Detections
Analytics

CIS Oracle Solaris 11.4 L1 v1.0.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Oracle Solaris 11.4 L1 v1.0.0

Updated: 3/18/2024

Authority: CIS

Plugin: Unix

Revision: 1.14

Estimated Item Count: 179

File Details

Filename: CIS_Oracle_Solaris_11.4_L1_v1.0.0.audit

Size: 299 kB

MD5: 81389cb4310adc4f2ba070c41a91c744
SHA256: b5267d88cb94dd18262cb848d243bf94311840c8fa4e7fd4e0605cf4b602d865

Audit Items

DescriptionCategories
1.1 Use the Latest Package Updates
2.1 Configure TCP Wrappers - hosts.allow
2.1 Configure TCP Wrappers - hosts.deny
2.1 Configure TCP Wrappers - inetadm
2.1 Configure TCP Wrappers - rpc/bind
2.2 Disable Local-only Graphical Login Environment
2.3 Configure sendmail Service for Local-Only Mode
2.4 Disable RPC Encryption Key
2.5 Disable Generic Security Services (GSS)
2.6 Disable Apache Service
2.7 Disable Kerberos TGT Expiration Warning
2.8 Disable NIS Client Services - nis client
2.8 Disable NIS Client Services - nis domain
2.9 Disable NIS Server Services - nis domain
2.9 Disable NIS Server Services - nis server
2.10 Disable Removable Volume Manager - rmvolmgr
2.10 Disable Removable Volume Manager - smserver
2.11 Disable automount Service
2.12 Disable Telnet Service
3.1 Disable Response to Broadcast ICMPv4 Echo Request
3.2 Disable Response to ICMP Broadcast Netmask Requests
3.3 Enable Strong TCP Sequence Number Generation - /etc/default/inetinit
3.3 Enable Strong TCP Sequence Number Generation - ipadm
3.4 Disable Response to ICMP Broadcast Timestamp Requests
3.5 Disable Source Packet Forwarding - ipv4
3.5 Disable Source Packet Forwarding - ipv6
3.6 Disable Directed Broadcast Packet Forwarding
3.7 Enable Stack Protection - nxheap
3.7 Enable Stack Protection - nxstack
3.8 Restrict Core Dumps to Protected Directory - /var/share/cores
3.8 Restrict Core Dumps to Protected Directory - core diagnostic alert
3.8 Restrict Core Dumps to Protected Directory - diagnostic core dumps
3.8 Restrict Core Dumps to Protected Directory - global core dump logging
3.8 Restrict Core Dumps to Protected Directory - global core dumps
3.8 Restrict Core Dumps to Protected Directory - global core file content
3.8 Restrict Core Dumps to Protected Directory - global core file pattern
3.8 Restrict Core Dumps to Protected Directory - global setid core dumps
3.8 Restrict Core Dumps to Protected Directory - init core file content
3.8 Restrict Core Dumps to Protected Directory - init core file pattern
3.8 Restrict Core Dumps to Protected Directory - kernel zone core dumps
3.8 Restrict Core Dumps to Protected Directory - kernel zone core file pattern
3.8 Restrict Core Dumps to Protected Directory - per-process core dumps
3.8 Restrict Core Dumps to Protected Directory - per-process setid core dumps
3.8 Restrict Core Dumps to Protected Directory - retention policy
3.9 Disable Response to ICMP Timestamp Requests
3.10 Disable Response to Multicast Echo Request - ipv4
3.10 Disable Response to Multicast Echo Request - ipv6
3.11 Ignore ICMP Redirect Messages - ipv4
3.11 Ignore ICMP Redirect Messages - ipv6
3.12 Set Strict Multihoming - ipv4