| PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - '/etc/inetd.conf - cmsd is disabled' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - '/etc/inetd.conf - instsrv is disabled' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - '/etc/inetd.conf - klogin is disabled' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - '/etc/inetd.conf - rexd is disabled' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - '/etc/inetd.conf - sprayd is disabled' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - '/etc/inetd.conf - uucp is disabled' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - '/etc/inittab - rcnfs has been disabled' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - '/etc/rc.tcpip - hostmibd is disabled' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - 'i4ls has been disabled' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - 'pmd has been disabled' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - 'writesrv has been disabled' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - Block talk/write - '/etc/csh.login contains mesg n' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.4 - Remove all unnecessary functionality - NFS - 'de-install NFS' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.4 - Verify that common security parameter settings are included - 'default herald is set to appropriate text' | PCI DSS 2.0/3.0 - AIX | Unix | ACCESS CONTROL |
| PCI 2.2.4 - Verify that common security parameter settings are included - 'no unowned files exist' | PCI DSS 2.0/3.0 - AIX | Unix | ACCESS CONTROL |
| PCI 2.2.4 - Verify that common security parameter settings are included - 'rsh mode 000' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.4 - Verify that common security parameter settings are included - authorized users in cron.allow - 'cron.allow contains sys' | PCI DSS 2.0/3.0 - AIX | Unix | ACCESS CONTROL |
| PCI 2.2.4 - Verify that common security parameter settings are included - CDE - Xconfig permissions | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.4 - Verify that common security parameter settings are included - CDE - Xservers permissions | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.4 - Verify that common security parameter settings are included - compress permissions - '/usr/lib/spell/compress 755' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.4 - Verify that common security parameter settings are included - crontab permissions - '/var/spool/cron/crontabs/ root:cron 770' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.4 - Verify that common security parameter settings are included - disable core dumps - 'core_hard = 0' | PCI DSS 2.0/3.0 - AIX | Unix | ACCESS CONTROL |
| PCI 2.2.4 - Verify that common security parameter settings are included - FTP - 'ftp umask at least 027' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.4 - Verify that common security parameter settings are included - Home directory configuration - '~/.dispatch not world write' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.4 - Verify that common security parameter settings are included - Home directory configuration - '~/.env not world write' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.4 - Verify that common security parameter settings are included - Home directory configuration - '~/.login not world write' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.4 - Verify that common security parameter settings are included - Home directory configuration - '~/.logout not world write' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 2.2.4 - Verify that common security parameter settings are included - NFS - 'all entries in /etc/exports contain sec=' | PCI DSS 2.0/3.0 - AIX | Unix | SYSTEM AND INFORMATION INTEGRITY |
| PCI 2.2.4 - Verify that common security parameter settings are included - Sendmail - 'sendmail.cf SmtpGreetingMessage = mailerready' | PCI DSS 2.0/3.0 - AIX | Unix | ACCESS CONTROL |
| PCI 2.2.4 - Verify that common security parameter settings are included - SNMP - 'no communities have readWrite set' | PCI DSS 2.0/3.0 - AIX | Unix | ACCESS CONTROL |
| PCI 2.2.4 - Verify that common security parameter settings are included - TCP Wrappers - 'netsec.options.idprotocol is installed' | PCI DSS 2.0/3.0 - AIX | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| PCI 2.2.4 - Verify that common security parameter settings are included - TCP Wrappers - 'netsec.options.tcpwrapper.man.en_US is installed' | PCI DSS 2.0/3.0 - AIX | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| PCI 2.2.4 - Verify that common security parameter settings are included - TCP/IP Tuning - 'bcastping = 0' | PCI DSS 2.0/3.0 - AIX | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| PCI 2.2.4 - Verify that common security parameter settings are included - TCP/IP Tuning - 'icmpaddressmask = 0' | PCI DSS 2.0/3.0 - AIX | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| PCI 2.2.4 - Verify that common security parameter settings are included - TCP/IP Tuning - 'ipsrcrouterecv = 0' | PCI DSS 2.0/3.0 - AIX | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| PCI 2.2.4 - Verify that common security parameter settings are included - TCP/IP Tuning - 'portcheck = 1' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 4.1 - verify that cardholder data is encrypted during transit - 'openssh.base.server is installed' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 4.1 - Verify that the proper encryption strength is implemented - client protocol - 'Protocol 2' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 4.1 - Verify that the protocol is implemented to use only secure configurations - '/etc/ssh/sshd_config PermitEmptyPasswords = no' | PCI DSS 2.0/3.0 - AIX | Unix | IDENTIFICATION AND AUTHENTICATION |
| PCI 4.1 - Verify that the protocol is implemented to use only secure configurations - '/etc/ssh/sshd_config root:system 600' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 7.1.2 - Assignment of privileges is based on job classification and function - 'lskst -t dom info' | PCI DSS 2.0/3.0 - AIX | Unix | ACCESS CONTROL |
| PCI 7.2.3 - Default 'deny-all' setting - '/etc/hosts.allow root:system 600' | PCI DSS 2.0/3.0 - AIX | Unix | CONFIGURATION MANAGEMENT |
| PCI 7.2.3 - Default 'deny-all' setting - 'hosts.allow contains %VALUE%' | PCI DSS 2.0/3.0 - AIX | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| PCI 8.1.1 - Verify that all users are assigned a unique ID - 'All user IDs must be unique' | PCI DSS 2.0/3.0 - AIX | Unix | IDENTIFICATION AND AUTHENTICATION |
| PCI 8.1.1 - Verify that all users are assigned a unique ID - 'guest account removal' | PCI DSS 2.0/3.0 - AIX | Unix | ACCESS CONTROL |
| PCI 8.1.2 - Control addition, deletion, and modification of user IDs - Permissions and Ownership - '/etc/group root:security 644' | PCI DSS 2.0/3.0 - AIX | Unix | IDENTIFICATION AND AUTHENTICATION |
| PCI 8.1.6 - Authentication parameters require accounts be locked after six invalid attempts - /etc/security/user - 'loginretries <= 6' | PCI DSS 2.0/3.0 - AIX | Unix | ACCESS CONTROL |
| PCI 8.2.3 - Password parameters require passwords to be at least seven characters - /etc/security/user - 'minlen >= 7' | PCI DSS 2.0/3.0 - AIX | Unix | IDENTIFICATION AND AUTHENTICATION |
| PCI 8.5 - Generic user IDs and accounts are disabled or removed - 'adm account has been removed' | PCI DSS 2.0/3.0 - AIX | Unix | ACCESS CONTROL |
| PCI 8.5 - Generic user IDs and accounts are disabled or removed - 'bin account has been removed' | PCI DSS 2.0/3.0 - AIX | Unix | ACCESS CONTROL |
