Detections
Analytics

Item Search

NameAudit NamePluginCategory
4.4.1.2 Ensure libpwquality is installedCIS Amazon Linux 2 v3.0.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

4.4.2.3.2 Ensure password history remember is configuredCIS Amazon Linux 2 v3.0.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

4.4.2.3.3 Ensure password history is enforced for the root userCIS Amazon Linux 2 v3.0.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

4.4.2.4.2 Ensure pam_unix does not include rememberCIS Amazon Linux 2 v3.0.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

4.5.2.1 Ensure default group for the root account is GID 0CIS Amazon Linux 2 v3.0.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

4.5.2.4 Ensure root password is setCIS Amazon Linux 2 v3.0.0 L1Unix

ACCESS CONTROL, MEDIA PROTECTION

5.1.1.1 Ensure rsyslog is installedCIS Amazon Linux 2 v3.0.0 L1Unix

AUDIT AND ACCOUNTABILITY

5.1.1.3 Ensure journald is configured to send logs to rsyslogCIS Amazon Linux 2 v3.0.0 L1Unix

AUDIT AND ACCOUNTABILITY

5.1.1.4 Ensure rsyslog default file permissions are configuredCIS Amazon Linux 2 v3.0.0 L1Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION

5.1.1.6 Ensure rsyslog is configured to send logs to a remote log hostCIS Amazon Linux 2 v3.0.0 L1Unix

AUDIT AND ACCOUNTABILITY

5.1.2.1.3 Ensure systemd-journal-remote is enabledCIS Amazon Linux 2 v3.0.0 L1Unix

AUDIT AND ACCOUNTABILITY

5.1.2.4 Ensure journald is configured to write logfiles to persistent diskCIS Amazon Linux 2 v3.0.0 L1Unix

AUDIT AND ACCOUNTABILITY

6.1.9 Ensure permissions on /etc/shells are configuredCIS Amazon Linux 2 v3.0.0 L1Unix

ACCESS CONTROL, MEDIA PROTECTION

6.1.11 Ensure world writable files and directories are securedCIS Amazon Linux 2 v3.0.0 L1Unix

ACCESS CONTROL, MEDIA PROTECTION

6.1.12 Ensure no unowned or ungrouped files or directories existCIS Amazon Linux 2 v3.0.0 L1Unix

ACCESS CONTROL, MEDIA PROTECTION

6.1.13 Ensure SUID and SGID files are reviewedCIS Amazon Linux 2 v3.0.0 L1Unix

ACCESS CONTROL, MEDIA PROTECTION

6.2.2 Ensure /etc/shadow password fields are not emptyCIS Amazon Linux 2 v3.0.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

6.2.4 Ensure no duplicate UIDs existCIS Amazon Linux 2 v3.0.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

6.2.9 Ensure root is the only UID 0 accountCIS Amazon Linux 2 v3.0.0 L1Unix

ACCESS CONTROL

check if firewalld is not activeCIS Amazon Linux 2 v3.0.0 L1Unix
Check rsync installedCIS Amazon Linux 2 v3.0.0 L1Unix
config file maxauthtries settingCIS Amazon Linux 2 v3.0.0 L1Unix
cups.socket cups.service activeCIS Amazon Linux 2 v3.0.0 L1Unix
cups.socket cups.service enabledCIS Amazon Linux 2 v3.0.0 L1Unix
dhcpd.service dhcpd6.service enabledCIS Amazon Linux 2 v3.0.0 L1Unix
dovecot exist on the systemCIS Amazon Linux 2 v3.0.0 L1Unix
dovecot.socket dovecot.service cyrus-imapd.service activeCIS Amazon Linux 2 v3.0.0 L1Unix
Ensure at least one file named /etc/pam.d/password-auth exists and matches pattern (?i)^h*passwordh+(requisite|required)h+pam_pwhistory.soCIS Amazon Linux 2 v3.0.0 L1Unix
Ensure at least one file named /etc/pam.d/system-auth exists and matches password patternCIS Amazon Linux 2 v3.0.0 L1Unix
firewalld check - activeCIS Amazon Linux 2 v3.0.0 L1Unix
INPUT acceptCIS Amazon Linux 2 v3.0.0 L1Unix
ip6tables inputCIS Amazon Linux 2 v3.0.0 L1Unix
ip6tables outputCIS Amazon Linux 2 v3.0.0 L1Unix
iptables Chain OUTPUTCIS Amazon Linux 2 v3.0.0 L1Unix
iptables enabledCIS Amazon Linux 2 v3.0.0 L1Unix
login.defsCIS Amazon Linux 2 v3.0.0 L1Unix
Loopback on Port 587CIS Amazon Linux 2 v3.0.0 L1Unix
New format input imtcpCIS Amazon Linux 2 v3.0.0 L1Unix
nfs-server.service enabledCIS Amazon Linux 2 v3.0.0 L1Unix
On disk timestamp_timeoutCIS Amazon Linux 2 v3.0.0 L1Unix
pam.dCIS Amazon Linux 2 v3.0.0 L1Unix
review /etc/sysconfig/ip6tablesCIS Amazon Linux 2 v3.0.0 L1Unix
rsyslog check - activeCIS Amazon Linux 2 v3.0.0 L1Unix
shadow password max daysCIS Amazon Linux 2 v3.0.0 L1Unix
snmpd.service enabledCIS Amazon Linux 2 v3.0.0 L1Unix
sshd maxauthtries settingCIS Amazon Linux 2 v3.0.0 L1Unix
system-auth authfail denyCIS Amazon Linux 2 v3.0.0 L1Unix
system-auth authfail unlock_timeCIS Amazon Linux 2 v3.0.0 L1Unix
telnet.socket activeCIS Amazon Linux 2 v3.0.0 L1Unix
URLCIS Amazon Linux 2 v3.0.0 L1Unix