Item Search

Name	Audit Name	Plugin	Category
DTOO104 - Project - Disabling of user name and password syntax from being used in URLs must be enforced.	DISA STIG Office 2010 Project v1r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO117 - Project - Saved from URL mark to assure Internet zone processing must be enforced.	DISA STIG Office 2010 Project v1r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO121 - PowerPoint - Files from the Internet zone must be opened in Protected View.	DISA STIG Office 2010 PowerPoint v1r11	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO126 - Project - Add-on Management functionality must be allowed.	DISA STIG Office 2010 Project v1r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO127 - PowerPoint - Application add-ins must be signed by Trusted Publisher.	DISA STIG Office 2010 PowerPoint v1r11	Windows	CONFIGURATION MANAGEMENT
DTOO127 - Publisher - Application add-ins must be signed by Trusted Publisher.	DISA STIG Office 2010 Publisher v1r12	Windows	CONFIGURATION MANAGEMENT
DTOO128 - PowerPoint - Data Execution Prevention must be enforced.	DISA STIG Office 2010 PowerPoint v1r11	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO128 - Word - Data Execution Prevention must be enforced.	DISA STIG Office 2010 Word v1r12	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO131 - PowerPoint - Trust Bar Notifications for unsigned application add-ins must be blocked.	DISA STIG Office 2010 PowerPoint v1r11	Windows	CONFIGURATION MANAGEMENT
DTOO173 - InfoPath - Disabling of email forms from the Full Trust Security Zone must be configured.	DISA STIG Office 2010 InfoPath v1r12	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO180 - Office System - Vector markup Language (VML) for displaying graphics in browsers must be disallowed.	DISA STIG Office System 2010 v1r13	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO187 - Office System - Rights managed Office Open XML files must be protected.	DISA STIG Office System 2010 v1r13	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO193 - Office System - Automation Security to enforce macro level security in Office documents must be configured.	DISA STIG Office System 2010 v1r13	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO194 - Office System - Hyperlink warnings for Office must be configured for use.	DISA STIG Office System 2010 v1r13	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO199 - Office System - Changing permissions on rights managed content for users must be enforced.	DISA STIG Office System 2010 v1r13	Windows	ACCESS CONTROL
DTOO200 - Office System - Office must be configured to not allow read with browsers.	DISA STIG Office System 2010 v1r13	Windows	ACCESS CONTROL
DTOO209 - Publisher - Protection from zone elevation must be enforced.	DISA STIG Office 2010 Publisher v1r12	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO211 - Word - ActiveX Installs must be configured for proper restriction.	DISA STIG Office 2010 Word v1r12	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO288 - PowerPoint - Files in unsafe locations must be opened in Protected View.	DISA STIG Office 2010 PowerPoint v1r11	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO291 - PowerPoint - Automatic download of linked images must be disallowed.	DISA STIG Office 2010 PowerPoint v1r11	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO294 - InfoPath - InfoPath must be enforced to not use e-mail forms from the Intranet security zone.	DISA STIG Office 2010 InfoPath v1r12	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO295 - InfoPath - InfoPath e-mail forms in Outlook must be disallowed.	DISA STIG Office 2010 InfoPath v1r12	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO334 - Word - Word 2000 binary documents and templates must be configured to edit in protected view.	DISA STIG Office 2010 Word v1r12	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO338 - Word - Word 97 binary documents and templates must be configured to edit in protected view.	DISA STIG Office 2010 Word v1r12	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
GEN000242 - The system must use at least two time sources for clock synchronization - 'NTP daemon is running'	DISA STIG AIX 5.3 v1r2	Unix	AUDIT AND ACCOUNTABILITY
GEN000280 - Direct logins must not be permitted to shared, default, application, or utility accounts - '/etc/security/user rlogin=false'	DISA STIG AIX 5.3 v1r2	Unix	IDENTIFICATION AND AUTHENTICATION
GEN000760 - Accounts must be locked upon 35 days of inactivity.	DISA STIG AIX 5.3 v1r2	Unix	ACCESS CONTROL
GEN000980 - The system must prevent the root account from directly logging in except from the system console.	DISA STIG AIX 5.3 v1r2	Unix	IDENTIFICATION AND AUTHENTICATION
GEN001200 - All system command files must have mode 0755 or less permissive - '/usr/ucb/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001210 - All system command files must not have extended ACLs - '/bin/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001220 - All system files, programs, and directories must be owned by a system account - '/etc/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001220 - All system files, programs, and directories must be owned by a system account - '/usr/lbin/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001220 - All system files, programs, and directories must be owned by a system account - '/usr/ucb/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001240 - System files, programs, and directories must be group-owned by a system group - '/usr/ucb/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001300 - Library files must have mode 0755 or less permissive - '/usr/lib/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/config ACCT_Disable exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/config ACCT_Enable exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/config BACKUP_Export exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/config PROC_Adjtime exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/config PROC_Kill exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events FILE_Chpriv exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events FILE_Mknod exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events FS_Chroot exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events PROC_Kill exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events PROC_Privilege exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events PROC_Setpgid exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events RESTORE_Import exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events TCBCK_Delete exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events USER_Create exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events USER_Reboot exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search