Detections
Analytics

Revision 1.35

Feb 8, 2024
Functional Update
  • 2.4 Ensure nonessential services are removed or masked
  • 3.1.1 Ensure system is checked to determine if IPv6 is enabled
  • 3.5.2.10 Ensure nftables rules are permanent - hook forward
  • 3.5.2.10 Ensure nftables rules are permanent - hook input
  • 3.5.2.10 Ensure nftables rules are permanent - hook output
  • 3.5.2.3 Ensure iptables are flushed with nftables
  • 3.5.2.7 Ensure nftables outbound and established connections are configured
  • 3.5.3.2.2 Ensure iptables loopback traffic is configured
  • 3.5.3.2.3 Ensure iptables outbound and established connections are configured
  • 3.5.3.2.4 Ensure iptables firewall rules exist for all open ports
  • 3.5.3.3.2 Ensure ip6tables loopback traffic is configured
  • 3.5.3.3.3 Ensure ip6tables outbound and established connections are configured
  • 3.5.3.3.4 Ensure ip6tables firewall rules exist for all open ports
  • 4.2.1.6 Ensure journald log rotation is configured per site policy