Nov 22, 2024 Miscellaneous- Audit deprecated.
- Metadata updated.
- References updated.
|
Oct 15, 2024 Functional Update- AIX7-00-001019 - AIX device files and directories must only be writable by users with a system account or as configured by the vendor.
- AIX7-00-001031 - All AIX public directories must be owned by root or an application account.
- AIX7-00-003101 - The AIX system must have no .netrc files on the system.
- AIX7-00-003115 - AIX must contain no .forward files.
- AIX7-00-003138 - There must be no .rhosts, .shosts, hosts.equiv, or shosts.equiv files on the AIX system.
Informational Update- AIX7-00-001019 - AIX device files and directories must only be writable by users with a system account or as configured by the vendor.
|
Jun 3, 2024 Functional Update- AIX7-00-001006 - If the AIX system is using LDAP for authentication or account information, the LDAP SSL, or TLS connection must require the server provide a certificate and this certificate must have a valid path to a trusted CA - Certificate Issuer
- AIX7-00-001006 - If the AIX system is using LDAP for authentication or account information, the LDAP SSL, or TLS connection must require the server provide a certificate and this certificate must have a valid path to a trusted CA - ldapsslkeyf
- AIX7-00-001006 - If the AIX system is using LDAP for authentication or account information, the LDAP SSL, or TLS connection must require the server provide a certificate and this certificate must have a valid path to a trusted CA - useSSL
- AIX7-00-001007 - If AIX is using LDAP for authentication or account information, the /etc/ldap.conf file (or equivalent) must not contain passwords - bindpwd DES
- AIX7-00-001007 - If AIX is using LDAP for authentication or account information, the /etc/ldap.conf file (or equivalent) must not contain passwords - ldapsslkeypwd
- AIX7-00-001046 - If LDAP authentication is required, AIX must setup LDAP client to refresh user and group caches less than a day - group cache
- AIX7-00-001046 - If LDAP authentication is required, AIX must setup LDAP client to refresh user and group caches less than a day - user cache
- AIX7-00-001105 - AIX must only allow the use of DoD PKI-established certificate authorities for verification of the establishment of protected sessions - Certificate Issuer
- AIX7-00-001105 - AIX must only allow the use of DoD PKI-established certificate authorities for verification of the establishment of protected sessions - ldapsslkeyf
- AIX7-00-001105 - AIX must only allow the use of DoD PKI-established certificate authorities for verification of the establishment of protected sessions - useSSL
|
Apr 29, 2024 Functional Update- AIX7-00-001015 - The shipped /etc/security/mkuser.sys file on AIX must not be customized directly.
|
Apr 15, 2024 |