Detections
Analytics

DISA SLES 15 STIG v1r6

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA SLES 15 STIG v1r6

Updated: 4/12/2023

Authority: Operating Systems and Applications

Plugin: Unix

Revision: 1.6

Estimated Item Count: 299

Audit Changelog

 
Revision 1.6

Apr 12, 2023

Miscellaneous
  • Metadata updated.
  • Platform check updated.
  • Variables updated.
Revision 1.5

Feb 22, 2023

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
Revision 1.4

Jan 4, 2023

Functional Update
  • SLES-15-010001 - The SUSE operating system must implement the Endpoint Security for Linux Threat Prevention tool - installed
  • SLES-15-020103 - The SUSE operating system must use the invoking user's password for privilege escalation when using 'sudo' - rootpw
  • SLES-15-020103 - The SUSE operating system must use the invoking user's password for privilege escalation when using 'sudo' - runaspw
  • SLES-15-020103 - The SUSE operating system must use the invoking user's password for privilege escalation when using 'sudo' - targetpw
  • SLES-15-040230 - The SUSE operating system SSH daemon must be configured to not allow authentication using known hosts authentication.
  • SLES-15-040260 - The SUSE operating system SSH daemon must perform strict mode checking of home directory configuration files.
Miscellaneous
  • Metadata updated.
  • Variables updated.
Revision 1.3

Dec 7, 2022

Miscellaneous
  • Metadata updated.
Revision 1.2

Oct 18, 2022

Functional Update
  • SLES-15-040040 - The SUSE operating system file integrity tool must be configured to verify Access Control Lists (ACLs).
  • SLES-15-040050 - The SUSE operating system file integrity tool must be configured to verify extended attributes.
Informational Update
  • SLES-15-040040 - The SUSE operating system file integrity tool must be configured to verify Access Control Lists (ACLs).
  • SLES-15-040050 - The SUSE operating system file integrity tool must be configured to verify extended attributes.
Revision 1.1

Jul 27, 2022

Functional Update
  • SLES-15-020040 - The SUSE operating system must deny direct logons to the root account using remote access via SSH.
  • SLES-15-040290 - The SUSE operating system SSH daemon must disable forwarded remote X connections for interactive users, unless to fulfill documented and validated mission requirements.
  • SLES-15-040440 - The SUSE operating system must not allow unattended or automatic logon via SSH - PermitEmptyPasswords
  • SLES-15-040440 - The SUSE operating system must not allow unattended or automatic logon via SSH - PermitUserEnvironment
Revision 1.0

Jun 3, 2022

Miscellaneous
  • Metadata updated.