Detections
Analytics

1.5.23 Ensure the operating system implements the Endpoint Security for Linux Threat Prevention tool

Information

The Endpoint Security for Linux Threat Prevention tool must be implemented.

Adding endpoint security tools can provide the capability to automatically take actions in response to malicious behavior, which can provide additional agility in reacting to network threats. These tools also often include a reporting capability to provide network awareness of the system, which may not otherwise exist in an organization's systems management regime.

Solution

Install and enable the latest McAfee ENSLTP package.

See Also

https://workbench.cisecurity.org/benchmarks/19886

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-2, 800-53|SI-2(2), CAT|II, CSCv7|8.3, Rule-ID|SV-245540r942951_rule, Vuln-ID|V-245540

Plugin: Unix

Control ID: 3cdfc4db34720331bc066c7851dde151425ac7f017478f329355853b6ea53faa