| /etc/selinux/config | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Check augenrules permissions | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Check cron.monthly owner | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Check crontab group | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Check crontab owner | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Check for Bind | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Check for chmod | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Check for fchmod | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Check for ipsec | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Check for NFS mounted dirs | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Check rsyslogd group | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Check that virtual system calls are disabled by default to persist in kernel updates | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| Nullok found in system-auth | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | |
| package | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| removexattr b32 auid>=1000 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| RHEL-09-212015 - RHEL 9 must disable the ability of systemd to spawn an interactive boot process. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-212045 - RHEL 9 must clear SLUB/SLAB objects to prevent use-after-free attacks. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| RHEL-09-213010 - RHEL 9 must restrict access to the kernel message buffer. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| RHEL-09-213060 - RHEL 9 must disable the Stream Control Transmission Protocol (SCTP) kernel module. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-213070 - RHEL 9 must implement address space layout randomization (ASLR) to protect its memory from unauthorized code execution. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY |
| RHEL-09-213075 - RHEL 9 must disable access to network bpf system call from nonprivileged processes. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| RHEL-09-213085 - RHEL 9 must disable core dump backtraces. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-213095 - RHEL 9 must disable core dumps for all users. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-214020 - RHEL 9 must check the GPG signature of locally installed software packages before installation. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-214030 - RHEL 9 must be configured so that the cryptographic hashes of system files match vendor values. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-215025 - RHEL 9 must not have the nfs-utils package installed. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-215040 - RHEL 9 must not have the telnet-server package installed. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-215070 - A graphical display manager must not be installed on RHEL 9 unless approved. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-215085 - RHEL 9 must have the nss-tools package installed. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-215090 - RHEL 9 must have the rng-tools package installed. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-231055 - RHEL 9 must prevent code from being executed on file systems that contain user home directories. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-231080 - RHEL 9 must prevent code from being executed on file systems that are used with removable media. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-231090 - RHEL 9 must prevent files with the setuid and setgid bit set from being executed on file systems that are used with removable media. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-231115 - RHEL 9 must mount /dev/shm with the noexec option. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-231175 - RHEL 9 must mount /var/tmp with the nodev option. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-232015 - RHEL 9 library directories must have mode 755 or less permissive. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-232020 - RHEL 9 library files must have mode 755 or less permissive. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-232030 - RHEL 9 /var/log/messages file must have mode 0640 or less permissive. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| RHEL-09-232045 - All RHEL 9 local initialization files must have mode 0740 or less permissive. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-232060 - RHEL 9 /etc/group- file must have mode 0644 or less permissive to prevent unauthorized access. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-232075 - RHEL 9 /etc/passwd file must have mode 0644 or less permissive to prevent unauthorized access. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-232080 - RHEL 9 /etc/passwd- file must have mode 0644 or less permissive to prevent unauthorized access. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-09-232085 - RHEL 9 /etc/shadow- file must have mode 0000 or less permissive to prevent unauthorized access. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| rmdir b32 auid>=1000 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| rootpw | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| setxattr b32 auid=0 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| setxattr b64 auid=0 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| setxattr b64 auid>=1000 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| unlink b32 auid>=1000 | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
| uvcvideo /bin/false | DISA Red Hat Enterprise Linux 8 STIG v2r1 | Unix | |
