Detections
Analytics
CIS BIND DNS v1.0.0 L2 Caching Only Name Server
Audit Details
Name: CIS BIND DNS v1.0.0 L2 Caching Only Name Server
Updated: 6/17/2024
Authority: CIS
Plugin: Unix
Revision: 1.7
Estimated Item Count: 8
File Details
Filename: CIS_ISC_BIND_DNS_Server_9.11_Benchmark_v1.0.0_L2_CachingOnly.audit
Size: 23.9 kB
MD5: 378a5164937e07ef996003cfed6c6ded
SHA256: d3b93019daabc11914940b25dd200dbffa56f0bbebd1331aed3d741746094460
Audit Items
| Description | Categories |
|---|---|
| 1.4 Use Secure Upstream Caching DNS Servers | ACCESS CONTROL |
| 2.9 Isolate BIND with chroot'ed Subdirectory | ACCESS CONTROL |
| 10.1 Ensure SELinux Is Enabled in Enforcing Mode - config file | ACCESS CONTROL |
| 10.1 Ensure SELinux Is Enabled in Enforcing Mode - current mode | ACCESS CONTROL |
| 10.2 Ensure BIND Processes Run in the named_t Confined Context Type | ACCESS CONTROL |
| 10.3 Ensure the named_t Process Type is Not in Permissive Mode | ACCESS CONTROL |
| 10.4 Ensure Only the Necessary SELinux Booleans are Enabled | SYSTEM AND INFORMATION INTEGRITY |
| CIS_ISC_BIND_DNS_Server_9.11_Benchmark_v1.0.0_L2_CachingOnly.audit |