Revision 1.11

Nov 4, 2022
Functional Update
  • 1.1.2 Ensure /tmp is configured
  • 1.3.2 Ensure filesystem integrity is regularly checked
  • 1.7.1 Ensure message of the day is configured properly - banner
  • 2.1.1.4 Ensure ntp is configured - user
  • 4.2.1.5 Ensure rsyslog is configured to send logs to a remote log host
  • 4.2.1.6 Ensure remote rsyslog messages are only accepted on designated log hosts - InputTCPServerRun
  • 4.2.1.6 Ensure remote rsyslog messages are only accepted on designated log hosts - ModLoad
Miscellaneous
  • References updated.
Added
  • 1.1.12 Ensure /var/tmp partition includes the nodev option
  • 1.1.13 Ensure /var/tmp partition includes the nosuid option
  • 1.1.14 Ensure /var/tmp partition includes the noexec option
  • 1.1.3 Ensure nodev option set on /tmp partition
  • 1.1.4 Ensure nosuid option set on /tmp partition
  • 1.1.5 Ensure noexec option set on /tmp partition
  • 1.1.7 Ensure nodev option set on /dev/shm partition
  • 1.1.8 Ensure nosuid option set on /dev/shm partition
  • 1.1.9 Ensure noexec option set on /dev/shm partition
Removed
  • 1.1.12 Ensure /var/tmp partition includes the nodev option
  • 1.1.13 Ensure /var/tmp partition includes the nosuid option
  • 1.1.14 Ensure /var/tmp partition includes the noexec option
  • 1.1.3 Ensure nodev option set on /tmp partition
  • 1.1.4 Ensure nosuid option set on /tmp partition
  • 1.1.5 Ensure noexec option set on /tmp partition
  • 1.1.7 Ensure nodev option set on /dev/shm partition
  • 1.1.8 Ensure nosuid option set on /dev/shm partition
  • 1.1.9 Ensure noexec option set on /dev/shm partition