Detections
Analytics

Item Search

NameAudit NamePluginCategory
DG0013-ORACLE11 - Database backup procedures should be defined, documented and implemented.DISA STIG Oracle 11 Installation v9r1 LinuxUnix
DG0025-ORACLE11 - DBMS cryptography must be NIST FIPS 140-2 validated.DISA STIG Oracle 11 Installation v9r1 LinuxUnix
DG0052-ORACLE11 - All applications that access the database should be logged in the audit trail.DISA STIG Oracle 11 Installation v9r1 WindowsWindows
DG0053-ORACLE11 - A single database connection configuration file should not be used to configure all database clients.DISA STIG Oracle 11 Installation v9r1 LinuxUnix
DG0063-ORACLE11 - DBMS privileges to restore database data or other DBMS configurations, features, or objects should be restricted to authorized DBMS accounts.DISA STIG Oracle 11 Installation v9r1 WindowsWindows
DG0064-ORACLE11 - DBMS backup and restoration files should be protected from unauthorized access.DISA STIG Oracle 11 Installation v9r1 LinuxUnix
DG0086-ORACLE11 - DBA roles should be periodically monitored to detect assignment of unauthorized or excess privileges.DISA STIG Oracle 11 Installation v9r1 WindowsWindows
DG0095-ORACLE11 - Audit trail data should be reviewed daily or more frequently.DISA STIG Oracle 11 Installation v9r1 WindowsWindows
DG0100-ORACLE11 - Replication accounts should not be granted DBA privileges.DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
DG0101-ORACLE11 - OS accounts used to execute external procedures should be assigned minimum privileges.DISA STIG Oracle 11 Installation v9r1 LinuxUnix
DG0118-ORACLE11 - The IAM should review changes to DBA role assignments.DISA STIG Oracle 11 Installation v9r1 WindowsWindows
DG0122-ORACLE11 - Access to sensitive data should be restricted to authorized users identified by the Information Owner - 'controlfile'DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
DG0124-ORACLE11 - Use of DBA accounts should be restricted to administrative activities.DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
DG0127-ORACLE11 - DBMS account passwords should not be set to easily guessed words or values - 'limit'DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
DG0140-ORACLE11 - Access to DBMS security data should be audited.DISA STIG Oracle 11 Installation v9r1 LinuxUnix
DG0157-ORACLE11 - Remote DBMS administration should be documented and authorized or disabled.DISA STIG Oracle 11 Installation v9r1 LinuxUnix
DG0159-ORACLE11 - Remote administrative access to the database should be monitored by the IAO or IAM.DISA STIG Oracle 11 Installation v9r1 WindowsWindows
DG0159-ORACLE11 - Remote administrative access to the database should be monitored by the IAO or IAM.DISA STIG Oracle 11 Installation v9r1 LinuxUnix
DG0161-ORACLE11 - An automated tool that monitors audit data and immediately reports suspicious activity should be employed for the DBMS.DISA STIG Oracle 11 Installation v9r1 WindowsWindows
DG0165-ORACLE11 - DBMS symmetric keys should be protected in accordance with NSA or NIST-approved key management technology or processes.DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
DG0171-ORACLE11 - The DBMS should not have a connection defined to access or be accessed by a DBMS at a different classification level.DISA STIG Oracle 11 Installation v9r1 LinuxUnix
DG0187-ORACLE11 - DBMS software libraries should be periodically backed up.DISA STIG Oracle 11 Installation v9r1 WindowsWindows
DG0192-ORACLE11 - Remote database or other external access should use fully-qualified names - 'global_names = true'DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
DO0238-ORACLE11 - The directories assigned to the LOG_ARCHIVE_DEST* parameters should be protected from unauthorized access - 'log_archive_dest parameter is configured'DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
DO0238-ORACLE11 - The directories assigned to the LOG_ARCHIVE_DEST* parameters should be protected from unauthorized access - 'log_archive_duplex_dest parameter is not configured'DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
DO0250-ORACLE11 - Fixed user and public database links should be authorized for use - 'sys.dba_repcatlog count = 0'DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
DO0260-ORACLE11 - A minimum of two Oracle control files should be defined and configured to be stored on separate, archived physical disks or archived directories on a RAID device.DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
DO3451-ORACLE11 - The Oracle WITH GRANT OPTION privilege should not be granted to non-DBA or non-Application administrator user accounts - 'No accounts with grant option exist'DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
DO3546-ORACLE11 - The Oracle REMOTE_LOGIN_PASSWORDFILE parameter should be set to EXCLUSIVE or NONE - 'remote_login_passwordfile = exclusive or none'DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
WA000-WWA022 A22 - The KeepAlive directive must be enabled.DISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
WA000-WWA024 A22 - The KeepAliveTimeout directive must be defined.DISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
WA000-WWA028 A22 - The httpd.conf MinSpareServers directive must be set properly.DISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
WA000-WWA050 A22 - All interactive programs must be placed in a designated directory with appropriate permissions - printenvDISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
WA000-WWA050 A22 - All interactive programs must be placed in a designated directory with appropriate permissions - test-cgiDISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
WA070 A22 - A private web server must be located on a separate controlled access subnet.DISA STIG Apache Server 2.2 Unix v1r11Unix
WA070 IIS6 - A private web server must be located on a separate controlled access subnet.DISA STIG IIS 6.0 Server v6r16Windows
WA230 A22 - The Web site software used with the web server must have all applicable security patches applied and documented.DISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
WA00520 A22 - The web server must not be configured as a proxy server.DISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
WA00535 A22 - The score board file must be properly secured.DISA STIG Apache Server 2.2 Unix v1r11Unix
WA00555 A22 - The web server must be configured to listen on a specific IP address and port - [::ffff:0.0.0.0]:80DISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
WA00565 A22 - HTTP request methods must be limited - LimitExceptDISA STIG Apache Server 2.2 Unix v1r11Unix
WG040 A22 - Public web server resources must not be shared with private assets.DISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
WG050 IIS6 - The web server service password(s) must be entrusted to the SA or Web Manager.DISA STIG IIS 6.0 Server v6r16Windows
WG080 A22 - Installation of a compiler on production web server is prohibited.DISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
WG145 A22 - The private web server must use an approved DoD certificate validation process.DISA STIG Apache Server 2.2 Unix v1r11Unix
WG260 A22 - Only web sites that have been fully reviewed and tested must exist on a production web server.DISA STIG Apache Site 2.2 Unix v1r11Unix
WG260 A22 - Only web sites that have been fully reviewed and tested must exist on a production web server.DISA STIG Apache Site 2.2 Unix v1r11 MiddlewareUnix
WG280 - The access control files are owned by a privileged web server account - HTACCESS_DIRDISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
WG350 A22 - A private web server will have a valid DoD server certificate.DISA STIG Apache Site 2.2 Unix v1r11Unix
WG430 A22 - Anonymous FTP user access to interactive scripts is prohibited.DISA STIG Apache Site 2.2 Unix v1r11Unix