DISA Oracle Linux 8 STIG v1r2

Audit Details

Name: DISA Oracle Linux 8 STIG v1r2

Updated: 11/4/2022

Authority: DISA STIG

Plugin: Unix

Revision: 1.5

Estimated Item Count: 547

File Details

Filename: DISA_STIG_Oracle_Linux_8_v1r2.audit

Size: 1.36 MB

MD5: d5dfdfd5ed1f5de3263ae4276a3b4853
SHA256: 3fa4bae8af6b50e76d449c822d9a8c6c5dcd4271275b0accda348789a1e0952c

Audit Changelog

 
Revision 1.5

Nov 4, 2022

Functional Update
  • OL08-00-010420 - OL 8 must implement non-executable data to protect its memory from unauthorized code execution - /proc/cpuinfo
  • OL08-00-030590 - OL 8 must generate audit records for any attempted modifications to the 'faillock' log file - faillock log file.
  • OL08-00-040070 - The OL 8 file system automounter must be disabled unless required.
Revision 1.4

Oct 26, 2022

Functional Update
  • OL08-00-030590 - OL 8 must generate audit records for any attempted modifications to the 'faillock' log file - faillock log file.
Removed
  • OL08-00-040150 - A firewall must be able to protect against or limit the effects of denial-of-service (DoS) attacks by ensuring OL 8 can implement rate-limiting measures on impacted network interfaces - nftables status
Revision 1.3

Oct 18, 2022

Functional Update
  • OL08-00-010382 - OL 8 must restrict privilege elevation to authorized personnel - sudoers.d
  • OL08-00-030590 - OL 8 must generate audit records for any attempted modifications to the 'faillock' log file - faillock log file.
  • OL08-00-040300 - The OL 8 file integrity tool must be configured to verify extended attributes.
  • OL08-00-040310 - The OL 8 file integrity tool must be configured to verify Access Control Lists (ACLs).
Informational Update
  • OL08-00-040300 - The OL 8 file integrity tool must be configured to verify extended attributes.
  • OL08-00-040310 - The OL 8 file integrity tool must be configured to verify Access Control Lists (ACLs).
Revision 1.2

Oct 4, 2022

Functional Update
  • OL08-00-020352 - OL 8 must set the umask value to 077 for all local interactive user accounts.
  • OL08-00-030590 - OL 8 must generate audit records for any attempted modifications to the 'faillock' log file - faillock log file.
Revision 1.1

Jul 27, 2022

Functional Update
  • OL08-00-020330 - OL 8 must not allow accounts configured with blank or null passwords.
  • OL08-00-030590 - OL 8 must generate audit records for any attempted modifications to the 'faillock' log file - faillock log file.
  • OL08-00-040340 - OL 8 remote X connections for interactive users must be disabled unless to fulfill documented and validated mission requirements.