Detections
Analytics

Item Search

NameAudit NamePluginCategory
GEN001180 - All network services daemon files must have mode 0755 or less permissive - /usr/sbin/*DISA STIG Solaris 10 X86 v2r4Unix

ACCESS CONTROL

GEN001190 - All network services daemon files must not have extended ACLs - /usr/sbin/*DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN001220 - All system files, programs, and directories must be owned by a system account - /bin/*DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN001240 - System files, programs, and directories must be group-owned by a system group - /etc/*DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN001310 - All library files must not have extended ACLs.DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN001373 - The /etc/nsswitch.conf file must have mode 0644 or less permissive.DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN001393 - The /etc/group file must have mode 0644 or less permissive.DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN001470 - The /etc/passwd file must not contain password hashes.DISA STIG Solaris 10 X86 v2r4Unix

IDENTIFICATION AND AUTHENTICATION

GEN001480 - All users' home directories must have mode 0750 or less permissive.DISA STIG Solaris 10 X86 v2r4Unix

ACCESS CONTROL

GEN001550 - All files and directories contained in user home directories must be group-owned by a group of which the home directory's owner is a member.DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN001560 - All files and directories contained in user's home directories must have mode 0750 or less permissive.DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN001680 - All system start-up files must be group-owned by root, sys, or bin - /etc/init.d/*DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN001780 - Global initialization files must contain the mesg -n or mesg n commands - /etc/bashrcDISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN001780 - Global initialization files must contain the mesg -n or mesg n commands - /etc/environmentDISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN001780 - Global initialization files must contain the mesg -n or mesg n commands - /etc/security/environDISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN001800 - All skeleton files (typically those in /etc/skel) must have mode 0644 or less permissive.DISA STIG Solaris 10 X86 v2r4Unix

ACCESS CONTROL

GEN001980 - The .rhosts, .shosts, hosts.equiv, shosts.equiv, /etc/passwd, /etc/shadow, and/or /etc/group files must not contain a plus (+) without defining entries for NIS+ netgroups - /etc/hosts.equivDISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN002000 - There must be no .netrc files on the system.DISA STIG Solaris 10 X86 v2r4Unix

IDENTIFICATION AND AUTHENTICATION

GEN002210 - All shell files must be group-owned by root, bin, or sys.DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN002715 - System audit tool executables must be owned by root - /usr/sbin/auditDISA STIG Solaris 10 X86 v2r4Unix

AUDIT AND ACCOUNTABILITY

GEN002716 - System audit tool executables must be group-owned by root, bin, or sys - /usr/sbin/auditconfigDISA STIG Solaris 10 X86 v2r4Unix

AUDIT AND ACCOUNTABILITY

GEN002716 - System audit tool executables must be group-owned by root, bin, or sys - /usr/sbin/auditdDISA STIG Solaris 10 X86 v2r4Unix

AUDIT AND ACCOUNTABILITY

GEN002717 - System audit tool executables must have mode 0750 or less permissive - /usr/sbin/auditDISA STIG Solaris 10 X86 v2r4Unix

AUDIT AND ACCOUNTABILITY

SOL-11.1-020020 - The system must verify that package updates are digitally signed.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-020100 - The legacy remote network access utilities daemons must not be installed.DISA STIG Solaris 11 SPARC v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-020110 - The NIS package must not be installed.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-020120 - The pidgin IM client package must not be installed.DISA STIG Solaris 11 SPARC v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-020150 - The telnet service daemon must not be installed unless required.DISA STIG Solaris 11 SPARC v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-020190 - The operating system must employ automated mechanisms, per organization-defined frequency, to detect the addition of unauthorized components/devices into the operating system.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-020360 - All system start-up files must be owned by root.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-020550 - The .Xauthority utility must only permit access to authorized hosts.DISA STIG Solaris 11 X86 v3r1Unix

ACCESS CONTROL, CONFIGURATION MANAGEMENT

SOL-11.1-030010 - The graphical login service provides the capability of logging into the system using an X-Windows type interface from the console. If graphical login access for the console is required, the service must be in local-only mode.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-030040 - Systems services that are not required must be disabled.DISA STIG Solaris 11 SPARC v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-040060 - The system must require at least eight characters be changed between the old and new passwords during a password change.DISA STIG Solaris 11 X86 v3r1Unix

IDENTIFICATION AND AUTHENTICATION

SOL-11.1-040110 - The system must require passwords to contain no more than three consecutive repeating characters.DISA STIG Solaris 11 SPARC v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-040110 - The system must require passwords to contain no more than three consecutive repeating characters.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-040160 - The delay between login prompts following a failed login attempt must be at least 4 seconds.DISA STIG Solaris 11 SPARC v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-040270 - The value mesg n must be configured as the default setting for all users.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-040310 - Login services for serial ports must be disabled.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-040360 - Direct root account login must not be permitted for SSH access.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-050040 - The system must not respond to ICMP broadcast netmask requests.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-050060 - The system must not respond to multicast echo requests.DISA STIG Solaris 11 SPARC v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-050100 - The system must disable TCP reverse IP source routing.DISA STIG Solaris 11 SPARC v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-070030 - Permissions on user . (hidden) files must be 750 or less permissive.DISA STIG Solaris 11 SPARC v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-070060 - Groups assigned to users must exist in the /etc/group file.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-070120 - Duplicate Group IDs (GIDs) must not exist for multiple groups.DISA STIG Solaris 11 SPARC v3r1Unix

CONFIGURATION MANAGEMENT

SOL-11.1-070190 - All valid SUID/SGID files must be documented.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT

UBTU-16-030730 - If the Trivial File Transfer Protocol (TFTP) server is required, the TFTP daemon must be configured to operate in secure mode.DISA STIG Ubuntu 16.04 LTS v2r3Unix

CONFIGURATION MANAGEMENT

UBTU-18-010002 - The Ubuntu operating system must initiate session audits at system startup.DISA STIG Ubuntu 18.04 LTS v2r15Unix

AUDIT AND ACCOUNTABILITY

UBTU-18-010105 - The Ubuntu operating system must not have the telnet package installed.DISA STIG Ubuntu 18.04 LTS v2r15Unix

IDENTIFICATION AND AUTHENTICATION