Item Search

Name	Audit Name	Plugin	Category
1.1.7 Ensure separate partition exists for /var/tmp	CIS SUSE Linux Enterprise Workstation 11 L2 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.8 Ensure nodev option set on /var/tmp partition	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.10 Ensure separate partition exists for /var	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Workstation	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.15 Ensure nodev option set on /dev/shm partition	CIS SUSE Linux Enterprise Server 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.20 Ensure removable media partitions include noexec option	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.6.1.1 Ensure SELinux is installed	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.6.1.1 Ensure SELinux is not disabled in bootloader configuration - selinux	CIS SUSE Linux Enterprise Server 11 L2 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.6.1.3 Ensure SELinux policy is configured	CIS SUSE Linux Enterprise Server 11 L2 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.6.3 Ensure SELinux or AppArmor are installed	CIS SUSE Linux Enterprise Workstation 11 L2 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.7.1.5 Ensure permissions on /etc/issue are configured	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.7.1.5 Ensure permissions on /etc/issue are configured	CIS SUSE Linux Enterprise Server 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.7.5 Ensure permissions on /etc/motd are configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
2.2.16 Ensure 'RESOURCE_LIMIT' Is Set to 'TRUE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
4.2.4 Ensure permissions on all logfiles are configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.1.2 Ensure 'EXECUTE' is revoked from 'PUBLIC' on "File System" Packages	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.1.5 Ensure 'EXECUTE' is revoked from 'PUBLIC' on "Job Scheduler" Packages	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.1.5 Ensure 'EXECUTE' is revoked from 'PUBLIC' on "Job Scheduler" Packages	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.2 Ensure permissions on /etc/crontab are configured	CIS SUSE Linux Enterprise Server 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.2.1 Ensure 'EXECUTE' is not granted to 'PUBLIC' on "Non-default" Packages	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.3 Ensure permissions on /etc/cron.hourly are configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.5 Ensure permissions on /etc/cron.weekly are configured	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.9 Ensure at is restricted to authorized users - /etc/at.allow	CIS Red Hat 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.2.1 Ensure permissions on /etc/ssh/sshd_config are configured	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.2.6 Ensure 'SELECT ANY TABLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.8 Ensure 'EXEMPT ACCESS POLICY' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.10 Ensure 'CREATE PROCEDURE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.11 Ensure 'ALTER SYSTEM' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.13 Ensure 'CREATE LIBRARY' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.16 Ensure 'GRANT ANY PRIVILEGE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.3.3 Ensure permissions on /etc/ssh/sshd_config are configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.3.4 Ensure AUDIT_ADMIN' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.4.2 Ensure system accounts are non-login	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.4.4 Ensure default user umask is 027 or more restrictive - /etc/profile.d/*	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.7 Ensure access to the su command is restricted	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.2 Ensure permissions on /etc/passwd are configured	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.2 Ensure permissions on /etc/passwd are configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.3 Ensure permissions on /etc/passwd- are configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.4 Ensure permissions on /etc/shadow are configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.4 Ensure permissions on /etc/shadow are configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.7 Ensure permissions on /etc/gshadow are configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.8 Ensure no world writable files exist	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.8 Ensure permissions on /etc/group are configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.9 Ensure permissions on /etc/group- are configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.2.8 Ensure users' home directories permissions are 750 or more restrictive	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.2.8 Ensure users' home directories permissions are 750 or more restrictive	CIS SUSE Linux Enterprise Server 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.2.13 Ensure users' .netrc Files are not group or world accessible	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.2.15 Ensure all groups in /etc/passwd exist in /etc/group	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
DO0155-ORACLE11 - Only authorized system accounts should have the SYSTEM tablespace specified as the default tablespace - 'No unathorized accounts have access to SYSTEM table'	DISA STIG Oracle 11 Instance v9r1 Database	OracleDB	ACCESS CONTROL
DO3475-ORACLE11 - Execute permission should be revoked from PUBLIC for restricted Oracle packages - 'PUBLIC does not have execute privilege'	DISA STIG Oracle 11 Instance v9r1 Database	OracleDB	ACCESS CONTROL
DO3612-ORACLE11 - System Privileges should not be granted to PUBLIC - 'No system privileges granted to PUBLIC'	DISA STIG Oracle 11 Instance v9r1 Database	OracleDB	ACCESS CONTROL

Detections

Analytics

Item Search