CIS Amazon Linux 2 STIG v1.0.0 L3

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Amazon Linux 2 STIG v1.0.0 L3

Updated: 6/24/2025

Authority: CIS

Plugin: Unix

Revision: 1.23

Estimated Item Count: 168

File Details

Filename: CIS_Amazon_Linux_2_STIG_v1.0.0_L3.audit

Size: 405 kB

MD5: fb33514214f934e40d31d5994ca6a017
SHA256: 1f4707d649bdb969e5a79186f2e37c1f1614192eb90656cf475e93aff3b869f6

Audit Changelog

 
Revision 1.23

Jun 24, 2025

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
Revision 1.22

Oct 15, 2024

Functional Update
  • 1.1.21 Ensure all world-writable directories are group-owned.
  • 1.4.3 Ensure boot loader does not allow removable media
Informational Update
  • 1.4.3 Ensure boot loader does not allow removable media
Miscellaneous
  • References updated.
Added
  • 5.2.32 Ensure no '.shosts' files exist on the system.
  • 5.2.33 Ensure no 'shosts.equiv' files exist on the system.
Removed
  • 5.2.32 Ensure no '.shosts' files exist on the system - .shosts files exist on the system
  • 5.2.33 Ensure no 'shosts.equiv' files exist on the system - shosts.equiv files exist on the system
Revision 1.21

Aug 7, 2024

Functional Update
  • 4.5 Ensure system notification is sent out when voume is 75% full
Revision 1.20

Jun 17, 2024

Miscellaneous
  • Metadata updated.
Revision 1.19

Apr 24, 2024

Functional Update
  • 4.5 Ensure system notification is sent out when voume is 75% full
Miscellaneous
  • Metadata updated.
Revision 1.18

Apr 3, 2024

Miscellaneous
  • Metadata updated.
  • Platform check updated.
Revision 1.17

Oct 3, 2023

Functional Update
  • 1.9 Ensure anti-virus is installed and running
Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.16

May 30, 2023

Functional Update
  • 4.8 Enure off-load of audit logs - path
  • 4.8 Enure off-load of audit logs - type
Revision 1.15

May 2, 2023

Functional Update
  • 5.4.1.9 Ensure password expiration is 60 Day maximum for exisiting passwords
Miscellaneous
  • References updated.
Revision 1.14

Apr 12, 2023

Functional Update
  • 5.3.5 Ensure minimum and maximum requirements are set for password changes - difok
  • 5.3.5 Ensure minimum and maximum requirements are set for password changes - maxclassrepeat
  • 5.3.5 Ensure minimum and maximum requirements are set for password changes - maxrepeat
  • 5.3.5 Ensure minimum and maximum requirements are set for password changes - minclass
  • 5.3.5 Ensure minimum and maximum requirements are set for password changes - minlen
  • 5.4.1.10 Ensure delay between logon prompts on failure
  • 5.4.1.6 Ensure encrypted respresentation of passwords is set.
  • 5.4.1.8 Ensure password expiration is 60 Day maximum for new users
  • 5.4.8 Ensure Default user umask is 077
  • 6.2.28 Ensure upon user creation a home directory is assigned.
Miscellaneous
  • Metadata updated.
  • Platform check updated.
  • References updated.
  • Variables updated.