Detections
Analytics

CCI|CCI-000225

Title

Employ the principle of least privilege, allowing only authorized accesses for users (or processes acting on behalf of users) which are necessary to accomplish assigned organizational tasks.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
GEN000000-AIX00080 - The SYSTEM attribute must not be set to NONE for any account.UnixDISA STIG AIX 5.3 v1r2
GEN000000-AIX00080 - The SYSTEM attribute must not be set to NONE for any account.UnixDISA STIG AIX 6.1 v1r14
GEN000000-AIX0085 - The /etc/netsvc.conf file must be root owned.UnixDISA STIG AIX 5.3 v1r2
GEN000000-AIX0085 - The /etc/netsvc.conf file must be root owned.UnixDISA STIG AIX 6.1 v1r14
GEN000000-AIX0090 - The /etc/netsvc.conf file must be group-owned by bin, sys, or system.UnixDISA STIG AIX 6.1 v1r14
GEN000000-AIX0090 - The /etc/netsvc.conf file must be group-owned by bin, sys, or system.UnixDISA STIG AIX 5.3 v1r2
GEN000000-AIX0100 - The /etc/netsvc.conf file must have mode 0644 or less permissive.UnixDISA STIG AIX 6.1 v1r14
GEN000000-AIX0100 - The /etc/netsvc.conf file must have mode 0644 or less permissive.UnixDISA STIG AIX 5.3 v1r2
GEN000000-AIX0110 - The /etc/netsvc.conf file must not have an extended ACL.UnixDISA STIG AIX 6.1 v1r14
GEN000000-AIX0110 - The /etc/netsvc.conf file must not have an extended ACL.UnixDISA STIG AIX 5.3 v1r2
GEN000000-AIX0320 - The /etc/ftpaccess.ctl file must be owned by root.UnixDISA STIG AIX 6.1 v1r14
GEN000000-AIX0320 - The /etc/ftpaccess.ctl file must be owned by root.UnixDISA STIG AIX 5.3 v1r2
GEN000000-AIX0330 - The /etc/ftpaccess.ctl file must be group-owned by bin, sys, or system.UnixDISA STIG AIX 6.1 v1r14
GEN000000-AIX0330 - The /etc/ftpaccess.ctl file must be group-owned by bin, sys, or system.UnixDISA STIG AIX 5.3 v1r2
GEN000000-AIX0340 - The /etc/ftpaccess.ctl file must have mode 0640 or less permissive.UnixDISA STIG AIX 5.3 v1r2
GEN000000-AIX0340 - The /etc/ftpaccess.ctl file must have mode 0640 or less permissive.UnixDISA STIG AIX 6.1 v1r14
GEN000000-AIX0350 - The /etc/ftpaccess.ctl file must not have an extended ACL.UnixDISA STIG AIX 6.1 v1r14
GEN000000-AIX0350 - The /etc/ftpaccess.ctl file must not have an extended ACL.UnixDISA STIG AIX 5.3 v1r2
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - '/etc/passwd - halt'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - '/etc/passwd - reboot'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - '/etc/passwd - shutdown'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - '/etc/shadow - halt'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - '/etc/shadow - reboot'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - '/etc/shadow - shutdown'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - /etc/passwd halt'UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - /etc/passwd reboot'UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - /etc/passwd shutdown'UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - /etc/shadow halt'UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - /etc/shadow reboot'UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - /etc/shadow shutdown'UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX00400 - The /etc/security/access.conf file must be owned by root.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX00400 - The /etc/security/access.conf file must be owned by root.UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX00420 - The /etc/security/access.conf file must have a privileged group owner.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX00420 - The /etc/security/access.conf file must have a privileged group owner.UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX00440 - The /etc/security/access.conf file must have mode 0640 or less permissive.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX00440 - The /etc/security/access.conf file must have mode 0640 or less permissive.UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX00450 - The /etc/security/access.conf file must not have an extended ACL.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX00450 - The access.conf file must not have an extended ACL.UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX00480 - The /etc/sysctl.conf file must be owned by root.UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX00480 - The /etc/sysctl.conf file must be owned by root.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX00500 - The /etc/sysctl.conf file must be group-owned by root.UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX00500 - The /etc/sysctl.conf file must be group-owned by root.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX001431 - The /etc/gshadow file must be owned by root.UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX001431 - The /etc/gshadow file must be owned by root.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX001432 - The /etc/gshadow file must be group-owned by root.UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX001432 - The /etc/gshadow file must be group-owned by root.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX001433 - The /etc/gshadow file must have mode 0400.UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX001433 - The /etc/gshadow file must have mode 0400.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000000-LNX001434 - The /etc/gshadow file must not have an extended ACL.UnixDISA STIG for Oracle Linux 5 v2r1
GEN000000-LNX001434 - The /etc/gshadow file must not have an extended ACL.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit