Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.6.1.3 Ensure SELinux policy is configuredCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

ACCESS CONTROL, SYSTEM AND INFORMATION INTEGRITY

1.6.1.5 Ensure the SELinux mode is enforcingCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

ACCESS CONTROL, SYSTEM AND INFORMATION INTEGRITY

1.6.1.9 Ensure non-privileged users are prevented from executing privileged functionsCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

ACCESS CONTROL

2.006 - ACLs for system files and directories do not conform to minimum requirements. - 'C:'DISA Windows Vista STIG v6r41Windows

ACCESS CONTROL

2.006 - ACLS FOR SYSTEM FILES AND DIRECTORIES DO NOT CONFORM TO MINIMUM REQUIREMENTS. - 'C:\Program Files'DISA Windows Vista STIG v6r41Windows

ACCESS CONTROL

2.006 - ACLS FOR SYSTEM FILES AND DIRECTORIES DO NOT CONFORM TO MINIMUM REQUIREMENTS. - 'C:\Windows'DISA Windows Vista STIG v6r41Windows

ACCESS CONTROL

6.1.11 Ensure no unowned files or directories existCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

ACCESS CONTROL

6.1.12 Ensure no ungrouped files or directories existCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

ACCESS CONTROL

Big Sur - Allow Administrators to Modify Security Settings and System AttributesNIST macOS Big Sur v1.4.0 - All ProfilesUnix

ACCESS CONTROL

Big Sur - Allow Administrators to Promote Other Users to Administrator StatusNIST macOS Big Sur v1.4.0 - All ProfilesUnix

ACCESS CONTROL

Big Sur - Allow Information Transfer with Other Operating SystemsNIST macOS Big Sur v1.4.0 - All ProfilesUnix

ACCESS CONTROL

Catalina - Allow Administrators to Modify Security Settings and System AttributesNIST macOS Catalina v1.5.0 - All ProfilesUnix

ACCESS CONTROL

Catalina - Allow Administrators to Promote Other Users to Administrator StatusNIST macOS Catalina v1.5.0 - All ProfilesUnix

ACCESS CONTROL

Catalina - Allow Information Transfer with Other Operating SystemsNIST macOS Catalina v1.5.0 - All ProfilesUnix

ACCESS CONTROL

DTOO199 - Changing permissions on rights managed content for users must be enforced.DISA STIG Microsoft Office System 2013 v2r1Windows

ACCESS CONTROL

DTOO199 - Office System - Changing permissions on rights managed content for users must be enforced.DISA STIG Office System 2010 v1r12Windows

ACCESS CONTROL

DTOO200 - Office must be configured to not allow read with browsers.DISA STIG Microsoft Office System 2013 v2r1Windows

ACCESS CONTROL

DTOO200 - Office System - Office must be configured to not allow read with browsers.DISA STIG Office System 2010 v1r12Windows

ACCESS CONTROL

EPAS-00-007300 - The EDB Postgres Advanced Server must enforce discretionary access control policies, as defined by the data owner, over defined subjects and objects.EnterpriseDB PostgreSQL Advanced Server OS Linux v1r1Unix

ACCESS CONTROL

GEN001800 - All skeleton files (typically those in /etc/skel) must have mode 0644 or less permissive.DISA STIG Solaris 10 SPARC v2r4Unix

ACCESS CONTROL

GEN004480 - The SMTP service log file must be owned by root - MAIL_LOGDISA STIG Solaris 10 SPARC v2r4Unix

ACCESS CONTROL

GEN004500 - The SMTP service log file must have mode 0644 or less permissive - /var/adm/messagesDISA STIG Solaris 10 SPARC v2r4Unix

ACCESS CONTROL

GEN004880 - The ftpusers file must exist.DISA STIG Solaris 10 SPARC v2r4Unix

ACCESS CONTROL

GEN004920 - The ftpusers file must be owned by root.DISA STIG Solaris 10 SPARC v2r4Unix

ACCESS CONTROL

GEN004940 - The ftpusers file must have mode 0640 or less permissive.DISA STIG Solaris 10 SPARC v2r4Unix

ACCESS CONTROL

GEN005320 - The snmpd.conf file must have mode 0600 or less permissive - /etc/sma/snmp/snmpd.confDISA STIG Solaris 10 SPARC v2r4Unix

ACCESS CONTROL

GEN005320 - The snmpd.conf file must have mode 0600 or less permissive - /etc/sma/snmp/snmpd.confDISA STIG Solaris 10 X86 v2r4Unix

ACCESS CONTROL

GEN005320 - The snmpd.conf file must have mode 0600 or less permissive - /etc/snmp/conf/snmpd.confDISA STIG Solaris 10 SPARC v2r4Unix

ACCESS CONTROL

GEN005320 - The snmpd.conf file must have mode 0600 or less permissive - /etc/snmp/conf/snmpd.confDISA STIG Solaris 10 X86 v2r4Unix

ACCESS CONTROL

GEN006140 - The smb.conf file must have mode 0644 or less permissive.DISA STIG Solaris 10 X86 v2r4Unix

ACCESS CONTROL

GEN006320 - The /etc/news/passwd.nntp file (or equivalent) must have mode 0600 or less permissive.DISA STIG Solaris 10 X86 v2r4Unix

ACCESS CONTROL

MADB-10-006700 - MariaDB must enforce discretionary access control policies, as defined by the data owner, over defined subjects, and objects.DISA MariaDB Enterprise 10.x v1r3 DBMySQLDB

ACCESS CONTROL

Monterey - Allow Administrators to Modify Security Settings and System AttributesNIST macOS Monterey v1.0.0 - All ProfilesUnix

ACCESS CONTROL

Monterey - Allow Administrators to Promote Other Users to Administrator StatusNIST macOS Monterey v1.0.0 - All ProfilesUnix

ACCESS CONTROL

Monterey - Allow Information Transfer with Other Operating SystemsNIST macOS Monterey v1.0.0 - All ProfilesUnix

ACCESS CONTROL

MYS8-00-010500 - The MySQL Database Server 8.0 must enforce discretionary access control policies, as defined by the data owner, over defined subjects and objects.DISA Oracle MySQL 8.0 v1r5 DBMySQLDB

ACCESS CONTROL

OL08-00-010373 - OL 8 must enable kernel parameters to enforce Discretionary Access Control (DAC) on symlinks.DISA Oracle Linux 8 STIG v1r9Unix

ACCESS CONTROL

OL08-00-010374 - OL 8 must enable kernel parameters to enforce Discretionary Access Control (DAC) on hardlinks.DISA Oracle Linux 8 STIG v1r9Unix

ACCESS CONTROL

RHEL-08-010373 - RHEL 8 must enable kernel parameters to enforce discretionary access control on symlinks.DISA Red Hat Enterprise Linux 8 STIG v1r14Unix

ACCESS CONTROL

RHEL-08-010374 - RHEL 8 must enable kernel parameters to enforce discretionary access control on hardlinks.DISA Red Hat Enterprise Linux 8 STIG v1r14Unix

ACCESS CONTROL

SQL2-00-008500 - SQL Server must enforce DAC policy allowing users to specify and control sharing by named individuals, groups of individuals, or by both; limiting propagation of access rights; and including or excluding access to the granularity of a single user - 'server permissions'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

ACCESS CONTROL

SQL2-00-008500 - SQL Server must enforce DAC policy allowing users to specify and control sharing by named individuals, groups of individuals, or by both; limiting propagation of access rights; and including or excluding access to the granularity of a single user - 'user defined roles'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

ACCESS CONTROL

SQL2-00-011000 - SQL Server utilizing Discretionary Access Control (DAC) must enforce a policy that limits propagation of access rights.DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

ACCESS CONTROL

SQL2-00-011050 - SQL Server utilizing Discretionary Access Control (DAC) must enforce a policy that limits propagation of access rights.DISA STIG SQL Server 2012 Database Audit v1r20MS_SQLDB

ACCESS CONTROL

WN11-00-000070 - Only accounts responsible for the administration of a system must have Administrator rights on the system.DISA Windows 11 STIG v1r5Windows

ACCESS CONTROL

WN11-00-000080 - Only authorized user accounts must be allowed to create or run virtual machines on Windows 11 systems.DISA Windows 11 STIG v1r5Windows

ACCESS CONTROL

WN11-00-000095 - Permissions for system files and directories must conform to minimum requirementsDISA Windows 11 STIG v1r5Windows

ACCESS CONTROL

WN22-00-000140 - Windows Server 2022 permissions for the system drive root directory (usually C:\) must conform to minimum requirements.DISA Windows Server 2022 STIG v1r5Windows

ACCESS CONTROL

WN22-00-000150 - Windows Server 2022 permissions for program file directories must conform to minimum requirements.DISA Windows Server 2022 STIG v1r5Windows

ACCESS CONTROL

WN22-00-000160 - Windows Server 2022 permissions for the Windows installation directory must conform to minimum requirements.DISA Windows Server 2022 STIG v1r5Windows

ACCESS CONTROL