| --info-zone | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| /usr/sbin/aide --check | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Check /etc/fstab for noexec | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| conf files. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| creat b32 EPERM | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| daemon | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| fchownat b32 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| fremovexattr b64 auid>=1000 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| fsetxattr b32 auid>=1000 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| ftruncate b32 EACCES | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| ftruncate b64 EPERM | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| lchown b64 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| lremovexattr b32 auid>=1000 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| ls -la /etc/cron.* | grep aide | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| lsetxattr b64 auid>=1000 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| maxpoll | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| permissive | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| pwquality.conf | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| removexattr b64 auid=0 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| renameat b32 auid>=1000 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| RHEL-08-040070 - The RHEL 8 file system automounter must be disabled unless required. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | IDENTIFICATION AND AUTHENTICATION |
| RHEL-08-040122 - RHEL 8 must mount /dev/shm with the noexec option. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040123 - RHEL 8 must mount /tmp with the nodev option. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040129 - RHEL 8 must mount /var/log/audit with the nodev option. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040130 - RHEL 8 must mount /var/log/audit with the nosuid option. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040132 - RHEL 8 must mount /var/tmp with the nodev option. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040134 - RHEL 8 must mount /var/tmp with the noexec option. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040136 - The RHEL 8 fapolicy module must be enabled. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040137 - The RHEL 8 fapolicy module must be configured to employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040141 - RHEL 8 must enable the USBGuard. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | IDENTIFICATION AND AUTHENTICATION |
| RHEL-08-040190 - The Trivial File Transfer Protocol (TFTP) server package must not be installed if not required for RHEL 8 operational support. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040210 - RHEL 8 must prevent IPv6 Internet Control Message Protocol (ICMP) redirect messages from being accepted. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040250 - RHEL 8 must not forward IPv6 source-routed packets by default. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040261 - RHEL 8 must not accept router advertisements on all IPv6 interfaces. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040283 - RHEL 8 must restrict exposed kernel pointer addresses access. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040284 - RHEL 8 must disable the use of user namespaces. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040286 - RHEL 8 must enable hardening for the Berkeley Packet Filter Just-in-time compiler. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040340 - RHEL 8 remote X connections for interactive users must be disabled unless to fulfill documented and validated mission requirements. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040390 - The tuned package must not be installed unless mission essential on RHEL 8. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-08-040400 - RHEL 8 must prevent nonprivileged users from executing privileged functions, including disabling, circumventing, or altering implemented security safeguards/countermeasures. | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | ACCESS CONTROL |
| rmdir b64 auid>=1000 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| rsyslogd | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| server | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| sestatus | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| sudoers | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| system-auth password-auth | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| truncate b32 EPERM | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| unlink b64 auid>=1000 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| unlinkat b64 auid>=1000 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| update-crypto-policies | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
