| 1.2.2.4 Ensure the operating system removes all software components after updated versions have been installed | CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG | Unix | SYSTEM AND INFORMATION INTEGRITY |
| 1.5.9 Ensure kernel page-table isolation is enabled | CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG | Unix | CONFIGURATION MANAGEMENT |
| 1.10 Ensure the system has the packages required to enable the hardware random number generator entropy gatherer service | CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG | Unix | CONFIGURATION MANAGEMENT |
| 1.74 RHEL-09-231030 | CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT III | Unix | AUDIT AND ACCOUNTABILITY |
| 2.1.33 Ensure the operating system has enabled the hardware random number generator entropy gatherer service | CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG | Unix | CONFIGURATION MANAGEMENT |
| 2.5.3 Ensure the operating system enables Linux audit logging of the USBGuard daemon | CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG | Unix | AUDIT AND ACCOUNTABILITY |
| 5.3.3.5.1 Ensure the date and time of the last successful account logon upon logon is displayed | CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG | Unix | ACCESS CONTROL |
| 5.4.3.14 Ensure the number of concurrent sessions is configured | CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG | Unix | ACCESS CONTROL |
| DG0010-ORACLE11 - Database executable and configuration files should be monitored for unauthorized modifications. | DISA STIG Oracle 11 Installation v9r1 Linux | Unix | |
| DG0010-ORACLE11 - Database executable and configuration files should be monitored for unauthorized modifications. | DISA STIG Oracle 11 Installation v9r1 Windows | Windows | |
| DG0011-ORACLE11 - Configuration management procedures should be defined and implemented for database software modifications. | DISA STIG Oracle 11 Installation v9r1 Windows | Windows | |
| DG0011-ORACLE11 - Configuration management procedures should be defined and implemented for database software modifications. | DISA STIG Oracle 11 Installation v9r1 Linux | Unix | |
| DG0016-ORACLE11 - Unused database components, database application software, and database objects should be removed from the DBMS system. | DISA STIG Oracle 11 Installation v9r1 Linux | Unix | |
| DG0016-ORACLE11 - Unused database components, database application software, and database objects should be removed from the DBMS system. | DISA STIG Oracle 11 Installation v9r1 Windows | Windows | |
| DG0054-ORACLE11 - The audit logs should be periodically monitored to discover DBMS access using unauthorized applications. | DISA STIG Oracle 11 Installation v9r1 Linux | Unix | |
| DG0054-ORACLE11 - The audit logs should be periodically monitored to discover DBMS access using unauthorized applications. | DISA STIG Oracle 11 Installation v9r1 Windows | Windows | |
| DG0088-ORACLE11 - The DBMS should be periodically tested for vulnerability management and IA compliance. | DISA STIG Oracle 11 Installation v9r1 Windows | Windows | |
| DG0088-ORACLE11 - The DBMS should be periodically tested for vulnerability management and IA compliance. | DISA STIG Oracle 11 Installation v9r1 Linux | Unix | |
| DG0096-ORACLE11 - The DBMS IA policies and procedures should be reviewed annually or more frequently. | DISA STIG Oracle 11 Installation v9r1 Linux | Unix | |
| DG0096-ORACLE11 - The DBMS IA policies and procedures should be reviewed annually or more frequently. | DISA STIG Oracle 11 Installation v9r1 Windows | Windows | |
| DG0108-ORACLE11 - The DBMS restoration priority should be assigned. | DISA STIG Oracle 11 Installation v9r1 Linux | Unix | |
| DG0108-ORACLE11 - The DBMS restoration priority should be assigned. | DISA STIG Oracle 11 Installation v9r1 Windows | Windows | |
| DG0153-ORACLE11 - DBA roles assignments should be assigned and authorized by the IAO. | DISA STIG Oracle 11 Instance v9r1 Database | OracleDB | |
| DG0154-ORACLE11 - The DBMS requires a System Security Plan containing all required information. | DISA STIG Oracle 11 Installation v9r1 Windows | Windows | |
| DG0154-ORACLE11 - The DBMS requires a System Security Plan containing all required information. | DISA STIG Oracle 11 Installation v9r1 Linux | Unix | |
| DG7002-ORACLE11 - A minimum of two Oracle control files must be defined and configured to be stored on separate, archived disks (physical or virtual) or archived partitions on a RAID device. | DISA STIG Oracle 11 Installation v9r1 Database | OracleDB | |
| DO0240-ORACLE11 - The Oracle OS_ROLES parameter should be set to FALSE - 'os_roles = false' | DISA STIG Oracle 11 Instance v9r1 Database | OracleDB | |
| DO0420-ORACLE11 - The XDB Protocol server should be uninstalled if not required and authorized for use - 'All XDB servers are documented' | DISA STIG Oracle 11 Instance v9r1 Database | OracleDB | |
| DO0420-ORACLE11 - The XDB Protocol server should be uninstalled if not required and authorized for use - 'No XDB dispatchers exist' | DISA STIG Oracle 11 Instance v9r1 Database | OracleDB | |
| DO0420-ORACLE11 - The XDB Protocol server should be uninstalled if not required and authorized for use - 'No XDB users exist' | DISA STIG Oracle 11 Instance v9r1 Database | OracleDB | |
| DO3447-ORACLE11 - The Oracle OS_AUTHENT_PREFIX parameter should be changed from the default value of OPS$ - 'os_authent_prefix = OPS$' | DISA STIG Oracle 11 Instance v9r1 Database | OracleDB | |
| DO3685-ORACLE11 - The Oracle O7_DICTIONARY_ACCESSIBILITY parameter should be set to FALSE - 'O7_dictionary_accessibility = false' | DISA STIG Oracle 11 Instance v9r1 Database | OracleDB | |
| WA000-WWA030 A22 - The httpd.conf MaxSpareServers directive must be set properly. | DISA STIG Apache Server 2.2 Unix v1r11 Middleware | Unix | |
| WA120 A22 - Administrative users and groups that have access rights to the web server must be documented. | DISA STIG Apache Server 2.2 Unix v1r11 | Unix | |
| WA120 A22 - Administrative users and groups that have access rights to the web server must be documented. | DISA STIG Apache Server 2.2 Unix v1r11 Middleware | Unix | |
| WA120 IIS6 - Administrative users and groups with access privilege to the web server must be documented. | DISA STIG IIS 6.0 Server v6r16 | Windows | |
| WA120 W22 - Administrative users and groups that have access rights to the web server must be documented. | DISA STIG Apache Server 2.2 Windows v1r13 | Windows | |
| WA140 A22 - Web server content and configuration files must be part of a routine backup program. | DISA STIG Apache Server 2.2 Unix v1r11 Middleware | Unix | |
| WA140 A22 - Web server content and configuration files must be part of a routine backup program. | DISA STIG Apache Server 2.2 Unix v1r11 | Unix | |
| WA140 IIS6 - Web server content and configuration files must be part of a routine backup program. | DISA STIG IIS 6.0 Server v6r16 | Windows | |
| WA140 W22 - Web server content and configuration files must be part of a routine backup program. | DISA STIG Apache Server 2.2 Windows v1r13 | Windows | |
| WG170 A22 - Each readable web document directory must contain either a default, home, index, or equivalent file. | DISA STIG Apache Site 2.2 Unix v1r11 Middleware | Unix | |
| WG170 A22 - Each readable web document directory must contain either a default, home, index, or equivalent file. | DISA STIG Apache Site 2.2 Unix v1r11 | Unix | |
| WG170 W22 - Each readable web document directory must contain either a default, home, index, or equivalent file. | DISA STIG Apache Site 2.2 Windows v1r13 | Windows | |
| WG420 A22 - Backup interactive scripts on the production web server are prohibited. | DISA STIG Apache Server 2.2 Unix v1r11 | Unix | |
| WG420 A22 - Backup interactive scripts on the production web server are prohibited. | DISA STIG Apache Server 2.2 Unix v1r11 Middleware | Unix | |
| WG520 A22 - Web server and/or operating system information must be protected. | DISA STIG Apache Server 2.2 Unix v1r11 Middleware | Unix | |
| WG610 A22 - Web sites must utilize ports, protocols, and services according to PPSM guidelines. | DISA STIG Apache Site 2.2 Unix v1r11 Middleware | Unix | |
| WG610 A22 - Web sites must utilize ports, protocols, and services according to PPSM guidelines. | DISA STIG Apache Site 2.2 Unix v1r11 | Unix | |
| WG610 W22 - Web sites must utilize ports, protocols, and services according to PPSM guidelines. | DISA STIG Apache Site 2.2 Windows v1r13 | Windows | |
