Item Search

Name	Audit Name	Plugin	Category
CGI-BIN directory should be disabled. 'LoadModule cgi_module'	TNS IBM HTTP Server Best Practice	Unix	CONFIGURATION MANAGEMENT
Configuration files should be secured against unauthorized access.	TNS IBM HTTP Server Best Practice	Unix
File permissions in the root document should only be accessible by administrator	TNS IBM HTTP Server Best Practice	Unix
Latest Patches/Fixes should be installed	TNS IBM HTTP Server Best Practice	Unix	SYSTEM AND INFORMATION INTEGRITY
Limit HTTP methods allowed by the Web Server.	TNS IBM HTTP Server Best Practice	Unix	CONFIGURATION MANAGEMENT
Logging Directives should be restricted to authorized users. - 'CustomLog logs/access_log combined'	TNS IBM HTTP Server Best Practice	Windows	AUDIT AND ACCOUNTABILITY
Logging Directives should be restricted to authorized users. - 'ErrorLog logs/error_log'	TNS IBM HTTP Server Best Practice	Windows	AUDIT AND ACCOUNTABILITY
Logging Directives should be restricted to authorized users. - 'LogFormat'	TNS IBM HTTP Server Best Practice	Unix	AUDIT AND ACCOUNTABILITY
Logs containing auditing information should be secured at the directory level.	TNS IBM HTTP Server Best Practice	Unix	AUDIT AND ACCOUNTABILITY
MaxSpareServers parameter value should be appropriately configured.	TNS IBM HTTP Server Best Practice	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MinSpareServers parameter value should be appropriately configured.	TNS IBM HTTP Server Best Practice	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
Non-Essential modules should be disabled. 'mod_info'	TNS IBM HTTP Server Best Practice	Windows	CONFIGURATION MANAGEMENT
Non-Essential modules should be disabled. 'mod_info'	TNS IBM HTTP Server Best Practice	Unix	CONFIGURATION MANAGEMENT
OpenStack Compute - strict permissions set for Compute configuration files - /etc/nova/nova.conf	TNS OpenStack Nova/Compute Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Compute - strict permissions set for Compute configuration files - /etc/nova/policy.json	TNS OpenStack Nova/Compute Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Identity - Disable admin token in /etc/keystone/keystone.conf	TNS OpenStack Keystone/Identity Security Guide	Unix	ACCESS CONTROL
OpenStack Identity - strict permissions set for Identity configuration files - /etc/keystone/ssl/private/signing_key.pem	TNS OpenStack Keystone/Identity Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Networking - strict permissions set for Compute configuration files - /etc/neutron/policy.json	TNS OpenStack Neutron/Networking Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Networking - strict permissions set for Compute configuration files - /etc/neutron/rootwrap.conf	TNS OpenStack Neutron/Networking Security Guide	Unix	CONFIGURATION MANAGEMENT
Salesforce.com : AuthConfig - 'Auth Providers = Facebook Consumer Key'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Facebook Error URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Janrain Consumer Secret'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Janrain Error URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Janrain Execution User ID'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Janrain is not configured'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS Authorized Endpoint URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Default Scope'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect is not configured'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Salesforce Execution User ID'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Salesforce is not configured'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : CronTrigger - 'Cron Jobs with Status of ERROR'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : Email Services - 'IsAuthenticationRequired = True'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	IDENTIFICATION AND AUTHENTICATION
Salesforce.com : Monitoring Login History - 'Inactive users'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	IDENTIFICATION AND AUTHENTICATION
Salesforce.com : Monitoring Login History - 'No users are frozen'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Network-Based Security - 'Trusted IP Range has been defined'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : Network-Based Security - 'Trusted IP Ranges exist'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : Object Permissions - 'DefaultCalendarAccess should not be Show Details or Show Details and Add Events'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Object Permissions - 'DefaultCaseAccess should not be Public Read/Write or Public Read/Write/Transfer'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Object Permissions - 'DefaultContactAccess should not be Public Read/Write or Public Read/Write/Transfer'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Setting Password Policies - 'invalid login attempts <= 5'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Setting Password Policies - 'password history >= 3'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	IDENTIFICATION AND AUTHENTICATION
Salesforce.com : Setting Session Security - 'Disable timeout warning = false'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : Setting Session Security - 'Enable clickjack protection for setup pages = true'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : Setting Session Security - 'Enable CSRF protection on GET requests on non-setup pages = true'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : Setting Session Security - 'Force relogin after Login-As-User = true'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
SalesForce.com : Setting Session Security - 'Review Active Users'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
SalesForce.com : Setting Session Security - 'Review Inactive Users'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Server version information parameters should be turned off - 'ServerSignature Off'	TNS IBM HTTP Server Best Practice	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
StartServers parameter value should be appropriately configured.	TNS IBM HTTP Server Best Practice	Unix	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search