Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.2 Ensure Snowflake SCIM integration is configured to automatically provision and deprovision users and groups (i.e. roles)CIS Snowflake Foundations v1.0.0 L2Snowflake

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

1.8 Ensure that users who did not log in for 90 days are disabledCIS Snowflake Foundations v1.0.0 L1Snowflake

ACCESS CONTROL

1.98 (L2) Ensure 'Enable search suggestions' is set to 'Disabled'CIS Microsoft Edge v3.0.0 L2Windows

CONFIGURATION MANAGEMENT

2.1 Ensure monitoring and alerting exist for ACCOUNTADMIN and SECURITYADMIN role grantsCIS Snowflake Foundations v1.0.0 L1Snowflake

AUDIT AND ACCOUNTABILITY

2.1.6 Disable Local BSD Print Protocol Adapter - Make sure that /application/print/rfc1179 is disabledCIS Solaris 10 L1 v5.2Unix
2.2.1 Disable RPC Encryption Key - Make sure that /network/rpc/keyserv is disabledCIS Solaris 10 L1 v5.2Unix
2.2.5 Disable LDAP Cache Manager - Make sure that /network/ldap/client is disabledCIS Solaris 10 L1 v5.2Unix
2.2.6 Disable Kerberos TGT Expiration Warning - Make sure that /network/security/ktkt_warn is disabledCIS Solaris 10 L1 v5.2Unix
2.2.8 Disable Volume Manager - Make sure that network/rpc/smserver is disabledCIS Solaris 10 L1 v5.2Unix
2.2.9 Disable Samba Support - Make sure that /network/samba is disabled. Note this check is only applicable for Solaris 10 >= 8/07CIS Solaris 10 L1 v5.2Unix
2.2.12 Disable Solaris Volume Manager Services - Make sure that /platform/sun4u/mpxio-upgrade is disabledCIS Solaris 10 L1 v5.2Unix
2.2.12 Disable Solaris Volume Manager Services - Make sure that /system/metainit is disabled - Solaris 10 >= 8/07CIS Solaris 10 L1 v5.2Unix
2.2.13 Disable Solaris Volume Manager GUI - Make sure that network/rpc/metamed is disabled.CIS Solaris 10 L1 v5.2Unix
2.3 Establish a Secure Baseline - Make sure that /network/rpc/bind only allows local connections (netservices limited)CIS Solaris 10 L1 v5.2Unix
2.3 Establish a Secure Baseline - Make sure that application/cde-printinfo:default is disabled (netservices limited)CIS Solaris 10 L1 v5.2Unix
2.3 Establish a Secure Baseline - Make sure that application/x11/xfs:default is disabled (netservices limited)CIS Solaris 10 L1 v5.2Unix
2.3 Establish a Secure Baseline - Make sure that network/cde-spc:default is disabled (netservices limited)CIS Solaris 10 L1 v5.2Unix
2.3 Establish a Secure Baseline - Make sure that network/nfs/cbd:default is disabled (netservices limited)CIS Solaris 10 L1 v5.2Unix
2.3 Establish a Secure Baseline - Make sure that network/nfs/client:default is disabled (netservices limited)CIS Solaris 10 L1 v5.2Unix
2.3 Establish a Secure Baseline - Make sure that network/nfs/mapid:default is disabled (netservices limited)CIS Solaris 10 L1 v5.2Unix
2.3 Establish a Secure Baseline - Make sure that network/nfs/nlockmgr:default is disabled (netservices limited)CIS Solaris 10 L1 v5.2Unix
2.3 Establish a Secure Baseline - Make sure that network/nfs/status:default is disabled (netservices limited)CIS Solaris 10 L1 v5.2Unix
2.3 Establish a Secure Baseline - Make sure that network/rpc/cde-ttdbserver:tcp is only limited to local connectionsCIS Solaris 10 L1 v5.2Unix
2.3 Establish a Secure Baseline - Make sure that network/rpc/metamh:default is disabled (netservices limited)CIS Solaris 10 L1 v5.2Unix
3.1.1 Modify Network ParametersCIS Solaris 10 L1 v5.2Unix
3.1.9 Disable Response to Multicast Echo Request - Check ip6_respond_to_echo_multicast value. Expected value: 0.CIS Solaris 10 L1 v5.2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.1.12 Set Strict Multihoming - Check ip_strict_dst_multihoming value. Expected value: 1.CIS Solaris 10 L1 v5.2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.1.13 Disable ICMPv4 Redirect Messages - Check ip_send_redirects value. Expected value: 0.CIS Solaris 10 L1 v5.2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.2 Restrict Core Dumps to Protected Directory - Check if COREADM_PROC_SETID_ENABLED is set to noCIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

3.5 Disable Network Routing - Make sure that ipv6-forwarding is disabledCIS Solaris 10 L1 v5.2Unix
4.1 Enable inetd Connection Logging - Make sure that tcp_trace is set to trueCIS Solaris 10 L1 v5.2Unix

AUDIT AND ACCOUNTABILITY

4.1 Ensure yearly rekeying is enabled for a Snowflake accountCIS Snowflake Foundations v1.0.0 L2Snowflake

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.9 Ensure that Tri-Secret Secure is enabled for the Snowflake accountCIS Snowflake Foundations v1.0.0 L2Snowflake

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.10 Ensure that data masking is enabled for sensitive dataCIS Snowflake Foundations v1.0.0 L2Snowflake

ACCESS CONTROL

5.1 Set daemon umask - Check if CMASK is set to 022 in /etc/default/init.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

5.2 Restrict Set-UID on User Mounted Devices - Check if nosuid option is set in /etc/rmmount.conf.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

6.1.2 Set SSH Protocol to 2 - Check if Protocol is set to 2 and not commented for client.CIS Solaris 10 L1 v5.2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

6.1.3 Disable SSH X11 Forwarding - Check if X11Forwarding is set to no and not commented for the server.CIS Solaris 10 L1 v5.2Unix

CONFIGURATION MANAGEMENT

6.1.4 Set SSH MaxAuth Tries to 3 - Check if MaxAuthTries is set to 3 or lower and not commented for the server.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

6.1.7 Set SSH RhostsAuthentication to no - Check if RhostsAuthentication is set to no and not commented for the server.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

6.7 Set Default Screen Lock for CDE Users - CDE package was not foundCIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

6.9 Restrict at/cron To Authorized Users - should pass if /etc/cron.d/at.deny does not exist.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

6.11 Set Retry Limit for Account Lockout - Check if 'RETRIES' in /etc/default/login is set to 3.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

6.13 Secure the GRUB Menu - Check if 'password' is set in /boot/grub/menu.lst. Note: This check only checks if password is setCIS Solaris 10 L1 v5.2Unix

SYSTEM AND INFORMATION INTEGRITY

7.1 Disable System Accounts - Ensure account 'adm' disallows password loginCIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.1 Disable System Accounts - Ensure account 'postgres' disallows password login.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.1 Disable System Accounts - Ensure account 'smmsp' is locked.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.1 Disable System Accounts - should pass if the default shell for 'gdm' is set to /usr/bin/false.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.1 Disable System Accounts - should pass if the default shell for 'nobody' is set to /usr/bin/false.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.4 Set Default Group for root AccountCIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL