Detections
Analytics

Revision 1.6

Sep 1, 2021
Functional Update
  • RHEL-08-030590 - Successful/unsuccessful modifications to the faillock log file in RHEL 8 must generate an audit record.
  • RHEL-08-030650 - RHEL 8 must use cryptographic mechanisms to protect the integrity of audit tools. - auditctl
  • RHEL-08-030650 - RHEL 8 must use cryptographic mechanisms to protect the integrity of audit tools. - auditd
  • RHEL-08-030650 - RHEL 8 must use cryptographic mechanisms to protect the integrity of audit tools. - augenrules
  • RHEL-08-030650 - RHEL 8 must use cryptographic mechanisms to protect the integrity of audit tools. - aureport
  • RHEL-08-030650 - RHEL 8 must use cryptographic mechanisms to protect the integrity of audit tools. - ausearch
  • RHEL-08-030650 - RHEL 8 must use cryptographic mechanisms to protect the integrity of audit tools. - autrace
  • RHEL-08-030650 - RHEL 8 must use cryptographic mechanisms to protect the integrity of audit tools. - rsyslogd
  • RHEL-08-040350 - If the Trivial File Transfer Protocol (TFTP) server is required, the RHEL 8 TFTP daemon must be configured to operate in secure mode.
Miscellaneous
  • References updated.
Added
  • RHEL-08-010600 - RHEL 8 must prevent special devices on file systems that are used with removable media.
  • RHEL-08-010610 - RHEL 8 must prevent code from being executed on file systems that are used with removable media.
  • RHEL-08-010620 - RHEL 8 must prevent files with the setuid and setgid bit set from being executed on file systems that are used with removable media.
  • RHEL-08-010630 - RHEL 8 must prevent code from being executed on file systems that are imported via Network File System (NFS).
  • RHEL-08-010640 - RHEL 8 must prevent special devices on file systems that are imported via Network File System (NFS).
  • RHEL-08-010650 - RHEL 8 must prevent files with the setuid and setgid bit set from being executed on file systems that are imported via Network File System (NFS).
Removed
  • RHEL-08-010600 - RHEL 8 must prevent special devices on file systems that are used with removable media.
  • RHEL-08-010610 - RHEL 8 must prevent code from being executed on file systems that are used with removable media.
  • RHEL-08-010620 - RHEL 8 must prevent files with the setuid and setgid bit set from being executed on file systems that are used with removable media.
  • RHEL-08-010630 - RHEL 8 must prevent code from being executed on file systems that are imported via Network File System (NFS).
  • RHEL-08-010640 - RHEL 8 must prevent special devices on file systems that are imported via Network File System (NFS).
  • RHEL-08-010650 - RHEL 8 must prevent files with the setuid and setgid bit set from being executed on file systems that are imported via Network File System (NFS).