Revision 1.14Feb 11, 2021
Functional Update
- 3.5.4.1.1 Ensure default deny firewall policy - 'Chain FORWARD'
- 3.5.4.1.1 Ensure default deny firewall policy - 'Chain INPUT'
- 3.5.4.1.1 Ensure default deny firewall policy - 'Chain OUTPUT'
- 3.5.4.2.1 Ensure IPv6 default deny firewall policy - 'Chain FORWARD'
- 3.5.4.2.1 Ensure IPv6 default deny firewall policy - 'Chain INPUT'
- 3.5.4.2.1 Ensure IPv6 default deny firewall policy - 'Chain OUTPUT'
- 5.2.13 Ensure only strong Ciphers are used - approved ciphers
- 5.2.13 Ensure only strong Ciphers are used - weak ciphers
- 5.2.14 Ensure only strong MAC algorithms are used - approved MACs
- 5.2.14 Ensure only strong MAC algorithms are used - weak MACs
- 5.2.15 Ensure only strong Key Exchange algorithms are used - approved algorithms
- 5.2.15 Ensure only strong Key Exchange algorithms are used - weak algorithms
Miscellaneous
- Metadata updated.
- Platform check updated.
- References updated.
Added
- 1.8.1.1 Ensure message of the day is configured properly - banner
- 1.8.1.1 Ensure message of the day is configured properly - platform flags
- 1.8.1.2 Ensure local login warning banner is configured properly - banner
- 1.8.1.2 Ensure local login warning banner is configured properly - platform flags
- 1.8.1.3 Ensure remote login warning banner is configured properly - banner
- 1.8.1.3 Ensure remote login warning banner is configured properly - platform flags
Removed
- 1.8.1.1 Ensure message of the day is configured properly
- 1.8.1.2 Ensure local login warning banner is configured properly
- 1.8.1.3 Ensure remote login warning banner is configured properly
