Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Release Notes
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Release Notes
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Audits
Item Search
Audits
Item Search
Filters (1)
Description
Filename
Plugin
References
Control ID
Relevance
Description
Plugin
Filename
References (Active)
Search by References
Clear All
‹‹ Previous
Previous
Page 4 of 200
• 10000 Total
Next
Next ››
Name
Audit Name
Plugin
Category
1.3.1.11 Ensure SELinux targeted policy is configured
CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
Unix
SYSTEM AND INFORMATION INTEGRITY
1.5.7 Ensure kernel core dumps are disabled unless needed
CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
Unix
CONFIGURATION MANAGEMENT
1.8.2 Ensure GDM login banner is configured
CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
Unix
ACCESS CONTROL
1.8.2 Ensure GDM login banner is configured
CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
Unix
ACCESS CONTROL
1.8.2 Ensure GDM login banner is configured
CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation
Unix
ACCESS CONTROL
DG0003-ORACLE11 - The latest security patches should be installed.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0007-ORACLE11 - The database should be secured in accordance with DoD, vendor and/or commercially accepted practices where applicable.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0013-ORACLE11 - Database backup procedures should be defined, documented and implemented.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0013-ORACLE11 - Database backup procedures should be defined, documented and implemented.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0021-ORACLE11 - A baseline of database application software should be documented and maintained.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0032-ORACLE11 - Audit records should be restricted to authorized individuals - 'audit_trail = db or db_extended'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0051-ORACLE11 - Database job/batch queues should be reviewed regularly to detect unauthorized database job submissions - 'job_queue_processes limit is set'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0051-ORACLE11 - Database job/batch queues should be reviewed regularly to detect unauthorized database job submissions - 'No unknown jobs exist in the dba_jobs queue'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0052-ORACLE11 - All applications that access the database should be logged in the audit trail.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0064-ORACLE11 - DBMS backup and restoration files should be protected from unauthorized access.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0073-ORACLE11 - Database accounts should not specify account lock times less than the site-approved minimum - 'Account lockout is < 3'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0083-ORACLE11 - Automated notification of suspicious activity detected in the audit trail should be implemented.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0083-ORACLE11 - Automated notification of suspicious activity detected in the audit trail should be implemented.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0090-ORACLE11 - Sensitive information stored in the database should be protected by encryption.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0090-ORACLE11 - Sensitive information stored in the database should be protected by encryption.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0095-ORACLE11 - Audit trail data should be reviewed daily or more frequently.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0095-ORACLE11 - Audit trail data should be reviewed daily or more frequently.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0100-ORACLE11 - Replication accounts should not be granted DBA privileges.
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0106-ORACLE11 - Database data encryption controls should be configured in accordance with application requirements.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0107-ORACLE11 - Sensitive data is stored in the database and should be identified in the System Security Plan and AIS Functional Architecture documentation.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0133-ORACLE11 - Unlimited account lock times should be specified for locked accounts.
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0140-ORACLE11 - Access to DBMS security data should be audited.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0140-ORACLE11 - Access to DBMS security data should be audited.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0142-ORACLE11 - Changes to configuration options must be audited - 'audit_sys_operations = true'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0155-ORACLE11 - The DBMS should have configured all applicable settings to use trusted files, functions, features, or other components during startup, shutdown, aborts, or other unplanned interruptions.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0158-ORACLE11 - DBMS remote administration should be audited.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0161-ORACLE11 - An automated tool that monitors audit data and immediately reports suspicious activity should be employed for the DBMS.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DG0192-ORACLE11 - Remote database or other external access should use fully-qualified names - 'global_names = true'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DG0194-ORACLE11 - Privileges assigned to developers on shared production and development DBMS hosts and the DBMS should be monitored every three months or more frequently for unauthorized changes.
DISA STIG Oracle 11 Installation v9r1 Windows
Windows
DG0198-ORACLE11 - Remote administration of the DBMS should be restricted to known, dedicated and encrypted network addresses and ports.
DISA STIG Oracle 11 Installation v9r1 Linux
Unix
DO0140-ORACLE11 - Access to the Oracle SYS and SYSTEM accounts should be restricted to authorized DBAs.
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DO0210-ORACLE11 - Access to default accounts used to support replication should be restricted to authorized DBAs - 'No replication objects exist'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DO0238-ORACLE11 - The directories assigned to the LOG_ARCHIVE_DEST* parameters should be protected from unauthorized access - 'log_archive_duplex_dest parameter is not configured'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DO0243-ORACLE11 - The Oracle _TRACE_FILES_PUBLIC parameter if present should be set to FALSE - '_trace_files_public = false'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DO3540-ORACLE11 - The Oracle SQL92_SECURITY parameter should be set to TRUE - 'sql92_security = true'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DO6749-ORACLE11 - The Oracle SEC_MAX_FAILED_LOGIN_ATTEMPTS parameter should be set to an ISSO-approved value between 1 and 3 - 'sec_max_failed_login_attempts < 3'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DO6750-ORACLE11 - The Oracle SEC_PROTOCOL_ERROR_FURTHER_ACTION parameter should be set to a value of DELAY or DROP - 'sec_protocol_error_further_action = drop or delay'
DISA STIG Oracle 11 Instance v9r1 Database
OracleDB
DO6752-ORACLE11 - The Oracle SEC_PROTOCOL_ERROR_TRACE_ACTION parameter should not be set to NONE.
DISA STIG Oracle 11 Installation v9r1 Database
OracleDB
WA000-WWA020 A22 - The Timeout directive must be properly set.
DISA STIG Apache Server 2.2 Unix v1r11 Middleware
Unix
WA000-WWA026 A22 - The httpd.conf StartServers directive must be set properly.
DISA STIG Apache Server 2.2 Unix v1r11 Middleware
Unix
WA000-WWA028 A22 - The httpd.conf MinSpareServers directive must be set properly.
DISA STIG Apache Server 2.2 Unix v1r11 Middleware
Unix
WA000-WWA032 A22 - The httpd.conf MaxClients directive must be set properly.
DISA STIG Apache Server 2.2 Unix v1r11 Middleware
Unix
WA000-WWA050 A22 - All interactive programs must be placed in a designated directory with appropriate permissions - conf
DISA STIG Apache Server 2.2 Unix v1r11 Middleware
Unix
WA000-WWA050 A22 - All interactive programs must be placed in a designated directory with appropriate permissions - test-cgi
DISA STIG Apache Server 2.2 Unix v1r11 Middleware
Unix
WA000-WWA064 A22 - The HTTP request header field size must be limited.
DISA STIG Apache Server 2.2 Unix v1r11 Middleware
Unix
‹‹ Previous
Previous
Page 4 of 200
• 10000 Total
Next
Next ››
