CIS IBM AIX 7.1 L2 v2.0.0

Audit Details

Name: CIS IBM AIX 7.1 L2 v2.0.0

Updated: 9/23/2022

Authority: CIS

Plugin: Unix

Revision: 1.0

Estimated Item Count: 80

File Details

Filename: CIS_AIX_7.1_Benchmark_v2.0.0_Level_2.audit

Size: 168 kB

MD5: 5692fc29d151251f71a118e7174abfec
SHA256: f78ac6a34edfe7a13d6dc1f4992e95756d3b26ec0e06dc6cb6390727ec19037f

Audit Items

DescriptionCategories
3.2.1.1 Privilege escalation: enhanced RBAC

ACCESS CONTROL, MEDIA PROTECTION

3.2.2.1 Privilege escalation: sudo

ACCESS CONTROL

3.2.2.2 Ensure sudo log file is active

AUDIT AND ACCOUNTABILITY

3.2.2.3 Ensure sudo commands use pty

SYSTEM AND INFORMATION INTEGRITY

3.2.3 Special Permissions Management - suid, sgid, acl, and trusted-bit files and programs

ACCESS CONTROL, MEDIA PROTECTION

3.2.5 Services - at access is root only - at.deny does not exist

SYSTEM AND INFORMATION INTEGRITY

3.2.5 Services - at access is root only - root exists in at.allow

SYSTEM AND INFORMATION INTEGRITY

3.2.7 Services - crontab access is root only - adm exists in cron.allow

SYSTEM AND INFORMATION INTEGRITY

3.2.7 Services - crontab access is root only - cron.deny does not exist

SYSTEM AND INFORMATION INTEGRITY

3.2.7 Services - crontab access is root only - root exists in cron.allow

SYSTEM AND INFORMATION INTEGRITY

3.3.1.2 dt

CONFIGURATION MANAGEMENT

3.3.1.3 piobe

CONFIGURATION MANAGEMENT

3.3.1.5 rcnfs

CONFIGURATION MANAGEMENT

3.3.2.2 aixmibd

CONFIGURATION MANAGEMENT

3.3.2.3 dhcpcd

CONFIGURATION MANAGEMENT

3.3.2.4 dhcprd

CONFIGURATION MANAGEMENT

3.3.2.5 dhcpsd

CONFIGURATION MANAGEMENT

3.3.2.6 dpid2

CONFIGURATION MANAGEMENT

3.3.2.7 gated

CONFIGURATION MANAGEMENT

3.3.2.8 hostmibd

CONFIGURATION MANAGEMENT

3.3.2.10 mrouted

CONFIGURATION MANAGEMENT

3.3.2.11 named

CONFIGURATION MANAGEMENT

3.3.2.12 portmap

CONFIGURATION MANAGEMENT

3.3.2.13 routed

CONFIGURATION MANAGEMENT

3.3.2.14 rwhod

CONFIGURATION MANAGEMENT

3.3.2.15 sendmail

CONFIGURATION MANAGEMENT

3.3.2.16 snmpd

CONFIGURATION MANAGEMENT

3.3.2.17 snmpmibd

CONFIGURATION MANAGEMENT

3.3.3.1 autoconf6

CONFIGURATION MANAGEMENT

3.3.3.2 ndpd-host

CONFIGURATION MANAGEMENT

3.3.3.3 ndpd-router

CONFIGURATION MANAGEMENT

3.3.5.1 NFS - de-install NFS server - /etc/exports

CONFIGURATION MANAGEMENT

3.3.5.1 NFS - de-install NFS server - server installed

CONFIGURATION MANAGEMENT

3.3.5.4 NFS - restrict NFS access

CONFIGURATION MANAGEMENT

3.3.5.6 NFS - secure NFS

CONFIGURATION MANAGEMENT

3.5.1.1 EFS - implementation - CLiC installed

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.5.1.1 EFS - implementation - CLiC kernel extension loaded

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.6.1.1 CDE - de-installing CDE

CONFIGURATION MANAGEMENT

3.6.1.2 /etc/inetd.conf - cmsd

CONFIGURATION MANAGEMENT

3.6.1.3 CDE - disabling dtlogin

CONFIGURATION MANAGEMENT

3.6.1.4 /etc/inetd.conf - dtspc

CONFIGURATION MANAGEMENT

3.6.1.6 CDE - remote GUI login disabled

CONFIGURATION MANAGEMENT

3.6.2.2 OpenSSH - PermitRootLogin

ACCESS CONTROL

3.6.5.1.1 NIS - de-install NIS client

CONFIGURATION MANAGEMENT

3.6.5.1.2 NIS - de-install NIS server

CONFIGURATION MANAGEMENT

3.6.5.1.3 NIS - remove NIS markers from password and group files - /etc/group

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

3.6.5.1.3 NIS - remove NIS markers from password and group files - /etc/passwd

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

3.6.5.1.4 NIS - restrict NIS server communication - file permissions

CONFIGURATION MANAGEMENT

3.6.5.1.4 NIS - restrict NIS server communication - review contents

CONFIGURATION MANAGEMENT

3.6.5.2.1 SNMP - disable private community string

CONFIGURATION MANAGEMENT