Revision 1.4Jul 15, 2020
Functional Update
- 2.2.1.2 Ensure ntp is configured - RUNASUSER
- 2.2.1.2 Ensure ntp is configured - ntp server
- 2.2.1.2 Ensure ntp is configured - restrict -4
- 2.2.1.2 Ensure ntp is configured - restrict -6
- 2.2.1.3 Ensure chrony is configured
- 4.2.4 Ensure permissions on all logfiles are configured
- 5.1.8 Ensure at/cron is restricted to authorized users - at.allow
- 5.1.8 Ensure at/cron is restricted to authorized users - cron.allow
- 5.4.1.1 Ensure password expiration is 365 days or less - users
- 5.4.1.2 Ensure minimum days between password changes is 7 or more - users
- 5.4.1.3 Ensure password expiration warning days is 7 or more - users
- 5.4.1.4 Ensure inactive password lock is 30 days or less - users
- 5.4.2 Ensure system accounts are non-login
- 5.4.4 Ensure default user umask is 027 or more restrictive - /etc/bash.bashrc
- 5.4.4 Ensure default user umask is 027 or more restrictive - /etc/profile
- 5.4.4 Ensure default user umask is 027 or more restrictive - /etc/profile.d/*.sh
Informational Update
- 2.2.1.2 Ensure ntp is configured - RUNASUSER
- 2.2.1.2 Ensure ntp is configured - ntp server
- 2.2.1.2 Ensure ntp is configured - restrict -4
- 2.2.1.2 Ensure ntp is configured - restrict -6
- 2.2.1.3 Ensure chrony is configured