Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.3 Enable TCP Wrappers and a host based firewall (inetd_flags)CIS FreeBSD v1.0.5Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.3 Only enable ftpd if absolutely necessaryCIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

2.4 Only enable rlogin/rsh/rcp if absolutely necessary (login)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

2.4 Only enable rlogin/rsh/rcp if absolutely necessary (shell)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

2.5 Only enable TFTP if absolutely necessaryCIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.1 Disable login prompts on serial ports (ttyd0)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.3 Set daemon umask (/etc/periodic/* umask)CIS FreeBSD v1.0.5Unix

ACCESS CONTROL

3.3 Set daemon umask (/usr/local/etc/rc.d umask)CIS FreeBSD v1.0.5Unix

ACCESS CONTROL

3.4 Prevent syslogd from accepting messages from the networkCIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.7 Only enable other RPC-based services if absolutely necessary (rpc_lockd_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.7 Only enable other RPC-based services if absolutely necessary (rpcbind_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.8 Only enable the NFS server if absolutely necessary (mountd_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.8 Only enable the NFS server if absolutely necessary (nfs_server_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.10 Block NFS connections to non-privileged portsCIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.10.9.1.5 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Also apply to matching devices that are already installed.' is set to 'True' (checked)CIS Microsoft Intune for Windows 10 v3.0.1 BitLocker (BL)Windows

SYSTEM AND INFORMATION INTEGRITY

3.12 Only enable NIS if absolutely necessary (nis_server_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.12 Only enable NIS if absolutely necessary (nis_ypxfrd_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.13 Only enable NIS client daemons if absolutely necessary (nis_client_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.13 Only enable NIS client daemons if absolutely necessary (nis_ypset_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.14 Only enable the printer daemons if absolutely necessaryCIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

4.1 Disable core dumpsCIS FreeBSD v1.0.5Unix

ACCESS CONTROL

4.10.9.1.2 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Also apply to matching devices that are already installed.' is set to 'True' (checked)CIS Microsoft Intune for Windows 11 v4.0.0 BLWindows

SYSTEM AND INFORMATION INTEGRITY

5.2 Enable system accounting (accounting_enable)CIS FreeBSD v1.0.5Unix

AUDIT AND ACCOUNTABILITY

5.3 Enable logging of packets received on closed ports (net.inet.tcp.log_in_vain)CIS FreeBSD v1.0.5Unix

AUDIT AND ACCOUNTABILITY

5.3 Enable logging of packets received on closed ports (net.inet.udp.log_in_vain)CIS FreeBSD v1.0.5Unix

AUDIT AND ACCOUNTABILITY

5.4 Set permissions on system log files (/var/log/auth.lo*)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

5.4 Set permissions on system log files (/var/log/lpd-errs)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

5.4 Set permissions on system log files (/var/log/maillo*)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

5.4 Set permissions on system log files (/var/log/ppp.lo*)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

5.4 Set permissions on system log files (/var/log/sendmail.s*)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

5.4 Set permissions on system log files (/var/log/slip.log*)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

5.5 Configure newsyslog for secure file permissions (/var/log/slip.log)CIS FreeBSD v1.0.5Unix

AUDIT AND ACCOUNTABILITY

6.2 Verify passwd, master.passwd, and group file permissions (/etc/group)CIS FreeBSD v1.0.5Unix

IDENTIFICATION AND AUTHENTICATION

6.2 Verify passwd, master.passwd, and group file permissions (/etc/master.passwd)CIS FreeBSD v1.0.5Unix
6.6 User home directories should be kept privateCIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

6.7 Find 'Unowned' Files and DirectoriesCIS FreeBSD v1.0.5Unix

ACCESS CONTROL

7.1 Remove weak authentication services from PAM (/etc/pam.d/rsh)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

7.4 Restrict at/cron to authorized users (/var/at/at.allow permissions)CIS FreeBSD v1.0.5Unix

ACCESS CONTROL

7.4 Restrict at/cron to authorized users (/var/cron/allow permissions)CIS FreeBSD v1.0.5Unix
7.5 Create warning banners for the system (/etc/motd permissions)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

7.5 Create warning banners for the system (/etc/motd)CIS FreeBSD v1.0.5Unix

ACCESS CONTROL

7.6 Remove the X wrapper and enable xdmCIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

8.1 Block system accountsCIS FreeBSD v1.0.5Unix

ACCESS CONTROL

8.2 Verify that accounts either have a password or are disabledCIS FreeBSD v1.0.5Unix

IDENTIFICATION AND AUTHENTICATION

8.5 Remove the toor user.CIS FreeBSD v1.0.5Unix

ACCESS CONTROL

8.7 No user dot-files should be world writableCIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

8.8 Set default umask for users (/etc/csh.login)CIS FreeBSD v1.0.5Unix

ACCESS CONTROL

8.10 Use Blowfish encryption for all users by defaultCIS FreeBSD v1.0.5Unix

IDENTIFICATION AND AUTHENTICATION

ALMA-09-009810 - AlmaLinux OS 9 must check the GPG signature of locally installed software packages before installation.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

SOL-11.1-100010 - The /etc/zones directory, and its contents, must have the vendor default owner, group, and permissions.DISA STIG Solaris 11 X86 v3r1Unix

CONFIGURATION MANAGEMENT