Item Search

Name	Audit Name	Plugin	Category
O19C-00-008600 - Oracle instance names must not contain Oracle version numbers.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-009000 - The Oracle WITH GRANT OPTION privilege must not be granted to nondatabase administrator (DBA) or nonapplication administrator user accounts.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-009300 - The Oracle SQL92_SECURITY parameter must be set to TRUE.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-009400 - The Oracle password file ownership and permissions should be limited and the REMOTE_LOGIN_PASSWORDFILE parameter must be set to EXCLUSIVE or NONE.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-010100 - Oracle application administration roles must be disabled if not required and authorized.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-011300 - Changes to configuration options must be audited.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-011600 - Remote administration must be disabled for the Oracle connection manager.	DISA Oracle Database 19c STIG v1r1 Unix	Unix	CONFIGURATION MANAGEMENT
O19C-00-011600 - Remote administration must be disabled for the Oracle connection manager.	DISA Oracle Database 19c STIG v1r1 Windows	Windows	CONFIGURATION MANAGEMENT
O19C-00-011800 - Database administrator (DBA) OS accounts must be granted only those host system privileges necessary for the administration of the Oracle Database.	DISA Oracle Database 19c STIG v1r1 Windows	Windows	CONFIGURATION MANAGEMENT
O19C-00-011900 - Oracle Database default accounts must be assigned custom passwords.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
RHEL-09-211015 - RHEL 9 vendor packaged system security patches and updates must be installed and up to date.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-215090 - RHEL 9 must have the rng-tools package installed.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-231015 - RHEL 9 must use a separate file system for /tmp.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-231090 - RHEL 9 must prevent files with the setuid and setgid bit set from being executed on file systems that are used with removable media.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-231200 - RHEL 9 must prevent special devices on non-root local partitions.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-232045 - All RHEL 9 local initialization files must have mode 0740 or less permissive.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-232055 - RHEL 9 /etc/group file must have mode 0644 or less permissive to prevent unauthorized access.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-232070 - RHEL 9 /etc/gshadow- file must have mode 0000 or less permissive to prevent unauthorized access.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-232080 - RHEL 9 /etc/passwd- file must have mode 0644 or less permissive to prevent unauthorized access.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-232110 - RHEL 9 /etc/gshadow file must be owned by root.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-232135 - RHEL 9 /etc/passwd file must be group-owned by root.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-232150 - RHEL 9 /etc/shadow file must be owned by root.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-232230 - RHEL 9 cron configuration files directory must be owned by root.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-232260 - RHEL 9 must be configured so that all system device files are correctly labeled to prevent unauthorized modification.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-251045 - RHEL 9 must enable hardening for the Berkeley Packet Filter just-in-time compiler.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-252075 - There must be no .shosts files on RHEL 9.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-253070 - RHEL 9 must not allow interfaces to perform Internet Control Message Protocol (ICMP) redirects by default.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-253075 - RHEL 9 must not enable IPv4 packet forwarding unless the system is a router.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-254010 - RHEL 9 must not accept router advertisements on all IPv6 interfaces.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-254040 - RHEL 9 must not forward IPv6 source-routed packets by default.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-255020 - RHEL 9 must have the openssh-clients package installed.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-255110 - The RHEL 9 SSH server configuration file must be owned by root.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-255160 - RHEL 9 SSH daemon must perform strict mode checking of home directory configuration files.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-271100 - RHEL 9 must prevent a user from overriding the disable-restart-buttons setting for the graphical user interface.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-271115 - RHEL 9 must disable the user list at logon for graphical user interfaces.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-411035 - RHEL 9 system accounts must not have an interactive login shell.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-412055 - RHEL 9 must define default permissions for the bash shell.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-432030 - RHEL 9 must restrict privilege elevation to authorized personnel.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-611105 - RHEL 9 must prevent the use of dictionary words for passwords.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-652020 - The rsyslog service on RHEL 9 must be active.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
RHEL-09-653105 - RHEL 9 must write audit records to disk.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
UBTU-20-010075 - The Ubuntu operating system must enforce a delay of at least 4 seconds between logon prompts following a failed logon attempt.	DISA Canonical Ubuntu 20.04 LTS STIG v2r2	Unix	CONFIGURATION MANAGEMENT
UBTU-22-215015 - Ubuntu 22.04 LTS must have the "chrony" package installed.	DISA Canonical Ubuntu 22.04 LTS STIG v2r4	Unix	CONFIGURATION MANAGEMENT
UBTU-22-251020 - Ubuntu 22.04 LTS must have an application firewall enabled.	DISA Canonical Ubuntu 22.04 LTS STIG v2r4	Unix	CONFIGURATION MANAGEMENT
UBTU-22-255025 - Ubuntu 22.04 LTS must not allow unattended or automatic login via SSH.	DISA Canonical Ubuntu 22.04 LTS STIG v2r4	Unix	CONFIGURATION MANAGEMENT
UBTU-22-611060 - Ubuntu 22.04 LTS must not allow accounts configured with blank or null passwords.	DISA Canonical Ubuntu 22.04 LTS STIG v2r4	Unix	CONFIGURATION MANAGEMENT
VMCH-70-000018 - Shared salt values must be disabled on the virtual machine (VM).	DISA STIG VMware vSphere 7.0 Virtual Machine v1r4	VMware	CONFIGURATION MANAGEMENT
VMCH-70-000025 - Logging must be enabled on the virtual machine (VM).	DISA STIG VMware vSphere 7.0 Virtual Machine v1r4	VMware	CONFIGURATION MANAGEMENT
VMCH-70-000027 - Log retention must be configured properly on the virtual machine (VM).	DISA STIG VMware vSphere 7.0 Virtual Machine v1r4	VMware	CONFIGURATION MANAGEMENT
VMCH-70-000029 - Encryption must be enabled for Fault Tolerance on the virtual machine (VM).	DISA STIG VMware vSphere 7.0 Virtual Machine v1r4	VMware	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search