CIS Ubuntu Linux 22.04 LTS Server L1 v1.0.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Ubuntu Linux 22.04 LTS Server L1 v1.0.0

Updated: 6/17/2024

Authority: CIS

Plugin: Unix

Revision: 1.43

Estimated Item Count: 337

File Details

Filename: CIS_Ubuntu_22.04_LTS_v1.0.0_Server_L1.audit

Size: 990 kB

MD5: d8c1cfb8f305fae5ab9801853ed03235
SHA256: 8323bce8b8e419960b1f78ff5644f9cdcc26045e9f2773182ca5e9effb25067f

Audit Changelog

 
Revision 1.43

Jun 17, 2024

Miscellaneous
  • Metadata updated.
Revision 1.42

May 15, 2024

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
Revision 1.41

Apr 22, 2024

Functional Update
  • 4.2.2.6 Ensure rsyslog is configured to send logs to a remote log host
  • 5.4.5 Ensure all current passwords uses the configured hashing algorithm
Revision 1.40

Mar 20, 2024

Functional Update
  • 4.1.4.4 Ensure the audit log directory is 0750 or more restrictive
Revision 1.39

Mar 18, 2024

Functional Update
  • 3.1.1 Ensure system is checked to determine if IPv6 is enabled
  • 5.2.2 Ensure permissions on SSH private host key files are configured
Added
  • 4.2.3 Ensure all logfiles have appropriate permissions and ownership
Removed
  • 4.2.3 Ensure all logfiles have appropriate access configured
Revision 1.38

Feb 5, 2024

Functional Update
  • 5.2.22 Ensure SSH Idle Timeout Interval is configured
Revision 1.37

Jan 22, 2024

Functional Update
  • 5.2.22 Ensure SSH Idle Timeout Interval is configured
Miscellaneous
  • Metadata updated.
Revision 1.36

Jan 3, 2024

Functional Update
  • 2.2.13 Ensure SNMP Server is not installed
Revision 1.35

Dec 27, 2023

Functional Update
  • 4.1.4.4 Ensure the audit log directory is 0750 or more restrictive
  • 4.2.1.1.1 Ensure systemd-journal-remote is installed
  • 4.2.1.1.2 Ensure systemd-journal-remote is configured
  • 4.2.1.1.3 Ensure systemd-journal-remote is enabled
  • 4.2.1.1.4 Ensure journald is not configured to receive logs from a remote client
  • 4.2.1.2 Ensure journald service is enabled
  • 4.2.1.3 Ensure journald is configured to compress large log files
  • 4.2.1.4 Ensure journald is configured to write logfiles to persistent disk
  • 4.2.1.5 Ensure journald is not configured to send logs to rsyslog
  • 4.2.1.6 Ensure journald log rotation is configured per site policy
  • 4.2.1.7 Ensure journald default file permissions configured
  • 4.2.2.1 Ensure rsyslog is installed
  • 4.2.2.2 Ensure rsyslog service is enabled
  • 4.2.2.3 Ensure journald is configured to send logs to rsyslog
  • 4.2.2.4 Ensure rsyslog default file permissions are configured
  • 4.2.2.5 Ensure logging is configured
  • 4.2.2.6 Ensure rsyslog is configured to send logs to a remote log host
  • 4.2.2.7 Ensure rsyslog is not configured to receive logs from a remote client
Revision 1.34

Dec 8, 2023

Functional Update
  • 4.2.1.1.1 Ensure systemd-journal-remote is installed
  • 4.2.1.1.2 Ensure systemd-journal-remote is configured
  • 4.2.1.1.3 Ensure systemd-journal-remote is enabled
  • 4.2.1.1.4 Ensure journald is not configured to receive logs from a remote client
  • 4.2.1.2 Ensure journald service is enabled
  • 4.2.1.3 Ensure journald is configured to compress large log files
  • 4.2.1.4 Ensure journald is configured to write logfiles to persistent disk
  • 4.2.1.5 Ensure journald is not configured to send logs to rsyslog
  • 4.2.1.6 Ensure journald log rotation is configured per site policy
  • 4.2.1.7 Ensure journald default file permissions configured
  • 4.2.2.1 Ensure rsyslog is installed
  • 4.2.2.2 Ensure rsyslog service is enabled
  • 4.2.2.3 Ensure journald is configured to send logs to rsyslog
  • 4.2.2.4 Ensure rsyslog default file permissions are configured
  • 4.2.2.5 Ensure logging is configured
  • 4.2.2.6 Ensure rsyslog is configured to send logs to a remote log host
  • 4.2.2.7 Ensure rsyslog is not configured to receive logs from a remote client