Item Search

Name	Audit Name	Plugin	Category
4 - Restrict access to $JETTY_HOME - mode	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
4 - Send logs to a remote server	TNS Best Practice JBoss 7 Linux	Unix	AUDIT AND ACCOUNTABILITY
5 - Authentication	TNS Best Practice Jetty 9 Linux	Unix
6 - Encryption	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
6 - Run your Instance as non privileged user	TNS Best Practice JBoss 7 Linux	Unix	ACCESS CONTROL
7 - SSL implementation - start.ini --module=deploy	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
7 - SSL implementation - start.jar --module=https	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
7 - SSL implementation - start.jar --module=ssl	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
8 - Management IP - .htacess exists	TNS Best Practice Jetty 9 Linux	Unix
8 - Management IP - review $jetty_home/contexts xml file	TNS Best Practice Jetty 9 Linux	Unix
9 - Information Leakage	TNS Best Practice Jetty 9 Linux	Unix
10 - Access Control - Security Realms	TNS Best Practice Jetty 9 Linux	Unix
11 - JSP Regeneration	TNS Best Practice JBoss 7 Linux	Unix	CONFIGURATION MANAGEMENT
14 - Restrict access to binaries directory - owner	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
14 - SSL Encryption - Modify WSDL Address	TNS Best Practice JBoss 7 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
18 - Restrict access to context.xml - mode	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
18 - Restrict access to context.xml - owner	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
19 - Cluster Authentication	TNS Best Practice JBoss 7 Linux	Unix	ACCESS CONTROL
19 - Restrict access to logging.properties - owner	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
20 - Restrict access to server.xml - owner	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
21 - Restrict access to users.xml - mode	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
22 - Use secure Realms	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
24 - Remove extraneous files and directories - $JETTY_BASE/webapps/examples	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
24 - Remove extraneous files and directories - $JETTY_BASE/webapps/js-examples	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
24 - Remove extraneous files and directories - $JETTY_BASE/webapps/ROOT/admin	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
26 - Setup Client-cert Authentication	TNS Best Practice Jetty 9 Linux	Unix	IDENTIFICATION AND AUTHENTICATION
27 - Ensure SSLEnabled is set to True for Sensitive Connectors - SSLEnabled	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
27 - Ensure SSLEnabled is set to True for Sensitive Connectors - SSLEngine	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
29 - Ensure secure is set to true only for SSL-enabled Connectors	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
30 - Ensure sslProtocol is set to TLS for Secure Connector	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
31 - Starting with Security Manager	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
32 - Disabling auto deployment of applications	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
33 - Disable deploy on startup of applications	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
40 - Do not allow symbolic linking	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
42 - Do not allow cross context requests	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
43 - Do not resolve hosts on logging valves - CONTEXT_XML	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
43 - Do not resolve hosts on logging valves - SERVER_XML	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
44 - Use Lockout Realms	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
45 - Restrict runtime access to sensitive packages	TNS Best Practice Jetty 9 Linux	Unix	ACCESS CONTROL
ACLs: Filter for RFC 3330 addresses (192.0.0.0/24)	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	SYSTEM AND COMMUNICATIONS PROTECTION
ACLs: Filter for RFC 3330 addresses (198.18.0.0/15)	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	SYSTEM AND COMMUNICATIONS PROTECTION
Authentication: use a remote authentication server	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	ACCESS CONTROL
DKER-EE-001800 - The insecure registry capability in the Docker Engine - Enterprise component of Docker Enterprise must be disabled.	DISA STIG Docker Enterprise 2.x Linux/Unix v2r2	Unix	CONFIGURATION MANAGEMENT
DKER-EE-001840 - Experimental features in the Docker Engine - Enterprise component of Docker Enterprise must be disabled.	DISA STIG Docker Enterprise 2.x Linux/Unix v2r2	Unix	CONFIGURATION MANAGEMENT
DTAVSEL-010 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to scan all file types.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
Login: ssh - limit consecutive logins to 16 or less	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	ACCESS CONTROL
Login: ssh - v2 and later is enabled	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	CONFIGURATION MANAGEMENT
Password Complexity: Require at least one special character	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	IDENTIFICATION AND AUTHENTICATION
Password Complexity: Require at least one uppercase and one lowercase letter	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	IDENTIFICATION AND AUTHENTICATION
Require Password Encryption	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search