Detections
Analytics

CIS IBM AIX 7.1 L2 v2.0.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS IBM AIX 7.1 L2 v2.0.0

Updated: 4/12/2023

Authority: Operating Systems and Applications

Plugin: Unix

Revision: 1.5

Estimated Item Count: 80

File Details

Filename: CIS_AIX_7.1_Benchmark_v2.0.0_Level_2.audit

Size: 144 kB

MD5: e5c6bb9d3e2bc2bc2fc6c8dc4ed52c5f
SHA256: 41e3176c92816ca1880d519937561e2521cace84b81fb8ba704d7a8bbe578cae

Audit Items

DescriptionCategories
3.2.1.1 Privilege escalation: enhanced RBAC
3.2.2.1 Privilege escalation: sudo
3.2.2.2 Ensure sudo log file is active
3.2.2.3 Ensure sudo commands use pty
3.2.3 Special Permissions Management - suid, sgid, acl, and trusted-bit files and programs
3.2.5 Services - at access is root only - at.deny does not exist
3.2.5 Services - at access is root only - root exists in at.allow
3.2.7 Services - crontab access is root only - adm exists in cron.allow
3.2.7 Services - crontab access is root only - cron.deny does not exist
3.2.7 Services - crontab access is root only - root exists in cron.allow
3.3.1.2 dt
3.3.1.3 piobe
3.3.1.5 rcnfs
3.3.2.2 aixmibd
3.3.2.3 dhcpcd
3.3.2.4 dhcprd
3.3.2.5 dhcpsd
3.3.2.6 dpid2
3.3.2.7 gated
3.3.2.8 hostmibd
3.3.2.10 mrouted
3.3.2.11 named
3.3.2.12 portmap
3.3.2.13 routed
3.3.2.14 rwhod
3.3.2.15 sendmail
3.3.2.16 snmpd
3.3.2.17 snmpmibd
3.3.3.1 autoconf6
3.3.3.2 ndpd-host
3.3.3.3 ndpd-router
3.3.5.1 NFS - de-install NFS server - /etc/exports
3.3.5.1 NFS - de-install NFS server - server installed
3.3.5.4 NFS - restrict NFS access
3.3.5.6 NFS - secure NFS
3.5.1.1 EFS - implementation - CLiC installed
3.5.1.1 EFS - implementation - CLiC kernel extension loaded
3.6.1.1 CDE - de-installing CDE
3.6.1.2 /etc/inetd.conf - cmsd
3.6.1.3 CDE - disabling dtlogin
3.6.1.4 /etc/inetd.conf - dtspc
3.6.1.6 CDE - remote GUI login disabled
3.6.2.2 OpenSSH - PermitRootLogin
3.6.5.1.1 NIS - de-install NIS client
3.6.5.1.2 NIS - de-install NIS server
3.6.5.1.3 NIS - remove NIS markers from password and group files - /etc/group
3.6.5.1.3 NIS - remove NIS markers from password and group files - /etc/passwd
3.6.5.1.4 NIS - restrict NIS server communication - file permissions
3.6.5.1.4 NIS - restrict NIS server communication - review contents
3.6.5.2.1 SNMP - disable private community string