Item Search

Name	Audit Name	Plugin	Category
1.1.1.8 Ensure mounting of FAT filesystems is limited - lsmod	CIS Ubuntu Linux 18.04 LXD Host L2 LXD v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.8 Ensure mounting of FAT filesystems is limited - lsmod	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure /tmp is configured	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.4 Ensure nosuid option set on /tmp partition	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.8 Ensure nodev option set on /var/tmp partition	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.9 Ensure nosuid option set on /var/tmp partition	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.11 Ensure separate partition exists for /var/tmp	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.13 Ensure /var/tmp partition includes the nosuid option	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.19 Ensure nodev option set on removable media partitions	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.19 Ensure nosuid option set on removable media partitions	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.20 Ensure nosuid option set on removable media partitions	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.4 Ensure core dumps are restricted - storage	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.4 Ensure core dumps are restricted - sysctl config	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.1 Ensure message of the day is configured properly - banner	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.5 Ensure permissions on /etc/issue are configured	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.1.1 Ensure message of the day is configured properly	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.1 Ensure packet redirect sending is disabled - sysctl net.ipv4.conf.all.send_redirects	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.2 Ensure IP forwarding is disabled - ipv4 (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.1 Ensure source routed packets are not accepted - net.ipv4.conf.all.accept_source_route (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.1 Ensure source routed packets are not accepted - net.ipv4.conf.default.accept_source_route (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.1 Ensure source routed packets are not accepted - net.ipv6.conf.default.accept_source_route (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - net.ipv4.conf.all.accept_redirects (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - net.ipv4.conf.default.accept_redirects (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - net.ipv4.conf.default.accept_redirects (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - net.ipv6.conf.all.accept_redirects (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - sysctl net.ipv4.conf.default.accept_redirects	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - sysctl net.ipv6.conf.default.accept_redirects	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.3 Ensure secure ICMP redirects are not accepted - 'sysctl net.ipv4.conf.default.secure_redirects'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.6 Ensure bogus ICMP responses are ignored - (sysctl exec)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.6 Ensure bogus ICMP responses are ignored - (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.7 Ensure Reverse Path Filtering is enabled - 'sysctl net.ipv4.conf.default.rp_filter'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.8 Ensure TCP SYN Cookies is enabled - sysctl.conf/sysctl.d	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.9 Ensure IPv6 router advertisements are not accepted - 'net.ipv6.conf.default.accept_ra' (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - /etc/localtime	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - adjtimex (64-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - clock_settime (32-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl network	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl sethostname (32-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl sethostname (64-bit)	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - sethostname (64-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - sethostname (64-bit)	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's Mandatory Access Controls are collected - /etc/apparmor.d/	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's Mandatory Access Controls are collected - /etc/apparmor/	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.12 Ensure successful file system mounts are collected - 64-bit	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - modprobe	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
5.2.23 Ensure SSH MaxSessions is set to 4 or less	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.13 Ensure SSH PermitUserEnvironment is disabled	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.19 Ensure SSH warning banner is configured	CIS Red Hat 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.20 Ensure SSH PAM is enabled	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.23 Ensure SSH MaxSessions is limited	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search