Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.1 Ensure mounting of squashfs filesystems is disabled - modprobeCIS Aliyun Linux 2 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.1.1.1 Ensure mounting of freevxfs filesystems is disabled - modprobeCIS Debian 9 Workstation L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

1.1.1.4 Ensure mounting of hfs filesystems is disabled - modprobeCIS Oracle Linux 6 Server L1 v2.0.0Unix

CONFIGURATION MANAGEMENT

1.1.1.7 Ensure mounting of udf filesystems is disabled - modprobeCIS Oracle Linux 6 Server L1 v2.0.0Unix

CONFIGURATION MANAGEMENT

1.1.7 Ensure separate partition exists for /var/tmpCIS Red Hat 6 Workstation L2 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.1.8 Ensure nodev option set on /var/tmp partitionCIS Red Hat 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.1.10 Ensure noexec option set on /var/tmp partitionCIS Red Hat 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.1.13 Ensure separate partition exists for /homeCIS Aliyun Linux 2 L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.1.16 Ensure nosuid option set on /dev/shm partitionCIS Red Hat 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.1.17 Ensure noexec option set on /dev/shm partitionCIS Oracle Linux 6 Server L1 v2.0.0Unix

CONFIGURATION MANAGEMENT

1.1.18 Ensure nodev option set on removable media partitionsCIS Oracle Linux 6 Server L1 v2.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1 Ensure message of the day is configured properly - banner textCIS Oracle Linux 6 Server L1 v2.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1.2 Ensure local login warning banner is configured properly - msrvCIS Aliyun Linux 2 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1.3 Ensure remote login warning banner is configured properlyCIS Debian 9 Workstation L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

1.7.1.4 Ensure permissions on /etc/motd are configuredCIS Aliyun Linux 2 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1.5 Ensure permissions on /etc/issue are configuredCIS Debian 9 Workstation L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

1.7.1.5 Ensure permissions on /etc/issue are configuredCIS Aliyun Linux 2 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1.6 Ensure permissions on /etc/issue.net are configuredCIS Debian 9 Server L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

1.7.1.6 Ensure permissions on /etc/issue.net are configuredCIS Debian 9 Workstation L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

1.7.6 Ensure permissions on /etc/issue.net are configuredCIS Oracle Linux 6 Server L1 v2.0.0Unix

ACCESS CONTROL

2.1 Create Separate Partition for /tmpCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

2.2 Set nodev option for /tmp PartitionCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

2.2 Set nodev option for /tmp PartitionCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

2.2.1.2 Ensure ntp is configured - RUNASUSERCIS Debian 9 Workstation L1 v1.0.1Unix

AUDIT AND ACCOUNTABILITY

2.2.15 Ensure mail transfer agent is configured for local-only mode - /etc/postfix/main.cfCIS Debian 9 Server L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

2.6 Bind Mount the /var/tmp directory to /tmpCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

2.13 Add nosuid Option to Removable Media PartitionsCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

2.16 Add noexec Option to /run/shm PartitionCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

3.3.4 Ensure permissions on /etc/hosts.allow are configuredCIS Aliyun Linux 2 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

4.2 Restrict access to $CATALINA_BASECIS Apache Tomcat 8 L1 v1.1.0Unix

ACCESS CONTROL

4.2.2 Ensure permissions on all logfiles are configuredCIS Oracle Linux 6 Server L1 v2.0.0Unix

ACCESS CONTROL

4.5 Restrict access to Tomcat temp directoryCIS Apache Tomcat 8 L1 v1.1.0 MiddlewareUnix

ACCESS CONTROL

4.12 Restrict access to Tomcat server.xmlCIS Apache Tomcat 8 L1 v1.1.0Unix

ACCESS CONTROL

4.14 Restrict access to Tomcat web.xmlCIS Apache Tomcat 8 L1 v1.1.0Unix

ACCESS CONTROL

5.1.1 Ensure cron daemon is enabledCIS Red Hat 6 Workstation L1 v3.0.0Unix

AUDIT AND ACCOUNTABILITY

5.1.2 Ensure permissions on /etc/crontab are configuredCIS Aliyun Linux 2 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

5.1.2 Ensure permissions on /etc/crontab are configuredCIS Oracle Linux 6 Server L1 v2.0.0Unix

ACCESS CONTROL

5.1.6 Ensure permissions on /etc/cron.monthly are configuredCIS Debian 9 Server L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

5.1.7 Ensure permissions on /etc/cron.d are configuredCIS Debian 9 Workstation L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

5.1.8 Ensure at/cron is restricted to authorized users - at.allowCIS Debian 9 Workstation L1 v1.0.1Unix

ACCESS CONTROL

5.2.2 Ensure permissions on SSH private host key files are configuredCIS Debian 9 Workstation L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

5.2.6 Ensure SSH X11 forwarding is disabledCIS Debian 9 Server L2 v1.0.1Unix

SYSTEM AND INFORMATION INTEGRITY

5.2.12 Ensure SSH PermitUserEnvironment is disabledCIS Debian 9 Server L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

5.3.1 Ensure permissions on /etc/ssh/sshd_config are configuredCIS Oracle Linux 6 Server L1 v2.0.0Unix

ACCESS CONTROL

5.3.13 Ensure SSH PermitUserEnvironment is disabledCIS Red Hat 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

6.2.7 Ensure all users' home directories existCIS Debian 9 Server L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

6.2.7 Ensure all users' home directories existCIS Debian 9 Workstation L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

6.2.7 Ensure all users' home directories existCIS Aliyun Linux 2 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

6.2.8 Ensure all users' home directories existCIS Red Hat 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

7.6 Ensure directory in logging.properties is a secure location - check application log directory is secureCIS Apache Tomcat 8 L1 v1.1.0Unix

ACCESS CONTROL