Detections
Analytics

CIS Google Container-Optimized OS v1.2.0 L1 Server

Audit Details

Name: CIS Google Container-Optimized OS v1.2.0 L1 Server

Updated: 11/3/2025

Authority: CIS

Plugin: Unix

Revision: 1.2

Estimated Item Count: 63

File Details

Filename: CIS_Google_Container-Optimized_OS_v1.2.0_L1_Server.audit

Size: 155 kB

MD5: 6fa3809c2fdc79c0a15d27e043d65f67
SHA256: 4eaa0253f36d6fc18defe750d4711157f18ad0c1a4aa533d12daceaa6d8bede8

Audit Changelog

 
Revision 1.2

Nov 3, 2025

Informational Update
  • 1.1.3 Ensure nodev option set on /tmp partition
  • 1.1.4 Ensure nosuid option set on /tmp partition
  • 1.1.5 Ensure noexec option set on /tmp partition
  • 1.5.1.2 Ensure local login warning banner is configured properly
  • 1.5.1.3 Ensure remote login warning banner is configured properly
  • 3.3.3 Ensure iptables is installed
  • 5.1.1 Ensure permissions on /etc/ssh/sshd_config are configured
  • 5.1.10 Ensure SSH root login is disabled
  • 5.1.2 Ensure permissions on SSH private host key files are configured
  • 5.1.3 Ensure permissions on SSH public host key files are configured
  • 5.1.8 Ensure SSH IgnoreRhosts is enabled
  • 5.1.9 Ensure SSH HostbasedAuthentication is disabled
  • 5.5 Ensure access to the su command is restricted
  • 6.2.18 Ensure no duplicate user names exist
  • 6.2.19 Ensure no duplicate group names exist
Miscellaneous
  • Metadata updated.
  • Variables updated.
Revision 1.1

Apr 18, 2025

Miscellaneous
  • Metadata updated.
  • References updated.