Detections
Analytics

CIS Amazon Linux 2023 Server L1 v1.0.0

Audit Details

Name: CIS Amazon Linux 2023 Server L1 v1.0.0

Updated: 4/22/2024

Authority: CIS

Plugin: Unix

Revision: 1.8

Estimated Item Count: 180

File Details

Filename: CIS_Amazon_Linux_2023_v1.0.0_L1_Server.audit

Size: 616 kB

MD5: 7b37423792d2abf95ab0eaac712c3d4d
SHA256: 0181c35fde120b582d98fc0577fe8527420682b82bd0b87bea86447acfe4c25f

Audit Changelog

 
Revision 1.8

Apr 22, 2024

Functional Update
  • 5.1.1.6 Ensure rsyslog is configured to send logs to a remote log host
Revision 1.7

Apr 18, 2024

Functional Update
  • 4.6.1.2 Ensure minimum days between password changes is configured
Revision 1.6

Mar 18, 2024

Functional Update
  • 1.4.1 Ensure permissions on bootloader config are configured
  • 4.2.2 Ensure permissions on SSH private host key files are configured
  • 4.2.3 Ensure permissions on SSH public host key files are configured
  • 5.1.3 Ensure all logfiles have appropriate permissions and ownership
  • 6.2.11 Ensure local interactive user dot files access is configured
Revision 1.5

Feb 5, 2024

Functional Update
  • 4.2.20 Ensure SSH Idle Timeout Interval is configured
Revision 1.4

Jan 22, 2024

Functional Update
  • 4.2.20 Ensure SSH Idle Timeout Interval is configured
Miscellaneous
  • Metadata updated.
Revision 1.3

Dec 27, 2023

Functional Update
  • 4.3.2 Ensure sudo commands use pty
  • 4.4.1 Ensure custom authselect profile is used
  • 4.5.2 Ensure lockout for failed password attempts is configured
  • 5.1.2.1.1 Ensure systemd-journal-remote is installed
  • 5.1.2.1.2 Ensure systemd-journal-remote is configured
  • 5.1.2.1.3 Ensure systemd-journal-remote is enabled
  • 5.1.2.1.4 Ensure journald is not configured to receive logs from a remote client
  • 5.1.2.2 Ensure journald service is enabled
  • 5.1.2.3 Ensure journald is configured to compress large log files
  • 5.1.2.4 Ensure journald is configured to write logfiles to persistent disk
  • 5.1.2.5 Ensure journald is not configured to send logs to rsyslog
  • 5.1.2.6 Ensure journald log rotation is configured per site policy
  • 5.1.2.7 Ensure journald default file permissions configured
Revision 1.2

Nov 17, 2023

Functional Update
  • 4.2.10 Ensure SSH PermitUserEnvironment is disabled
  • 4.2.11 Ensure SSH IgnoreRhosts is enabled
  • 4.2.15 Ensure SSH warning banner is configured
  • 4.2.16 Ensure SSH MaxAuthTries is set to 4 or less
  • 4.2.17 Ensure SSH MaxStartups is configured
  • 4.2.18 Ensure SSH MaxSessions is set to 10 or less
  • 4.2.19 Ensure SSH LoginGraceTime is set to one minute or less
  • 4.2.20 Ensure SSH Idle Timeout Interval is configured
  • 4.2.4 Ensure SSH access is limited
  • 4.2.5 Ensure SSH LogLevel is appropriate
  • 4.2.6 Ensure SSH PAM is enabled
  • 4.2.7 Ensure SSH root login is disabled
  • 4.2.8 Ensure SSH HostbasedAuthentication is disabled
  • 4.2.9 Ensure SSH PermitEmptyPasswords is disabled
Revision 1.1

Nov 6, 2023

Functional Update
  • 1.6.1.4 Ensure the SELinux mode is not disabled