Item Search

Name	Audit Name	Plugin	Category
GEN000000-AIX0330 - The /etc/ftpaccess.ctl file must be group-owned by bin, sys, or system.	DISA STIG AIX 6.1 v1r14	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN000000-AIX0340 - The /etc/ftpaccess.ctl file must have mode 0640 or less permissive.	DISA STIG AIX 6.1 v1r14	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN000000-AIX0350 - The /etc/ftpaccess.ctl file must not have an extended ACL.	DISA STIG AIX 6.1 v1r14	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - '/etc/passwd - halt'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - '/etc/passwd - reboot'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - '/etc/passwd - shutdown'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - '/etc/shadow - halt'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - '/etc/shadow - reboot'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
GEN000000-LNX00320 - The system must not have special privilege accounts, such as shutdown and halt - '/etc/shadow - shutdown'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
GEN000000-LNX00400 - The /etc/security/access.conf file must be owned by root.	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN000000-LNX00440 - The /etc/security/access.conf file must have mode 0640 or less permissive.	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN000000-LNX00450 - The /etc/security/access.conf file must not have an extended ACL.	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN000000-LNX00600 - PAM system must not grant sole access to admin privileges to the first user who logs into the console.	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN000000-LNX00640 - The /etc/securetty file must be owned by root.	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN000000-LNX00660 - The /etc/securetty file must have mode 0640 or less permissive.	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN001440 - All interactive users must be assigned a home directory in the /etc/passwd file.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN001480 - All user home directories must have mode 0750 or less permissive.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN001490 - User home directories must not have extended ACLs.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN001520 - All interactive user home directories must be group-owned by the home directory owners primary group.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN002280 - Device files and directories must only be writable by users with a system account or as configured by the vendor.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN002330 - Audio devices must not have extended ACLs - '/dev/audio*'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN002330 - Audio devices must not have extended ACLs - '/dev/snd/*'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN002340 - Audio devices must be owned by root - '/dev/audio*'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN002360 - Audio devices must be group-owned by root, sys, bin, or system - '/dev/audio*'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN002360 - Audio devices must be group-owned by root, sys, bin, or system - '/dev/snd/*'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN002540 - All public directories must be group-owned by root, sys, bin, or an application group.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN004220 - Administrative accounts must not run a web browser, except as needed for local service administration.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN004400 - Files executed through a mail aliases file must be owned by root and must reside within a directory owned and writable only by root.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN004410 - Files executed through a mail aliases file must be group-owned by root, bin, sys, or system, and must reside within a directory group-owned by root, bin, sys, or system.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN004430 - Files executed through a mail aliases file must not have extended ACLs.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN004880 - The ftpusers file must exist.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN004920 - The ftpusers file must be owned by root - '/etc/vsftpd.ftpusers'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN004920 - The ftpusers file must be owned by root - '/etc/vsftpd/ftpusers'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN005120 - The TFTP daemon must be configured to vendor specifications, including a dedicated TFTP user account, a non-login shell such as /bin/false, and a home directory owned by the TFTP user.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN005180 - All .Xauthority files must have mode 0600 or less permissive.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN005360 - The snmpd.conf file must be owned by root.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN005375 - The snmpd.conf file must not have an extended ACL.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN005537 - The SSH daemon must use privilege separation.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN005740 - The Network File System (NFS) export configuration file must be owned by root.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN005800 - All Network File System (NFS) exported system files and system directories must be owned by root.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN006100 - The /etc/smb.conf file must be owned by root.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN006120 - The /etc/smb.conf file must be group-owned by root, bin, sys, or system.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN006160 - The /etc/smbpasswd file must be owned by root - '/etc/samba.secrets.tdb'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN006210 - The /etc/smbpasswd file must not have an extended ACL - '/etc/samba/passdb.tdb'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN006330 - The /etc/news/passwd.nntp file must not have an extended ACL.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN008120 - If the system is using LDAP for authentication or account information, the /etc/ldap.conf (or equivalent) file must not have an extended ACL - or equivalent file must not have an extended ACL.	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN008140 - If the system is using LDAP for authentication or account information, the TLS certificate authority file and/or directory (as appropriate) must be owned by root - '/etc/ssl/'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN008280 - If the system is using LDAP for authentication or account information, the LDAP TLS certificate file must not have an extended ACL - '/etc/openldap/cacerts/cert.pem'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN008300 - If the system is using LDAP for authentication or account information, the LDAP TLS key file must be owned by root - '/etc/openldap/cacerts/key.pem'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
GEN008340 - If the system is using LDAP for authentication or account information, the LDAP TLS key file must have mode 0600 or less permissive - '/etc/openldap/cacerts/key.pem'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search