1.0.4 Use non-standard account names - '!= db2inst1' | CIS IBM DB2 OS L1 v1.2.0 | Unix | CONFIGURATION MANAGEMENT |
1.1.1.1 Ensure mounting of cramfs filesystems is disabled | CIS SUSE Linux Enterprise Server 12 L1 v2.1.0 | Unix | CONFIGURATION MANAGEMENT |
1.1.1.1 Ensure mounting of cramfs filesystems is disabled - lsmod | CIS Red Hat EL7 Server L1 v3.0.1 | Unix | CONFIGURATION MANAGEMENT |
1.1.1.3 Ensure mounting of udf filesystems is disabled - lsmod | CIS Red Hat EL7 Server L1 v3.0.1 | Unix | CONFIGURATION MANAGEMENT |
1.1.1.4 Ensure mounting of udf filesystems is disabled - modprobe | CIS Red Hat EL8 Server L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
1.1.23 Disable USB Storage - modprobe | CIS Red Hat EL8 Server L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
1.2.2 Disable the rhnsd Daemon | CIS Red Hat EL8 Server L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
1.3 Ensure 'directory browsing' is set to disabled | CIS IIS 7 L1 v1.8.0 | Windows | CONFIGURATION MANAGEMENT |
2.1 Disable standard services - Comment service comsat in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.1 Disable standard services - Comment service daytime in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.1 Disable standard services - Comment service dtspc in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.1 Disable standard services - Comment service krb5_prop in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.1 Disable standard services - Comment service rexd in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.1 Disable standard services - Comment service rstatd in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.1 Disable standard services - Comment service shell in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.1 Disable standard services - Comment service sprayd in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.1 Disable standard services - Comment service systat in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.1 Disable standard services - Comment service telnet in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.1 Disable standard services - Comment service tftp in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.1.2 Ensure daytime services are not enabled - daytime-udp | CIS SUSE Linux Enterprise Server 12 L1 v2.1.0 | Unix | CONFIGURATION MANAGEMENT |
2.1.3 Ensure discard services are not enabled | CIS SUSE Linux Enterprise Server 12 L1 v2.1.0 | Unix | CONFIGURATION MANAGEMENT |
2.1.6 Ensure rsh server is not enabled - rsh | CIS SUSE Linux Enterprise Server 12 L1 v2.1.0 | Unix | CONFIGURATION MANAGEMENT |
2.1.7 Ensure talk server is not enabled | CIS SUSE Linux Enterprise Server 12 L1 v2.1.0 | Unix | CONFIGURATION MANAGEMENT |
2.1.8 Ensure telnet server is not enabled | CIS SUSE Linux Enterprise Server 12 L1 v2.1.0 | Unix | CONFIGURATION MANAGEMENT |
2.2.3 Ensure rsync service is not enabled | CIS Red Hat EL8 Server L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
2.4 Ensure an industry standard authentication mechanism is used - authenticationMechanisms | CIS MongoDB 3.2 L2 Unix Audit v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
2.4 Ensure an industry standard authentication mechanism is used - authenticationMechanisms | CIS MongoDB 3.2 L2 Windows Audit v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
2.4.8 Disable File Sharing - SMB | CIS Apple OSX 10.11 El Capitan L1 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
2.4.9 Disable Remote Management - 'ARDAgent file does not exist' | CIS Apple OSX 10.11 El Capitan L1 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
2.5 Only enable TFTP if absolutely necessary - Uncomment service tftp in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.9 Only enable Solaris Volume Manager daemons if absolutely necessary - Uncomment service 100230 in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
2.12 Only enable GSS daemon if absolutely necessary - Uncomment service 100234 in /etc/inet/inetd.con (Solaris 7 or later) | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
3.2 Ensure that MongoDB only listens for network connections on authorized interfaces | CIS MongoDB 3.2 L1 Unix Audit v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
3.2 Ensure that MongoDB only listens for network connections on authorized interfaces | CIS MongoDB 3.4 L1 Unix Audit v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
3.3.4 Do not execute expired tasks - 'exec_exp_task = no' | CIS IBM DB2 OS L2 v1.2.0 | Unix | CONFIGURATION MANAGEMENT |
3.4.2.2 Ensure iptables is not enabled - disabled | CIS Red Hat EL8 Workstation L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
3.5.2.4 Ensure iptables are flushed - ip6tables | CIS Red Hat EL7 Server L1 v3.0.1 | Unix | CONFIGURATION MANAGEMENT |
3.5.3.2.3 Ensure outbound and established connections are configured | CIS Red Hat EL7 Server L1 v3.0.1 | Unix | CONFIGURATION MANAGEMENT |
3.5.4 Ensure TIPC is disabled | CIS SUSE Linux Enterprise Server 12 L1 v2.1.0 | Unix | CONFIGURATION MANAGEMENT |
3.11 Only enable other RPC-based services if absolutely necessary - Ensure file /etc/rc2.d/S71rpc does NOT exist. | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
4.6 Ensure nfs server is not running | CIS Apple OSX 10.10 Yosemite L1 v1.2.0 | Unix | CONFIGURATION MANAGEMENT |
4.31 init.ora - 'sec_return_server_release_banner = FALSE' | CIS v1.1.0 Oracle 11g OS L2 | Unix | CONFIGURATION MANAGEMENT |
5.13 OAS - 'SSL Version - Set SSL version ssl_version = 3.0' | CIS v1.1.0 Oracle 11g OS Windows Level 2 | Windows | CONFIGURATION MANAGEMENT |
6.1 Ensure that the SQL Server component to SharePoint is set to listen on non-default ports, with the defaults (UDP 1434 and TCP 1433) disabled | CIS Microsoft SharePoint 2019 DB v1.0.0 | MS_SQLDB | CONFIGURATION MANAGEMENT |
6.4 Ensure that server-side scripting is disabled if not needed | CIS MongoDB 3.4 L2 Unix Audit v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
6.5 Ensure The 'test' database is not installed | CIS MongoDB 3.2 Database Audit L2 v1.0.0 | MongoDB | CONFIGURATION MANAGEMENT |
9.10 Check for Presence of User .rhosts Files | CIS Solaris 11 L1 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
9.21 Check for Presence of User .forward Files | CIS Solaris 11 L1 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
18.6.5.1 (L2) Ensure 'Enable Font Providers' is set to 'Disabled' | CIS Microsoft Windows Server 2022 v3.0.0 L2 Domain Controller | Windows | CONFIGURATION MANAGEMENT |
Disable new DMA devices when this computer is locked | MSCT Windows 10 1909 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |