Detections
Analytics

Item Search

NameAudit NamePluginCategory
GEN000340 - UIDs reserved for system accounts must not be assigned to non-system accounts.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN000960 - The root account must not have world-writable directories in its executable search path.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001160 - All files and directories must have a valid owner.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001190 - All network services daemon files must not have extended ACLs - /usr/apache/bin/httpdDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001361 - NIS/NIS+/yp command files must not have extended ACLs.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001363 - The /etc/resolv.conf file must be group-owned by root, bin, or sys.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001368 - The /etc/hosts file must have mode 0644 or less permissive.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001374 - The /etc/nsswitch.conf file must not have an extended ACL.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001392 - The /etc/group file must be group-owned by root, bin, or sys.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001490 - User's home directories must not have extended ACLs.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001520 - All interactive user's home directories must be group-owned by the home directory owner's primary group.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001550 - All files and directories contained in user home directories must be group-owned by a group of which the home directory's owner is a member.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001570 - All files and directories contained in user home directories must not have extended ACLs.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001605 - Run control scripts lists of preloaded libraries must contain only authorized paths - /etc/rc*DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001700 - System start-up files must only execute programs owned by a privileged UID or an application.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001720 - All global initialization files must have mode 0644 or less permissive - /etc/.loginDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001720 - All global initialization files must have mode 0644 or less permissive - /etc/bashrcDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001720 - All global initialization files must have mode 0644 or less permissive - /etc/environmentDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001720 - All global initialization files must have mode 0644 or less permissive - /etc/profileDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001740 - All global initialization files must be owned by root - /etc/.loginDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001740 - All global initialization files must be owned by root - /etc/csh.cshrcDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001740 - All global initialization files must be owned by root - /etc/profileDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001760 - All global initialization files must be group-owned by root, sys, or bin - /etc/.loginDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001760 - All global initialization files must be group-owned by root, sys, or bin - /etc/environmentDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001810 - Skeleton files must not have extended ACLs.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001830 - All skeleton files (typically in /etc/skel) must be group-owned by root, bin, or sys.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001840 - All global initialization files executable search paths must contain only authorized paths - /etc/bashrcDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001840 - All global initialization files executable search paths must contain only authorized paths - /etc/csh.cshrcDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001845 - Global initialization files library search paths must contain only authorized paths - /etc/csh.loginDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001880 - All local initialization files must have mode 0740 or less permissive - .bash_profileDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001880 - All local initialization files must have mode 0740 or less permissive - .bashrcDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001880 - All local initialization files must have mode 0740 or less permissive - .exrcDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001900 - All local initialization files executable search paths must contain only authorized paths.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001980 - The .rhosts, .shosts, hosts.equiv, shosts.equiv, /etc/passwd, /etc/shadow, and/or /etc/group files must not contain a plus (+) without defining entries for NIS+ netgroups - /etc/ssh/shosts.equivDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002040 - There must be no .rhosts, .shosts, hosts.equiv, or shosts.equiv files on the system.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002060 - All .rhosts, .shosts, .netrc, or hosts.equiv files must be accessible by only root or the owner - .netrc permsDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002060 - All .rhosts, .shosts, .netrc, or hosts.equiv files must be accessible by only root or the owner - /etc/ssh/shosts.equivDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002120 - The /etc/shells (or equivalent) file must exist.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002210 - All shell files must be group-owned by root, bin, or sys.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002860 - Audit logs must be rotated daily.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002960 - Access to the cron utility must be controlled using the cron.allow and/or cron.deny file(s).DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003020 - Cron must not execute programs in, or subordinate to, world-writable directories.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003050 - Crontab files must be group-owned by root, sys, or the crontab creator's primary group.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN007780 - The system must not have 6to4 enabled.DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN007820 - The system must not have IP tunnels configured.DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN007880 - The system must not send IPv6 ICMP redirects - dladm show-linkDISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN007950 - The system must not respond to ICMPv6 echo requests sent to a broadcast address - dladm show-linkDISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN008060 - If the system is using LDAP for authentication or account information the LDAP client configuration file must have mode 0600 or less permissive - /var/ldap/ldap_client_credDISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN008100 - If the system is using LDAP for authentication or account information, the LDAP configuration file must be group-owned by root, bin, or sys - /var/ldap/ldap_client_credDISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

GEN008180 - If the system is using LDAP for authentication or account information, the TLS certificate authority file and/or directory (as appropriate) must have mode 0644 (0755 for directories) or less permissive - key3.dbDISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT