Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.2 Use IP address rather than hostnameCIS IBM DB2 v10 v1.1.0 Linux OS Level 2Unix

CONFIGURATION MANAGEMENT

2.0.2 Secure all database containersCIS IBM DB2 OS L1 v1.2.0Unix
2.3.2 - MobileIron - Require Use Only in Mail for Sensitive Mail Accounts - EMAIL ConfigurationsMobileIron - CIS Apple iOS 9 v1.0.0 L2MDM

ACCESS CONTROL

2.4.3 - CDE - sgid/suid binary lockdown - '/usr/dt/bin/dtappgather root:bin 555'CIS AIX 5.3/6.1 L1 v1.1.0Unix
2.11.19 - Permissions and Ownership - home directory configuration files are not world writable - '~/.bash_logout is not world writable'CIS AIX 5.3/6.1 L1 v1.1.0Unix
2.11.19 - Permissions and Ownership - home directory configuration files are not world writable - '~/.bashrc is not world writable'CIS AIX 5.3/6.1 L1 v1.1.0Unix
2.11.19 - Permissions and Ownership - home directory configuration files are not world writable - '~/.cschrc is not world writable'CIS AIX 5.3/6.1 L1 v1.1.0Unix
2.11.19 - Permissions and Ownership - home directory configuration files are not world writable - '~/.dtprofile is not world writable'CIS AIX 5.3/6.1 L1 v1.1.0Unix
2.11.19 - Permissions and Ownership - home directory configuration files are not world writable - '~/.logout is not world writable'CIS AIX 5.3/6.1 L1 v1.1.0Unix
2.20 Disable Mounting of jffs2 FilesystemsCIS Debian Linux 7 L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

3.01 Files in $ORACLE_HOME/bin - 'Verify and set ownership'CIS v1.1.0 Oracle 11g OS Windows Level 1Windows
3.1.5 Secure default database location - 'DFTDBPATH directory ownership'CIS IBM DB2 OS L2 v1.2.0Unix
3.1.14 Set failed archive retry delayCIS IBM DB2 v10 v1.1.0 Windows OS Level 1Windows

CONFIGURATION MANAGEMENT

3.1.15 Auto-restart after abnormal terminationCIS IBM DB2 v10 v1.1.0 Linux OS Level 1Unix

CONFIGURATION MANAGEMENT

3.1.15 Auto-restart after abnormal terminationCIS IBM DB2 v10 v1.1.0 Windows OS Level 1Windows

CONFIGURATION MANAGEMENT

3.1.16 Disable database discoveryCIS IBM DB2 v10 v1.1.0 Windows OS Level 2Windows

CONFIGURATION MANAGEMENT

3.1.17 Reserve the desired port number or name for incoming connection requestsCIS IBM DB2 9 Benchmark v3.0.1 Level 2 OS LinuxUnix

CONFIGURATION MANAGEMENT

3.1.18 Reserve the desired port number or name for incoming SSL connectionsCIS IBM DB2 9 Benchmark v3.0.1 Level 2 OS WindowsWindows

CONFIGURATION MANAGEMENT

3.3.2 Set a generic system nameCIS IBM DB2 9 Benchmark v3.0.1 Level 2 OS WindowsWindows

CONFIGURATION MANAGEMENT

3.06 spfile.ora - 'Verify and restrict permissions'CIS v1.1.0 Oracle 11g OS Windows Level 1Windows
3.7 Verify that Docker environment file ownership is set to root:rootCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.10 init.ora - 'diagonostic_dest parameter settings'CIS v1.1.0 Oracle 11g OS L1Unix
3.18 sqlnet.ora - 'trace_directory_server parameter settings'CIS v1.1.0 Oracle 11g OS Windows Level 1Windows
3.20 Verify that TLS CA certificate file permissions are set to 444 or more restrictiveCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.22 listener.ora - 'trace_file_listener_name parameter settings'CIS v1.1.0 Oracle 11g OS Windows Level 1Windows
3.23 sqlplus - 'Verify and set permissions'CIS v1.1.0 Oracle 11g OS Windows Level 1Windows
3.24 .htaccess - 'Verify and set permissions'CIS v1.1.0 Oracle 11g OS L1Unix
3.25 dads.conf - 'Verify and set permissions'CIS v1.1.0 Oracle 11g OS L1Unix
4.7 Enable cron Logging - Check if permissions for /var/cron/log are OK.CIS Solaris 10 L1 v5.2Unix

AUDIT AND ACCOUNTABILITY

5.2 Turn on additional logging for FTP daemon -CIS Solaris 9 v1.3Unix
5.5 Create /var/adm/loginlog - Check if /var/adm/loginlog permissions are OK.CIS Solaris 9 v1.3Unix
5.9 Confirm permissions on system log files, should pass if /var/log/syslog permissions are OK.CIS Solaris 9 v1.3Unix
5.24 Radiuskey - 'Verify and set permissions on radius.key file'CIS v1.1.0 Oracle 11g OS Windows Level 1Windows
6.7 Set Default Screen Lock for CDE Users - Check if file permissions for files under /etc/dt/config/*/sys.resources are OK.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.4 Create /etc/ftpusers, Check if file permissions for /etc/ftpusers are OK.CIS Solaris 9 v1.3Unix
7.5 Set "mesg n" as Default for All Users - /etc/profile mesg = nCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

8.0.8 Secure the permission of the SSLconfig.ini fileCIS IBM DB2 OS L2 v1.2.0Unix
8.1 Create Warnings for Standard Login Services - etc/motd permsCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

8.1 Create Warnings for Standard Login Services - etc/issue permsCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

8.2 Restrict access to starting and stopping the DB2 administration serverCIS IBM DB2 9 Benchmark v3.0.1 Level 2 OS LinuxUnix

ACCESS CONTROL

8.4 Create warnings for FTP daemon - Check if permissions for /etc/ftpd/banner.msg are OK. Applicable only for Solaris 2.6 or laterCIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

8.9 No User Dot-Files Should Be World-WritableCIS Solaris 9 v1.3Unix
9.3.3 Set Permissions on /etc/ssh/sshd_configCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

9.3.10 Do Not Allow Users to Set Environment OptionsCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

9.9 Check Permissions on User .netrc FilesCIS Solaris 11 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

9.12 Check That Users Are Assigned Home DirectoriesCIS Solaris 11.1 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

9.14 Check User Home Directory OwnershipCIS Solaris 11 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

11.1 Set Warning Banner for Standard Login Services - /etc/motd.tail permissionsCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

ACCESS CONTROL

13.9 Check Permissions on User .netrc FilesCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

13.13 Check User Home Directory OwnershipCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT