Detections
Analytics

Revision 1.34

Oct 5, 2020
Functional Update
  • 1.3.12 Only enable RPC-based services if absolutely necessary (<= 11.23)
  • 1.3.12 Only enable RPC-based services if absolutely necessary (>= 11.31)
  • 1.4.1 Enable stack protection (=11.11)
  • 1.4.1 Enable stack protection (>=11.23)
  • 1.6.10 Set retry limit for account lockout 'AUTH_MAXTRIES=10' (non-trusted)
  • 1.6.10 Set retry limit for account lockout 'AUTH_MAXTRIES=10' (trusted)
  • 1.8.3 Set account expiration parameters on active accounts 'PASSWORD_MAXDAYS=91'
  • 1.8.3 Set account expiration parameters on active accounts 'PASSWORD_MINDAYS=7'
  • 1.8.3 Set account expiration parameters on active accounts 'PASSWORD_WARNDAYS=28'
  • 1.8.3 Set account expiration parameters on active accounts 'exptm=90'
  • 1.8.3 Set account expiration parameters on active accounts 'expwarn=30'
  • 1.8.3 Set account expiration parameters on active accounts 'mintm=7'
  • 1.8.4 Set strong password enforcement policies 'MIN_PASSORD_LENGTH=7'
  • 1.8.4 Set strong password enforcement policies 'PASSWORD_HISTORY_DEPTH=10'
  • 1.8.4 Set strong password enforcement policies 'PASSWORD_MIN_DIGIT_CHARS=1'
  • 1.8.4 Set strong password enforcement policies 'PASSWORD_MIN_LOWER_CASE_CHARS=1'
  • 1.8.4 Set strong password enforcement policies 'PASSWORD_MIN_SPECIAL_CHARS=1'
  • 1.8.4 Set strong password enforcement policies 'PASSWORD_MIN_UPPER_CASE_CHARS=1'
  • 1.8.4 Set strong password enforcement policies 'nullpw=NO'
  • 1.8.4 Set strong password enforcement policies 'rstrpw=YES'
  • SN.4 Disable inetd, if possible
  • SN.4 Disable inetd, if possible '/sbin/rc2.d/.NOS500inetd'
  • SN.4 Disable inetd, if possible '/sbin/rc2.d/S500inetd'
Miscellaneous
  • Variables updated.