Item Search

Name	Audit Name	Plugin	Category
1.1.1 Create Separate Partition for /tmp	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.2 Set nodev option for /tmp Partition	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
1.1.3 Set nosuid option for /tmp Partition	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.5 Create Separate Partition for /var	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.6 Bind Mount the /var/tmp directory to /tmp	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
1.1.8 Create Separate Partition for /var/log/audit	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
1.1.9 Create Separate Partition for /home	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.14 Add nodev Option to /dev/shm Partition	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.15 Add nosuid Option to /dev/shm Partition	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.3.1 Install AIDE	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
1.4.1 Enable SELinux in /etc/grub.conf - selinux != 0	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL
1.5.2 Set Permissions on /etc/grub.conf	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
1.6.1 Restrict Core Dumps - fs.suid_dumpable = 0'	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
2.1.4 Remove rsh	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
2.1.7 Remove tftp	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
2.1.8 Remove tftp-server	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
2.1.10 Remove talk-server	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
2.1.13 Disable chargen-stream	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
2.1.16 Disable echo-dgram	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
3.1.4 Prevent Other Programs from Using Avahi's Port - disallow-other-stacks=yes	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
3.1.6 Restrict Published Information (if publishing is required) - publish-workstation=no	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
3.2 Set Daemon umask	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
4.1.2 Disable Send Packet Redirects - net.ipv4.conf.all.send_redirects = 0	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
4.2.1 Disable Source Routed Packet Acceptance - net.ipv4.conf.all.accept_source_route = 0	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
4.5.4 Create /etc/hosts.deny	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.6.3 Disable RDS	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
5.1.1 Configure /etc/syslog.conf - daemon	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
5.1.2 Create and Set Permissions on syslog Log Files - /var/log/daemon.log	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
5.1.2 Create and Set Permissions on syslog Log Files - /var/log/kern.log	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
5.1.4 Accept Remote syslog Messages Only on Designated Log Hosts - non-loghost	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
5.2.3 Configure /etc/rsyslog.conf - auth,user /var/log/messages	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
5.2.4 Create and Set Permissions on rsyslog Log Files - /var/log/kern.log	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
5.2.6 Accept Remote rsyslog Messages Only on Designated Log Hosts - $InputTCPServerRun 514	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
6.1.9 Set User/Group Owner and Permission on /etc/cron.d	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
6.1.10 Restrict at/cron to Authorized Users - cron.allow	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
6.2.12 Set Idle Timeout Interval for User Login - ClientAliveInterval <= 300	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
6.3.2 Set Lockout for Failed Password Attempts - auth required pam_tally2.so deny=5 onerr=fail	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
6.3.3 Use pam_deny.so to Deny Services - auth requisite pam_deny.so /etc/pam.d/sshd	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
6.4 Restrict root Login to System Console	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
7.4 Set Default umask for Users	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
8.1.1 Set Warning Banner for Standard Login Services - /etc/issue	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
8.1.1 Set Warning Banner for Standard Login Services - /etc/motd perms	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
9.1.6 Verify User/Group Ownership on /etc/passwd	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
9.1.7 Verify User/Group Ownership on /etc/shadow	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
9.1.9 Verify User/Group Ownership on /etc/group	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
9.2.7 Check Permissions on User Home Directories	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
9.2.8 Check User Dot File Permissions	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
9.2.11 Check Groups in /etc/passwd	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
RHEL-10-800220 - RHEL 10 must not accept router advertisements on all Internet Protocol version 6 (IPv6) interfaces.	DISA Red Hat Enterprise Linux 10 STIG v1r1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
RHEL-10-900000 - RHEL 10 must enforce mode "0640" or less for the "/etc/audit/auditd.conf" file to prevent unauthorized access.	DISA Red Hat Enterprise Linux 10 STIG v1r1	Unix	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search