CIS SUSE Linux Enterprise 15 Workstation L2 v1.0.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS SUSE Linux Enterprise 15 Workstation L2 v1.0.0

Updated: 3/22/2022

Authority: CIS

Plugin: Unix

Revision: 1.4

Estimated Item Count: 136

File Details

Filename: CIS_SUSE_Linux_Enterprise_15_Workstation_v1.0.0_L2.audit

Size: 421 kB

MD5: 09bb5e40715bdca5f81fa98af4ec8e51
SHA256: c23dcd771a6d9eaa9879ad9f1a558223245487df0d3ee4987ec68db04311e1bb

Audit Changelog

 
Revision 1.4

Mar 22, 2022

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
Revision 1.3

Jun 17, 2021

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.2

Oct 5, 2020

Functional Update
  • 1.1.1.3 Ensure mounting of FAT filesystems is limited - EFI
  • 1.1.1.3 Ensure mounting of FAT filesystems is limited - lsmod fat
  • 1.1.1.3 Ensure mounting of FAT filesystems is limited - lsmod msdos
  • 1.1.1.3 Ensure mounting of FAT filesystems is limited - lsmod vfat
  • 1.1.1.3 Ensure mounting of FAT filesystems is limited - modprobe fat
  • 1.1.1.3 Ensure mounting of FAT filesystems is limited - modprobe msdos
  • 1.1.1.3 Ensure mounting of FAT filesystems is limited - modprobe vfat
  • 3.1.1 Disable IPv6 - grub.cfg
  • 3.1.1 Disable IPv6 - sysctl all disable_ipv6
  • 3.1.1 Disable IPv6 - sysctl default disable_ipv6
  • 3.1.1 Disable IPv6 - sysctl.conf all disable_ipv6
  • 3.1.1 Disable IPv6 - sysctl.conf default disable_ipv6
  • 4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - auditctl b64 EACCES
  • 4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - auditctl b64 EPERM
  • 4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - b64 EACCES
  • 4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - b64 EPERM
  • 4.1.12 Ensure successful file system mounts are collected - auditctl b64 mount
  • 4.1.12 Ensure successful file system mounts are collected - b64 mount
  • 4.1.13 Ensure file deletion events by users are collected - auditctl b64 delete
  • 4.1.13 Ensure file deletion events by users are collected - b64 delete
  • 4.1.3 Ensure events that modify date and time information are collected - auditctl b64 adjtimex
  • 4.1.3 Ensure events that modify date and time information are collected - auditctl b64 clock_settime
  • 4.1.3 Ensure events that modify date and time information are collected - b64 adjtimex
  • 4.1.3 Ensure events that modify date and time information are collected - b64 clock_settime
  • 4.1.5 Ensure events that modify the system's network environment are collected - auditctl b64 sethostname
  • 4.1.5 Ensure events that modify the system's network environment are collected - b64 sethostname
  • 4.1.9 Ensure discretionary access control permission modification events are collected - auditctl b64 chmod
  • 4.1.9 Ensure discretionary access control permission modification events are collected - auditctl b64 chown
  • 4.1.9 Ensure discretionary access control permission modification events are collected - auditctl b64 xattr
  • 4.1.9 Ensure discretionary access control permission modification events are collected - b64 chmod
  • 4.1.9 Ensure discretionary access control permission modification events are collected - b64 chown
  • 4.1.9 Ensure discretionary access control permission modification events are collected - b64 xattr
Miscellaneous
  • Platform check updated.
Revision 1.1

Sep 29, 2020

Miscellaneous
  • References updated.