Detections
Analytics
CIS BIND DNS v1.0.0 L2 Caching Only Name Server
Audit Details
Name: CIS BIND DNS v1.0.0 L2 Caching Only Name Server
Updated: 4/12/2023
Authority: CIS
Plugin: Unix
Revision: 1.6
Estimated Item Count: 8
File Details
Filename: CIS_ISC_BIND_DNS_Server_9.11_Benchmark_v1.0.0_L2_CachingOnly.audit
Size: 23.9 kB
MD5: 7689d7cfc0efa5687c968dbfa353ed84
SHA256: e0b21bb7c3f0b456811ada22cccce415a65101364868068bcd1acf1c81314cea
Audit Items
| Description | Categories |
|---|---|
| 1.4 Use Secure Upstream Caching DNS Servers | ACCESS CONTROL |
| 2.9 Isolate BIND with chroot'ed Subdirectory | ACCESS CONTROL |
| 10.1 Ensure SELinux Is Enabled in Enforcing Mode - config file | ACCESS CONTROL |
| 10.1 Ensure SELinux Is Enabled in Enforcing Mode - current mode | ACCESS CONTROL |
| 10.2 Ensure BIND Processes Run in the named_t Confined Context Type | ACCESS CONTROL |
| 10.3 Ensure the named_t Process Type is Not in Permissive Mode | ACCESS CONTROL |
| 10.4 Ensure Only the Necessary SELinux Booleans are Enabled | SYSTEM AND INFORMATION INTEGRITY |
| CIS_ISC_BIND_DNS_Server_9.11_Benchmark_v1.0.0_L2_CachingOnly.audit |