Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1 Use the Latest Package UpdatesCIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.12 Configure TCP Wrappers - hosts.denyCIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.2 Enable Stack Protection - set noexec_user_stack = 1CIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.2 Enable Stack Protection - set noexec_user_stack_log = 1CIS Solaris 11 L1 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

3.3 Enable Strong TCP Sequence Number Generation - TCP_STRONG_ISS = 2CIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.6 Disable Response to ICMP Timestamp Requests - current ip = 0CIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.7 Disable Response to ICMP Broadcast Timestamp Requests - current ip = 0CIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.7 Disable Response to ICMP Broadcast Timestamp Requests - persistent ip = 0CIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.12 Set Strict Multihoming - persistent ipv4 = 0CIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.12 Set Strict Multihoming - persistent ipv6 = 0CIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.13 Disable ICMP Redirect Messages - current ipv6 = 0CIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.17 Disable Network Routing - ipv6-routing persistent = disabledCIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

6.2 Disable "nobody" Access for RPC Encryption Key Storage ServiceCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

6.4 Limit Consecutive Login Attempts for SSHCIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

6.8 Disable Host-based Authentication for Login-based ServicesCIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

6.10 Set Delay between Failed Login Attempts to 4CIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

6.11 Remove Autologin Capabilities from the GNOME desktop - pam.confCIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

6.12 Set Default Screen Lock for GNOME Users - lock = trueCIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

6.12 Set Default Screen Lock for GNOME Users - lock = trueCIS Solaris 11 L1 v1.1.0Unix

ACCESS CONTROL

6.12 Set Default Screen Lock for GNOME Users - lockTimeout = 0CIS Solaris 11 L1 v1.1.0Unix

ACCESS CONTROL

6.13 Restrict at/cron to Authorized Users - /etc/cron.d/at.denyCIS Solaris 11 L1 v1.1.0Unix

ACCESS CONTROL

6.13 Restrict at/cron to Authorized Users - /etc/cron.d/cron.allowCIS Solaris 11 L1 v1.1.0Unix

ACCESS CONTROL

6.13 Restrict at/cron to Authorized Users - /etc/cron.d/cron.denyCIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

6.16 Set EEPROM Security Mode and Log Failed Access (SPARC) - eeprom security-#badlogins = 0CIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

6.17 Secure the GRUB Menu (Intel) - passwd.cfg - superusersCIS Solaris 11.2 L1 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

6.17 Secure the GRUB Menu (Intel) - password --md5CIS Solaris 11 L1 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

7.1 Set Password Expiration Parameters on Active Accounts - MAXWEEKS = 13CIS Solaris 11.2 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

7.1 Set Password Expiration Parameters on Active Accounts - MINWEEKS = 1CIS Solaris 11 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

7.1 Set Password Expiration Parameters on Active Accounts - WARNWEEKS = 4CIS Solaris 11 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

7.2 Set Strong Password Creation Policies - MINDIFF = 3CIS Solaris 11.2 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

7.2 Set Strong Password Creation Policies - DICTIONLIST = /usr/share/lib/dict/wordsCIS Solaris 11.2 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

7.2 Set Strong Password Creation Policies - HISTORY = 10CIS Solaris 11 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

7.2 Set Strong Password Creation Policies - NAMECHECK = yesCIS Solaris 11.2 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

7.2 Set Strong Password Creation Policies- MAXREPEATS = 0CIS Solaris 11.2 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

7.3 Set Default umask for usersCIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

7.4 Set Default File Creation Mask for FTP UsersCIS Solaris 11 L1 v1.1.0Unix

ACCESS CONTROL

7.5 Set "mesg n" as Default for All Users - /etc/profile mesg = nCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

7.6 Lock Inactive User Accounts - useradd -D, 35CIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

8.1 Create Warnings for Standard Login Services - etc/motd permsCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

8.1 Create Warnings for Standard Login Services - etc/issue permsCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

8.2 Enable a Warning Banner for the SSH Service - Banner = /etc/issueCIS Solaris 11 L1 v1.1.0Unix

ACCESS CONTROL

9.3 Verify System Account Default Passwords - lockedCIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

9.3 Verify System Account Default Passwords - non-loginCIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

9.4 Ensure Password Fields are Not EmptyCIS Solaris 11.2 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

9.5 Verify No UID 0 Accounts Exist Other than rootCIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

9.10 Check for Presence of User .rhosts FilesCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

9.15 Check for Duplicate UIDsCIS Solaris 11.2 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

9.20 Check for Presence of User .forward FilesCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

9.22 Find SUID/SGID System ExecutablesCIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

10.2 SN.2 Remove Support for Internet Services (inetd)CIS Solaris 11.2 L2 v1.1.0Unix