiration is 365 days or less - users