Sep 19, 2023 Functional Update- OL07-00-020320 - The Oracle Linux operating system must be configured so that all files and directories have a valid owner.
- OL07-00-020330 - The Oracle Linux operating system must be configured so that all files and directories have a valid group owner.
- OL07-00-020660 - The Oracle Linux operating system must be configured so that all files and directories contained in local interactive user home directories have a valid owner.
- OL07-00-020670 - The Oracle Linux operating system must be configured so that all files and directories contained in local interactive user home directories are group-owned by a group of which the home directory owner is a member.
- OL07-00-020680 - The Oracle Linux operating system must be configured so that all files and directories contained in local interactive user home directories have a mode of 0750 or less permissive.
- OL07-00-020710 - The Oracle Linux operating system must be configured so that all local initialization files have mode 0740 or less permissive.
- OL07-00-020730 - The Oracle Linux operating system must be configured so that local initialization files do not execute world-writable programs.
- OL07-00-020900 - The Oracle Linux operating system must be configured so that all system device files are correctly labeled to prevent unauthorized modification - device_t
- OL07-00-020900 - The Oracle Linux operating system must be configured so that all system device files are correctly labeled to prevent unauthorized modification - unlabeled_t
- OL07-00-021030 - The Oracle Linux operating system must be configured so that all world-writable directories are group-owned by root, sys, bin, or an application group.
- OL07-00-021031 - The Oracle Linux operating system must be configured so that all world-writable directories are owned by root, sys, bin, or an application user.
- OL07-00-021700 - The Oracle Linux operating system must not allow removable media to be used as the boot loader unless approved.
- OL07-00-040540 - The Oracle Linux operating system must not contain .shosts files.
- OL07-00-040550 - The Oracle Linux operating system must not contain shosts.equiv files.
Miscellaneous- Audit deprecated.
- Metadata updated.
- References updated.
- Variables updated.
|
Aug 15, 2023 Functional Update- OL07-00-021040 - The Oracle Linux operating system must set the umask value to 077 for all local interactive user accounts.
|
Jul 11, 2023 Functional Update- OL07-00-010119 - The Oracle Linux operating system must be configured so that when passwords are changed or new passwords are established, pwquality must be used.
|
Jul 5, 2023 Functional Update- OL07-00-030340 - The Oracle Linux operating system must immediately notify the System Administrator (SA) and Information System Security Officer (ISSO) (at a minimum) via email when the threshold for the repository maximum audit record storage capacity is reached - at a minimum via email when the threshold for the repository maximum audit record storage capacity is reached.
|
May 19, 2023 Functional Update- OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - autorun-never
- OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - locks automount
- OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - locks automount-open
- OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - locks autorun-never
- OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required.
- OL07-00-040160 - The Oracle Linux operating system must be configured so that all network connections associated with a communication session are terminated at the end of the session or after 15 minutes of inactivity from the user at a command prompt, except to fulfill documented and validated mission requirements.
|
