| 1.6.1.5 Ensure the SELinux mode is enforcing | CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG | Unix | ACCESS CONTROL, SYSTEM AND INFORMATION INTEGRITY |
| 1.6.1.9 Ensure non-privileged users are prevented from executing privileged functions | CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG | Unix | ACCESS CONTROL |
| DTOO199 - Changing permissions on rights managed content for users must be enforced. | DISA STIG Microsoft Office System 2013 v2r2 | Windows | ACCESS CONTROL |
| DTOO200 - Office must be configured to not allow read with browsers. | DISA STIG Microsoft Office System 2013 v2r2 | Windows | ACCESS CONTROL |
| GEN000252 - The time synchronization configuration file (such as /etc/ntp.conf) must have mode 0640 or less permissive. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN001140 - System files and directories must not have uneven access permissions - /etc/* | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN001140 - System files and directories must not have uneven access permissions - /etc/* | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN001140 - System files and directories must not have uneven access permissions - /sbin/* | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN001140 - System files and directories must not have uneven access permissions - /usr/ucb/* | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN001180 - All network services daemon files must have mode 0755 or less permissive - /usr/sbin/* | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN001180 - All network services daemon files must have mode 0755 or less permissive - httpd | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN001180 - All network services daemon files must have mode 0755 or less permissive - sshd | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN001280 - Manual page files must have mode 0655 or less permissive - /usr/sfw/man/* | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN001280 - Manual page files must have mode 0655 or less permissive - /usr/sfw/man/* | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN001280 - Manual page files must have mode 0655 or less permissive - /usr/sfw/share/man/* | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN001280 - Manual page files must have mode 0655 or less permissive - /usr/share/man/* | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN001320 - NIS/NIS+/yp files must be owned by root, sys, or bin - /usr/lib/netsvc/yp/* | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN001320 - NIS/NIS+/yp files must be owned by root, sys, or bin - /var/yp/* | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN001340 - NIS/NIS+/yp files must be group-owned by root, sys, or bin - /usr/lib/netsvc/yp/* | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN001360 - The NIS/NIS+/yp command files must have mode 0755 or less permissive - /usr/lib/netsvc/yp/* | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN001360 - The NIS/NIS+/yp command files must have mode 0755 or less permissive - /var/yp/* | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN001380 - The /etc/passwd file must have mode 0644 or less permissive. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN001400 - The /etc/shadow (or equivalent) file must be owned by root. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN002320 - Audio devices must have mode 0660 or less permissive - /dev/audio* | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN002320 - Audio devices must have mode 0660 or less permissive - /dev/sound/* | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN003220 - Cron programs must not set the umask to a value less restrictive than 077. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN003220 - Cron programs must not set the umask to a value less restrictive than 077. | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN003280 - Access to the at utility must be controlled via the at.allow and/or at.deny file(s). | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN003400 - The 'at' directory must have mode 0755 or less permissive - at directory must have mode 0755 or less permissive. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN003760 - The services file must be owned by root or bin. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN003760 - The services file must be owned by root or bin. | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN003780 - The services file must have mode 0444 or less permissive. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN003920 - The hosts.lpd (or equivalent) file must be owned by root - /etc/apache/httpd-standalone-ipp.conf | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN003920 - The hosts.lpd (or equivalent) file must be owned by root - /etc/printers.conf | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN003920 - The hosts.lpd (or equivalent) file must be owned by root - /etc/printers.conf | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN003920 - The hosts.lpd (or equivalent) file must be owned by root - SMB_CONF | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN003940 - The hosts.lpd (or equivalent) must have mode 0644 or less permissive - httpd-standalone-ipp.conf | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN004480 - The SMTP service log file must be owned by root - /var/adm/messages | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN004480 - The SMTP service log file must be owned by root - /var/log/syslog | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN004500 - The SMTP service log file must have mode 0644 or less permissive - MAIL_LOG | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN004880 - The ftpusers file must exist. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN004900 - The ftpusers file must contain account names not allowed to use FTP. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN005320 - The snmpd.conf file must have mode 0600 or less permissive - /etc/sma/snmp/snmpd.conf | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN005320 - The snmpd.conf file must have mode 0600 or less permissive - /usr/sfw/lib/sma_snmp/snmpd.conf | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN005340 - Management Information Base (MIB) files must have mode 0640 or less permissive. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN006140 - The smb.conf file must have mode 0644 or less permissive. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN006200 - The smbpasswd file must have mode 0600 or less permissive. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN006260 - The /etc/news/hosts.nntp (or equivalent) must have mode 0600 or less permissive. | DISA STIG Solaris 10 SPARC v2r4 | Unix | ACCESS CONTROL |
| GEN006280 - The /etc/news/hosts.nntp.nolimit (or equivalent) must have mode 0600 or less permissive. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
| GEN006320 - The /etc/news/passwd.nntp file (or equivalent) must have mode 0600 or less permissive. | DISA STIG Solaris 10 X86 v2r4 | Unix | ACCESS CONTROL |
