Detections
Analytics

Item Search

NameAudit NamePluginCategory
GEN001610 - Run control scripts lists of preloaded libraries must contain only authorized paths - /etc/init.d/*DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001680 - All system start-up files must be group-owned by root, sys, or bin - /etc/rc*DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001740 - All global initialization files must be owned by root - /etc/csh.loginDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001760 - All global initialization files must be group-owned by root, sys, or bin - /etc/security/environDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001780 - Global initialization files must contain the mesg -n or mesg n commands - /etc/csh.loginDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001780 - Global initialization files must contain the mesg -n or mesg n commands - /etc/security/environDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001840 - All global initialization files executable search paths must contain only authorized paths - /etc/security/environDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001845 - Global initialization files library search paths must contain only authorized paths - /etc/csh.cshrcDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001845 - Global initialization files library search paths must contain only authorized paths - /etc/environmentDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001850 - Global initialization files lists of preloaded libraries must contain only authorized paths - /etc/.loginDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001880 - All local initialization files must have mode 0740 or less permissive - .dispatchDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001880 - All local initialization files must have mode 0740 or less permissive - .envDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001880 - All local initialization files must have mode 0740 or less permissive - .logoutDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001980 - The .rhosts, .shosts, hosts.equiv, shosts.equiv, /etc/passwd, /etc/shadow, and/or /etc/group files must not contain a plus (+) without defining entries for NIS+ netgroups - /etc/hosts.equivDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001980 - The .rhosts, .shosts, hosts.equiv, shosts.equiv, /etc/passwd, /etc/shadow, and/or /etc/group files must not contain a plus (+) without defining entries for NIS+ netgroups - /etc/passwdDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN001980 - The .rhosts, .shosts, hosts.equiv, shosts.equiv, /etc/passwd, /etc/shadow, and/or /etc/group files must not contain a plus (+) without defining entries for NIS+ netgroups - /etc/shadowDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002100 - The .rhosts file must not be supported in PAM.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002200 - All shell files must be owned by root or bin.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002340 - Audio devices must be owned by root - /dev/sound/*DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002360 - Audio devices must be group-owned by root, sys, or bin - /dev/sound/*DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002480 - Public directories must be the only world-writable directories and world-writable files must be located only in public directories - filesDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN002980 - The cron.allow file must have mode 0600 or less permissive.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003080 - Crontab files must have mode 0600 or less permissive.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003240 - The cron.allow file must be owned by root, bin, or sys.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003380 - The 'at' daemon must not execute programs in, or subordinate to, world-writable directories - at daemon must not execute programs in, or subordinate to, world-writable directories.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003430 - The 'at' directory must be group-owned by root, bin, or sys - at directory must be group-owned by root, bin, or sys.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003490 - The at.deny file must be group-owned by root, bin, or sys.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003523 - The kernel core dump data directory must not have an extended ACL.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003540 - The system must implement non-executable program stacks.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003604 - The system must not respond to ICMP timestamp requests sent to a broadcast address - dladm show-linkDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003605 - The system must not apply reversed source routing to TCP responses.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003606 - The system must prevent local applications from generating source-routed packets - lsrrDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003607 - The system must not accept source-routed IPv4 packets - ssrrDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003745 - The inetd.conf file must not have extended ACLs.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003860 - The system must not have the finger service active.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003900 - The hosts.lpd file (or equivalent) must not contain a '+' character - ListenDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN003930 - The hosts.lpd (or equivalent) file must be group-owned by root, bin, or sys - /etc/printers.confDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN004010 - The traceroute file must not have an extended ACL.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN004560 - The SMTP services SMTP greeting must not provide version information.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN004660 - The SMTP service must not have the EXPN feature active.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN004710 - Mail relaying must be restricted - DaemonPortOptions'DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN004710 - Mail relaying must be restricted - Postfix local onlyDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN004710 - Mail relaying must be restricted - Postfix relay rejectDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN004710 - Mail relaying must be restricted - promiscuous_relay'DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN004800 - Unencrypted FTP must not be used on the system.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN005020 - The anonymous FTP account must be configured to use chroot or a similarly isolated environment.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN005120 - The TFTP daemon must be configured to vendor specifications, including a dedicated TFTP user account, a non-login shell, such as /bin/false, and a home directory owned by the TFTP user - home directoryDISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN005140 - Any active TFTP daemon must be authorized and approved in the system accreditation package.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN005180 - All .Xauthority files must have mode 0600 or less permissive.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

GEN005190 - The .Xauthority files must not have extended ACLs.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT