Item Search

Name	Audit Name	Plugin	Category
1.1.1.8 Ensure mounting of FAT filesystems is limited - lsmod	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.6 Ensure separate partition exists for /var	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.10 Ensure separate partition exists for /var/log	CIS Ubuntu Linux 14.04 LTS Workstation L2 v2.1.0	Unix	CONFIGURATION MANAGEMENT
1.1.12 Ensure /var/tmp partition includes the nodev option	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.13 Ensure separate partition exists for /home	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.13 Ensure separate partition exists for /home	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.18 Ensure /home partition includes the nodev option	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.19 Ensure nodev option set on removable media partitions	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.4.3 Ensure permissions on bootloader config are configured	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.4.3 Ensure permissions on bootloader config are configured	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.4 Ensure core dumps are restricted - limits config	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.4 Ensure core dumps are restricted - processsizemax	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.4 Ensure core dumps are restricted - sysctl	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.4 Ensure core dumps are restricted - sysctl config	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.1 Ensure message of the day is configured properly - platform flags	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.1 Ensure message of the day is configured properly - platform flags	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.2 Ensure local login warning banner is configured properly - platform flags	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.2 Ensure GDM login banner is configured - banner-message-enable	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.2 Ensure GDM login banner is configured - banner-message-text	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.2 Ensure GDM login banner is configured - banner-message-text	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.1 Ensure packet redirect sending is disabled - net.ipv4.conf.all.send_redirects (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.1 Ensure packet redirect sending is disabled - sysctl net.ipv4.conf.default.send_redirects	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.2 Ensure IP forwarding is disabled - ipv4 (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.2 Ensure IP forwarding is disabled - ipv6 (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.2 Ensure IP forwarding is disabled - sysctl ipv4	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.1 Ensure source routed packets are not accepted - net.ipv6.conf.all.accept_source_route (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.1 Ensure source routed packets are not accepted - net.ipv6.conf.all.accept_source_route (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.1 Ensure source routed packets are not accepted - sysctl net.ipv4.conf.all.accept_source_route	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - net.ipv6.conf.default.accept_redirects (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.3 Ensure secure ICMP redirects are not accepted - 'net.ipv4.conf.all.secure_redirects' (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.3 Ensure secure ICMP redirects are not accepted - 'net.ipv4.conf.default.secure_redirects' (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.3 Ensure secure ICMP redirects are not accepted - 'net.ipv4.conf.default.secure_redirects' (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.3 Ensure secure ICMP redirects are not accepted - 'sysctl net.ipv4.conf.all.secure_redirects'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - auditctl /etc/localtime	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - auditctl clock_settime (32-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - auditctl clock_settime (64-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - clock_settime (64-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl issue	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - auditctl setxattr/lsetxattr/fsetxattr/removexattr	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - auditctl xattr (64-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - chown/fchown/fchownat/lchown (64-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - setxattr/lsetxattr/fsetxattr/removexattr	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.12 Ensure successful file system mounts are collected - 64-bit	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl init_module/delete_module (32-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl insmod	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - init_module/delete_module (32-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - insmod	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.18 Ensure SSH LoginGraceTime is set to one minute or less	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
6.2.9 Ensure no users have .forward files	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
6.2.12 Ensure root PATH Integrity	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search