CCI|CCI-000162

Title

Protect audit information from unauthorized access.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
2.001 - Permissions for event logs must conform to minimum requirements - application.evtxWindowsDISA Windows Vista STIG v6r41
2.001 - Permissions for event logs must conform to minimum requirements - security.evtxWindowsDISA Windows Vista STIG v6r41
2.001 - Permissions for event logs must conform to minimum requirements - system.evtxWindowsDISA Windows Vista STIG v6r41
4.1.4.1 Ensure Audit logs are owned by root and mode 0600 or less permissiveUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
AIX7-00-002013 - Audit logs on the AIX system must be owned by root.UnixDISA STIG AIX 7.x v3r1
AIX7-00-002014 - Audit logs on the AIX system must be group-owned by system.UnixDISA STIG AIX 7.x v3r1
AIX7-00-002015 - Audit logs on the AIX system must be set to 660 or less permissive.UnixDISA STIG AIX 7.x v3r1
AOSX-13-000331 - The macOS system must be configured with audit log files owned by root.UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-000332 - The macOS system must be configured with audit log folders owned by root.UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-000333 - The macOS system must be configured with audit log files group-owned by wheel.UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-000334 - The macOS system must be configured with audit log folders group-owned by wheel.UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-000335 - The macOS system must be configured with audit log files set to mode 440 or less permissive.UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-000336 - The macOS system must be configured with audit log folders set to mode 700 or less permissive.UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-000337 - The macOS system must be configured so that log files must not contain access control lists (ACLs).UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-000338 - The macOS system must be configured so that log folders must not contain access control lists (ACLs).UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-14-000030 - The macOS system must be configured so that log files must not contain access control lists (ACLs).UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-000031 - The macOS system must be configured so that log folders must not contain access control lists (ACLs).UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-001012 - The macOS system must be configured with audit log files owned by root.UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-001013 - The macOS system must be configured with audit log folders owned by root.UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-001014 - The macOS system must be configured with audit log files group-owned by wheel.UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-001015 - The macOS system must be configured with audit log folders group-owned by wheel.UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-001016 - The macOS system must be configured with audit log files set to mode 440 or less permissive.UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-001017 - The macOS system must be configured with audit log folders set to mode 700 or less permissive.UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-15-000030 - The macOS system must be configured so that log files must not contain access control lists (ACLs).UnixDISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-000031 - The macOS system must be configured so that log folders must not contain access control lists (ACLs).UnixDISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-001012 - The macOS system must be configured with audit log files owned by root.UnixDISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-001013 - The macOS system must be configured with audit log folders owned by root.UnixDISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-001014 - The macOS system must be configured with audit log files group-owned by wheel.UnixDISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-001015 - The macOS system must be configured with audit log folders group-owned by wheel.UnixDISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-001016 - The macOS system must be configured with audit log files set to mode 440 or less permissive.UnixDISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-001017 - The macOS system must be configured with audit log folders set to mode 700 or less permissive.UnixDISA STIG Apple Mac OSX 10.15 v1r10
APPL-11-000030 - The macOS system must be configured so that log files must not contain access control lists (ACLs).UnixDISA STIG Apple macOS 11 v1r5
APPL-11-000030 - The macOS system must be configured so that log files must not contain access control lists (ACLs).UnixDISA STIG Apple macOS 11 v1r8
APPL-11-000031 - The macOS system must be configured so that log folders must not contain access control lists (ACLs).UnixDISA STIG Apple macOS 11 v1r8
APPL-11-000031 - The macOS system must be configured so that log folders must not contain access control lists (ACLs).UnixDISA STIG Apple macOS 11 v1r5
APPL-11-001012 - The macOS system must be configured with audit log files owned by root.UnixDISA STIG Apple macOS 11 v1r5
APPL-11-001012 - The macOS system must be configured with audit log files owned by root.UnixDISA STIG Apple macOS 11 v1r8
APPL-11-001013 - The macOS system must be configured with audit log folders owned by root.UnixDISA STIG Apple macOS 11 v1r5
APPL-11-001013 - The macOS system must be configured with audit log folders owned by root.UnixDISA STIG Apple macOS 11 v1r8
APPL-11-001014 - The macOS system must be configured with audit log files group-owned by wheel.UnixDISA STIG Apple macOS 11 v1r5
APPL-11-001014 - The macOS system must be configured with audit log files group-owned by wheel.UnixDISA STIG Apple macOS 11 v1r8
APPL-11-001015 - The macOS system must be configured with audit log folders group-owned by wheel.UnixDISA STIG Apple macOS 11 v1r5
APPL-11-001015 - The macOS system must be configured with audit log folders group-owned by wheel.UnixDISA STIG Apple macOS 11 v1r8
APPL-11-001016 - The macOS system must be configured with audit log files set to mode 440 or less permissive.UnixDISA STIG Apple macOS 11 v1r5
APPL-11-001016 - The macOS system must be configured with audit log files set to mode 440 or less permissive.UnixDISA STIG Apple macOS 11 v1r8
APPL-11-001017 - The macOS system must be configured with audit log folders set to mode 700 or less permissive.UnixDISA STIG Apple macOS 11 v1r5
APPL-11-001017 - The macOS system must be configured with audit log folders set to mode 700 or less permissive.UnixDISA STIG Apple macOS 11 v1r8
APPL-12-000030 - The macOS system must be configured so that log files must not contain access control lists (ACLs).UnixDISA STIG Apple macOS 12 v1r9
APPL-12-000031 - The macOS system must be configured so that log folders must not contain access control lists (ACLs).UnixDISA STIG Apple macOS 12 v1r9
APPL-12-001012 - The macOS system must be configured with audit log files owned by root.UnixDISA STIG Apple macOS 12 v1r9