Item Search

Name	Audit Name	Plugin	Category
OL09-00-001060 - OL 9 pam_unix.so module must be configured in the password-auth file to use a FIPS 140-3 approved cryptographic hashing algorithm for system authentication.	DISA Oracle Linux 9 STIG v1r4	Unix	IDENTIFICATION AND AUTHENTICATION
OL09-00-001085 - OL 9 passwords for new users or password changes must have a 24-hour minimum password lifetime restriction in /etc/login.defs.	DISA Oracle Linux 9 STIG v1r4	Unix	IDENTIFICATION AND AUTHENTICATION
OL09-00-002022 - OL 9 must prevent files with the setuid and setgid bit set from being executed on file systems that are used with removable media.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002030 - OL 9 must mount /boot with the nodev option.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002040 - OL 9 must mount /dev/shm with the nodev option.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002060 - OL 9 must mount /var with the nodev option.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002061 - OL 9 must mount /var/log with the nodev option.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002062 - OL 9 must mount /var/log with the noexec option.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002072 - OL 9 must prevent code from being executed on file systems that contain user home directories.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002106 - OL 9 must conceal, via the session lock, information previously visible on the display with a publicly viewable image.	DISA Oracle Linux 9 STIG v1r4	Unix	ACCESS CONTROL
OL09-00-002126 - OL 9 must prevent a user from overriding the disabling of the graphical user smart card removal action.	DISA Oracle Linux 9 STIG v1r4	Unix	ACCESS CONTROL
OL09-00-002128 - OL 9 must prevent a user from overriding the disable-restart-buttons setting for the graphical user interface.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002129 - OL 9 must prevent a user from overriding the Ctrl-Alt-Del sequence settings for the graphical user interface.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002150 - OL 9 must be configured to enable the display of the Standard Mandatory DOD Notice and Consent Banner before granting local or remote access to the system via a graphical user logon.	DISA Oracle Linux 9 STIG v1r4	Unix	ACCESS CONTROL
OL09-00-002161 - OL 9 must not allow unattended or automatic logon via the graphical user interface.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002303 - OL 9 must define default permissions for the system default profile.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002321 - OL 9 must disable network management of the chrony daemon.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002342 - OL 9 must force a frequent session key renegotiation for SSH connections to the server.	DISA Oracle Linux 9 STIG v1r4	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
OL09-00-002382 - OL 9 must disable storing core dumps.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002384 - OL 9 must disable acquiring, saving, and processing core dumps.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002391 - OL 9 must enable mitigations against processor-based vulnerabilities.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
OL09-00-002400 - OL 9 systemd-journald service must be enabled.	DISA Oracle Linux 9 STIG v1r4	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
OL09-00-002416 - OL 9 must automatically lock an account when three unsuccessful logon attempts occur during a 15-minute time period.	DISA Oracle Linux 9 STIG v1r4	Unix	ACCESS CONTROL
OL09-00-002420 - OL 9 file systems must not contain .shosts files.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002423 - OL 9 must implement address space layout randomization (ASLR) to protect its memory from unauthorized code execution.	DISA Oracle Linux 9 STIG v1r4	Unix	SYSTEM AND INFORMATION INTEGRITY
OL09-00-002502 - OL 9 SSH private host key files must have mode 0640 or less permissive.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002507 - OL 9 SSH server configuration file must be group-owned by root.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002509 - OL 9 SSH server configuration file must have mode 0600 or less permissive.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002539 - OL 9 /etc/gshadow- file must be group-owned by root.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002543 - OL 9 /etc/gshadow- file must have mode 0000 or less permissive to prevent unauthorized access.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002545 - OL 9 /etc/passwd- file must be group-owned by root.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002547 - OL 9 /etc/passwd- file must be owned by root.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002550 - OL 9 /etc/shadow file must be group-owned by root.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002552 - OL 9 /etc/shadow file must be owned by root.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002554 - OL 9 /etc/shadow- file must have mode 0000 or less permissive to prevent unauthorized access.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002555 - OL 9 /etc/shadow file must have mode 0000 to prevent unauthorized access.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002571 - OL 9 audit tools must be owned by root.	DISA Oracle Linux 9 STIG v1r4	Unix	AUDIT AND ACCOUNTABILITY
OL09-00-002572 - OL 9 audit tools must have a mode of 0755 or less permissive.	DISA Oracle Linux 9 STIG v1r4	Unix	AUDIT AND ACCOUNTABILITY
OL09-00-002582 - OL 9 cron configuration files directory must be owned by root.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-002583 - OL 9 /etc/crontab file must have mode 0600.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-003012 - OL 9 must configure the use of the pam_faillock.so module in the /etc/pam.d/password-auth file.	DISA Oracle Linux 9 STIG v1r4	Unix	ACCESS CONTROL
OL09-00-003051 - OL 9 system accounts must not have an interactive login shell.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-005015 - OL 9 must authenticate the remote logging server for offloading audit logs via rsyslog.	DISA Oracle Linux 9 STIG v1r4	Unix	AUDIT AND ACCOUNTABILITY
OL09-00-006000 - OL 9 must protect against or limit the effects of denial-of-service (DoS) attacks by ensuring rate-limiting measures on impacted network interfaces are implemented.	DISA Oracle Linux 9 STIG v1r4	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
OL09-00-006004 - OL 9 network interfaces must not be in promiscuous mode.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-006021 - OL 9 must not forward Internet Protocol version 4 (IPv4) source-routed packets.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-006022 - OL 9 must log IPv4 packets with impossible addresses.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-006028 - OL 9 must not enable IPv4 packet forwarding unless the system is a router.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-006030 - OL 9 must not respond to Internet Control Message Protocol (ICMP) echoes sent to a broadcast address.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-006031 - OL 9 must limit the number of bogus Internet Control Message Protocol (ICMP) response errors logs.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search