Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Audits
Item Search
Audits
Item Search
Filters (1)
Description
Filename
Plugin
References
Control ID
Relevance
Description
Plugin
Filename
References (Active)
Search by References
Clear All
‹‹ Previous
Previous
Page 5 of 477
• 23845 Total
Next
Next ››
Name
Audit Name
Plugin
Category
DG0003-ORACLE11 - The latest security patches should be installed.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0013-ORACLE11 - Database backup procedures should be defined, documented and implemented.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0013-ORACLE11 - Database backup procedures should be defined, documented and implemented.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0020-ORACLE11 - Backup and recovery procedures should be developed, documented, implemented and periodically tested.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0021-ORACLE11 - A baseline of database application software should be documented and maintained.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0025-ORACLE11 - DBMS cryptography must be NIST FIPS 140-2 validated.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0032-ORACLE11 - Audit records should be restricted to authorized individuals - 'AUD$ table access is restricted'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0042-ORACLE11 - Use of the DBMS software installation account should be restricted to DBMS software installation, upgrade and maintenance actions.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0050-ORACLE11 - Database software, applications and configuration files should be monitored to discover unauthorized changes.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0053-ORACLE11 - A single database connection configuration file should not be used to configure all database clients.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0064-ORACLE11 - DBMS backup and restoration files should be protected from unauthorized access.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0069-ORACLE11 - Procedures and restrictions for import of production data to development databases should be documented, implemented and followed.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0069-ORACLE11 - Procedures and restrictions for import of production data to development databases should be documented, implemented and followed.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0073-ORACLE11 - Database accounts should not specify account lock times less than the site-approved minimum - 'Account lockout is < 3'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0074-ORACLE11 - Unapproved inactive or expired database accounts should not be found on the database.
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0075-ORACLE11 - Unauthorized database links should not be defined and active - 'No external database links exist'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0083-ORACLE11 - Automated notification of suspicious activity detected in the audit trail should be implemented.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0090-ORACLE11 - Sensitive information stored in the database should be protected by encryption.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0097-ORACLE11 - Plans and procedures for testing DBMS installations, upgrades and patches should be defined and followed prior to production implementation.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0101-ORACLE11 - OS accounts used to execute external procedures should be assigned minimum privileges.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0120-ORACLE11 - Unauthorized access to external database objects should be removed from application user roles.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0122-ORACLE11 - Access to sensitive data should be restricted to authorized users identified by the Information Owner - 'controlfile'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0124-ORACLE11 - Use of DBA accounts should be restricted to administrative activities.
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0127-ORACLE11 - DBMS account passwords should not be set to easily guessed words or values - 'limit'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0127-ORACLE11 - DBMS account passwords should not be set to easily guessed words or values - 'profile'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0140-ORACLE11 - Access to DBMS security data should be audited.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0155-ORACLE11 - The DBMS should have configured all applicable settings to use trusted files, functions, features, or other components during startup, shutdown, aborts, or other unplanned interruptions.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0157-ORACLE11 - Remote DBMS administration should be documented and authorized or disabled.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0157-ORACLE11 - Remote DBMS administration should be documented and authorized or disabled.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0159-ORACLE11 - Remote administrative access to the database should be monitored by the IAO or IAM.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0165-ORACLE11 - DBMS symmetric keys should be protected in accordance with NSA or NIST-approved key management technology or processes.
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0171-ORACLE11 - The DBMS should not have a connection defined to access or be accessed by a DBMS at a different classification level.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0172-ORACLE11 - Changes to DBMS security labels should be audited.
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0175-ORACLE11 - The DBMS host platform and other dependent applications should be configured in compliance with applicable STIG requirements.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0176-ORACLE11 - The DBMS audit logs should be included in backup operations.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0190-ORACLE11 - Credentials stored and used by the DBMS to access remote databases or applications should be authorized and restricted to authorized users.
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0192-ORACLE11 - Remote database or other external access should use fully-qualified names - 'global_names = true'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0194-ORACLE11 - Privileges assigned to developers on shared production and development DBMS hosts and the DBMS should be monitored every three months or more frequently for unauthorized changes.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0198-ORACLE11 - Remote administration of the DBMS should be restricted to known, dedicated and encrypted network addresses and ports.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DO0238-ORACLE11 - The directories assigned to the LOG_ARCHIVE_DEST* parameters should be protected from unauthorized access - 'log_archive_duplex_dest parameter is not configured'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DO0250-ORACLE11 - Fixed user and public database links should be authorized for use - 'sys.dba_repcatlog count = 0'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DO0260-ORACLE11 - A minimum of two Oracle control files should be defined and configured to be stored on separate, archived physical disks or archived directories on a RAID device.
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DO3546-ORACLE11 - The Oracle REMOTE_LOGIN_PASSWORDFILE parameter should be set to EXCLUSIVE or NONE - 'remote_login_passwordfile = exclusive or none'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DO3696-ORACLE11 - The Oracle RESOURCE_LIMIT parameter should be set to TRUE - 'resource_limit = true'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
WA000-WWA026 A22 - The httpd.conf StartServers directive must be set properly.
DISA STIG Apache Server 2.2 Unix v1r11 Middleware
Unix
WA000-WWA032 A22 - The httpd.conf MaxClients directive must be set properly.
DISA STIG Apache Server 2.2 Unix v1r11 Middleware
Unix
WA000-WWA050 A22 - All interactive programs must be placed in a designated directory with appropriate permissions - conf
DISA STIG Apache Server 2.2 Unix v1r11 Middleware
Unix
WA000-WWA060 A22 - The HTTP request message body size must be limited.
DISA STIG Apache Server 2.2 Unix v1r11 Middleware
Unix
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\inetpub\wwwroot\scripts'
DISA STIG IIS 6.0 Server v6r16
Windows
CONFIGURATION MANAGEMENT
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\system32\inetsrv'
DISA STIG IIS 6.0 Server v6r16
Windows
CONFIGURATION MANAGEMENT
‹‹ Previous
Previous
Page 5 of 477
• 23845 Total
Next
Next ››
