1.5.2 Ensure address space layout randomization (ASLR) is enabled - sysctl | CIS Aliyun Linux 2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
1.6.5 Ensure 'Telnet' is disabled | CIS Cisco Firewall v8.x L1 v4.2.0 | Cisco | CONFIGURATION MANAGEMENT |
1.6.5 Ensure 'Telnet' is disabled | CIS Cisco Firewall ASA 9 L1 v4.1.0 | Cisco | CONFIGURATION MANAGEMENT |
1.8.2 Ensure 'SSH session timeout' is less than or equal to '5' minutes | CIS Cisco Firewall ASA 9 L1 v4.1.0 | Cisco | CONFIGURATION MANAGEMENT |
1.9.1.3 Ensure 'trusted NTP server' exists | CIS Cisco Firewall ASA 9 L1 v4.1.0 | Cisco | CONFIGURATION MANAGEMENT |
1.9.2 Ensure 'local timezone' is properly configured | CIS Cisco Firewall ASA 9 L1 v4.1.0 | Cisco | CONFIGURATION MANAGEMENT |
2.2 Ensure 'CLR Enabled' Server Configuration Option is set to '0' | CIS SQL Server 2008 R2 DB Engine L1 v1.7.0 | MS_SQLDB | CONFIGURATION MANAGEMENT |
2.2 Ensure 'CLR Enabled' Server Configuration Option is set to '0' | CIS SQL Server 2012 Database L1 DB v1.6.0 | MS_SQLDB | CONFIGURATION MANAGEMENT |
2.2 Ensure 'CLR Enabled' Server Configuration Option is set to '0' | CIS SQL Server 2014 Database L1 DB v1.5.0 | MS_SQLDB | CONFIGURATION MANAGEMENT |
4.2.8 Ensure that the --hostname-override argument is not set | CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Worker | Unix | CONFIGURATION MANAGEMENT |
6.1 Ensure 'Attack Vectors' Runtime Parameters are Configured | CIS PostgreSQL 11 DB v1.0.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
6.2 Ensure 'backend' runtime parameters are configured correctly | CIS PostgreSQL 9.5 DB v1.1.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
6.2 Ensure 'backend' runtime parameters are configured correctly | CIS PostgreSQL 9.6 DB v1.0.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
6.5 Ensure 'Superuser' Runtime Parameters are Configured | CIS PostgreSQL 11 DB v1.0.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
8.1 Ensure PostgreSQL configuration files are outside the data cluster | CIS PostgreSQL 9.5 DB v1.1.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
8.1 Ensure PostgreSQL configuration files are outside the data cluster | CIS PostgreSQL 10 DB v1.0.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
8.1 Ensure PostgreSQL configuration files are outside the data cluster | CIS PostgreSQL 9.6 DB v1.0.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
8.2 Ensure PostgreSQL subdirectory locations are outside the data cluster | CIS PostgreSQL 11 DB v1.0.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
8.2 Ensure PostgreSQL subdirectory locations are outside the data cluster | CIS PostgreSQL 9.6 DB v1.0.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
8.3.4 Ensure templates are used whenever possible to deploy VMs | CIS VMware ESXi 6.7 v1.1.0 Level 1 | VMware | CONFIGURATION MANAGEMENT |
8.4 Ensure miscellaneous configuration settings are correct | CIS PostgreSQL 11 DB v1.0.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
8.4 Ensure miscellaneous configuration settings are correct | CIS PostgreSQL 10 DB v1.0.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
Appendix E: HP-UX Bastille configuration entries 'AccountSecurity.cronuser=Y' | CIS HP-UX 11i v1.5 | Unix | CONFIGURATION MANAGEMENT |
Appendix E: HP-UX Bastille configuration entries 'AccountSecurity.gui_login=Y' | CIS HP-UX 11i v1.5 | Unix | CONFIGURATION MANAGEMENT |
Appendix E: HP-UX Bastille configuration entries 'AccountSecurity.NOLOGIN=N' | CIS HP-UX 11i v1.5 | Unix | CONFIGURATION MANAGEMENT |
Appendix E: HP-UX Bastille configuration entries 'AccountSecurity.system_auditing=Y' | CIS HP-UX 11i v1.5 | Unix | CONFIGURATION MANAGEMENT |
Appendix E: HP-UX Bastille configuration entries 'Apache.chrootapache=N' | CIS HP-UX 11i v1.5 | Unix | CONFIGURATION MANAGEMENT |
Appendix E: HP-UX Bastille configuration entries 'HP_UX.screensaver_timeout=Y' | CIS HP-UX 11i v1.5 | Unix | CONFIGURATION MANAGEMENT |
Appendix E: HP-UX Bastille configuration entries 'HP_UX.stack_execute=Y' | CIS HP-UX 11i v1.5 | Unix | CONFIGURATION MANAGEMENT |
MobileIron - Configurations not applied | MobileIron - TNS MDM Best Practices Audit v1.1.0 | MDM | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
MobileIron - Policies not applied | MobileIron - TNS MDM Best Practices Audit v1.1.0 | MDM | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
Salesforce.com : AuthConfig - 'Auth Providers = Facebook Consumer Secret' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = Facebook Default Scope' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = Facebook Execution User ID' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = Janrain Consumer Secret' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = Janrain Execution User ID' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = Janrain is not configured' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS Authorized Endpoint URL' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS Consumer Key' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS Error URL' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS is not configured' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Consumer Key' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Error URL' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Send Client Credentials in Header' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers = Salesforce Consumer Secret' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - 'Auth Providers in use' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : AuthConfig - No SSO Auth Providers have been configured | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION |
Salesforce.com : Setting Password Policies - 'Minimum 1 day password lifetime' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
Salesforce.com : Setting Password Policies - 'Obscure secret answer for password resets = true' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
Salesforce.com : Setting Session Security - 'Enable CSRF protection on GET requests on non-setup pages = true' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY |