CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Workstation

Audit Details

Name: CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Workstation

Updated: 4/12/2024

Authority: CIS

Plugin: Unix

Revision: 1.0

Estimated Item Count: 234

File Details

Filename: CIS_Red_Hat_Enterprise_Linux_7_v4.0.0_L1_Workstation.audit

Size: 954 kB

MD5: 3e2b621c224db6492d33cfae09b73cbe

SHA256: f09aad23aac796058f1b304d1f4bb016126029e1aa5bb93a46cf0a93ae923bc1

Audit Items

Description	Categories
1.1.1.1 Ensure cramfs kernel module is not available	CONFIGURATION MANAGEMENT
1.1.1.2 Ensure freevxfs kernel module is not available	CONFIGURATION MANAGEMENT
1.1.1.3 Ensure hfs kernel module is not available	CONFIGURATION MANAGEMENT
1.1.1.4 Ensure hfsplus kernel module is not available	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure jffs2 kernel module is not available	CONFIGURATION MANAGEMENT
1.1.2.1.1 Ensure /tmp is a separate partition	CONFIGURATION MANAGEMENT
1.1.2.1.2 Ensure nodev option set on /tmp partition	CONFIGURATION MANAGEMENT
1.1.2.1.3 Ensure nosuid option set on /tmp partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.1.4 Ensure noexec option set on /tmp partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.2.1 Ensure /dev/shm is a separate partition	CONFIGURATION MANAGEMENT
1.1.2.2.2 Ensure nodev option set on /dev/shm partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.2.3 Ensure nosuid option set on /dev/shm partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.2.4 Ensure noexec option set on /dev/shm partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.3.2 Ensure nodev option set on /home partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.3.3 Ensure nosuid option set on /home partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.4.2 Ensure nodev option set on /var partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.4.3 Ensure nosuid option set on /var partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.5.2 Ensure nodev option set on /var/tmp partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.5.3 Ensure nosuid option set on /var/tmp partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.5.4 Ensure noexec option set on /var/tmp partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.6.2 Ensure nodev option set on /var/log partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.6.3 Ensure nosuid option set on /var/log partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.6.4 Ensure noexec option set on /var/log partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.7.2 Ensure nodev option set on /var/log/audit partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.7.3 Ensure nosuid option set on /var/log/audit partition	ACCESS CONTROL, MEDIA PROTECTION
1.1.2.7.4 Ensure noexec option set on /var/log/audit partition	ACCESS CONTROL, MEDIA PROTECTION
1.2.1 Ensure GPG keys are configured	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
1.2.2 Ensure gpgcheck is globally activated	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
1.2.4 Ensure package manager repositories are configured	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
1.2.5 Ensure updates, patches, and additional security software are installed	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
1.3.1 Ensure bootloader password is set	ACCESS CONTROL, MEDIA PROTECTION
1.3.2 Ensure permissions on bootloader config are configured	ACCESS CONTROL, MEDIA PROTECTION
1.3.3 Ensure authentication required for single user mode	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.4.1 Ensure address space layout randomization (ASLR) is enabled	SYSTEM AND INFORMATION INTEGRITY
1.4.2 Ensure ptrace_scope is restricted	CONFIGURATION MANAGEMENT
1.4.3 Ensure core dump backtraces are disabled	ACCESS CONTROL
1.4.4 Ensure core dump storage is disabled	ACCESS CONTROL
1.5.1.1 Ensure SELinux is installed	ACCESS CONTROL, MEDIA PROTECTION
1.5.1.2 Ensure SELinux is not disabled in bootloader configuration	ACCESS CONTROL, MEDIA PROTECTION
1.5.1.3 Ensure SELinux policy is configured	ACCESS CONTROL, MEDIA PROTECTION
1.5.1.4 Ensure the SELinux mode is not disabled	ACCESS CONTROL, MEDIA PROTECTION
1.5.1.6 Ensure no unconfined services exist	ACCESS CONTROL, MEDIA PROTECTION
1.5.1.7 Ensure the MCS Translation Service (mcstrans) is not installed	CONFIGURATION MANAGEMENT
1.6.1 Ensure message of the day is configured properly	ACCESS CONTROL
1.6.2 Ensure local login warning banner is configured properly	ACCESS CONTROL
1.6.3 Ensure remote login warning banner is configured properly	ACCESS CONTROL
1.6.4 Ensure access to /etc/motd is configured	ACCESS CONTROL, MEDIA PROTECTION
1.6.5 Ensure access to /etc/issue is configured	ACCESS CONTROL, MEDIA PROTECTION
1.6.6 Ensure access to /etc/issue.net is configured	ACCESS CONTROL, MEDIA PROTECTION
1.7.2 Ensure GDM login banner is configured	ACCESS CONTROL

Detections

Analytics

CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Workstation

Audit Details

File Details

Audit Items