Item Search

Name	Audit Name	Plugin	Category
1.1.1.2 Ensure mounting of squashfs filesystems is disabled - modprobe	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.4 Ensure nosuid option set on /tmp partition	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.8 Ensure nodev option set on /var/tmp partition	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.9 Ensure nosuid option set on /var/tmp partition	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.10 Ensure separate partition exists for /var	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.15 Ensure nodev option set on /home partition	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.2 Ensure authentication required for single user mode - emergency.service	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.2 Ensure authentication required for single user mode - rescue.service	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.5.1 Ensure bootloader password is set - password_pbkdf2	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.1 Ensure core dumps are restricted - fs.suid_dumpable (sysctl.conf/sysctl.d)	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.1 Ensure core dumps are restricted - hard core (limits.conf/limits.d)	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.6.1 Ensure core dumps are restricted - /etc/security/limits.d/*	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.6.1 Ensure core dumps are restricted - /etc/sysctl.d/*	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.10 Ensure GDM is removed or login is configured - banner message text	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.10 Ensure GDM is removed or login is configured - disable-user-list	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.1.2 Ensure packet redirect sending is disabled - sysctl net.ipv4.conf.all.send_redirects=0	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
3.2.1 Ensure source routed packets are not accepted - /etc/sysctl.conf /etc/sysctl.d/* net.ipv4.conf.default.accept_source_route = 0	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
3.2.1 Ensure source routed packets are not accepted - /etc/sysctl.conf /etc/sysctl.d/* net.ipv6.conf.all.accept_source_route = 0	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
3.2.1 Ensure source routed packets are not accepted - sysctl net.ipv4.conf.default.accept_source_route=0	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
3.2.1 Ensure source routed packets are not accepted - sysctl net.ipv6.conf.all.accept_source_route=0	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
3.2.2 Ensure ICMP redirects are not accepted - /etc/sysctl.conf /etc/sysctl.d/* net.ipv6.conf.all.accept_redirects=0	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
3.2.3 Ensure secure ICMP redirects are not accepted - sysctl net.ipv4.conf.default.secure_redirects=0	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
3.2.5 Ensure broadcast ICMP requests are ignored - sysctl	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
3.2.6 Ensure bogus ICMP responses are ignored - sysctl	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
3.3.1 Ensure source routed packets are not accepted - sysctl net.ipv6.conf.all.accept_source_route	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - sysctl net.ipv4.conf.all.accept_redirects	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - sysctl net.ipv4.conf.default.accept_redirects	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.5 Ensure broadcast ICMP requests are ignored - sysctl net.ipv4.icmp_echo_ignore_broadcasts	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.9 Ensure IPv6 router advertisements are not accepted - sysctl net.ipv6.conf.default.accept_ra	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.4 Ensure events that modify date and time information are collected - /etc/localtime	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.4 Ensure events that modify date and time information are collected - adjtimex	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.4 Ensure events that modify date and time information are collected - clock_settime (32-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's Mandatory Access Controls are collected - /etc/selinux/	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - /etc/issue.net	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - auditctl /etc/sysconfig/network	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - auditctl /etc/sysconfig/network-scripts	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - sethostname (32-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - auditctl b64 chmod fchmod	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - auditctl b64 chmod fchmod	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - b32 chmod fchmod	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - b64 chmod fchmod	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - b64 setxattr	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.10 Ensure discretionary access control permission modification events are collected - auditctl chmod/fchmod/fchmodat (64-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl modprobe	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
5.1.2 Ensure permissions on /etc/crontab are configured	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
5.1.5 Ensure permissions on /etc/cron.weekly are configured	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
5.2.17 Ensure SSH LoginGraceTime is set to one minute or less	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
5.6 Ensure access to the su command is restricted - /etc/group	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
5.6 Ensure access to the su command is restricted - /etc/pam.d/su	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
6.2.2 Ensure no legacy "+" entries exist in /etc/passwd	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search