Item Search

NameAudit NamePluginCategory
1.1.3 Ensure nodev option set on /tmp partitionCIS Google Container-Optimized OS v1.2.0 L1 ServerUnix

ACCESS CONTROL, MEDIA PROTECTION

1.1.9 Ensure nodev option set on /home partitionCIS Google Container-Optimized OS v1.2.0 L1 ServerUnix

ACCESS CONTROL, MEDIA PROTECTION

1.6.2 Ensure local login warning banner is configured properlyCIS Debian Linux 11 v2.0.0 L1 WorkstationUnix

ACCESS CONTROL

1.6.3 Ensure remote login warning banner is configured properlyCIS Oracle Linux 7 v4.0.0 L1 WorkstationUnix

ACCESS CONTROL

1.6.3 Ensure remote login warning banner is configured properlyCIS Ubuntu Linux 24.04 LTS v1.0.0 L1 ServerUnix

ACCESS CONTROL

1.6.3 Ensure remote login warning banner is configured properlyCIS Ubuntu Linux 24.04 LTS v1.0.0 L1 WorkstationUnix

ACCESS CONTROL

1.6.3 Ensure remote login warning banner is configured properlyCIS Ubuntu Linux 22.04 LTS v2.0.0 L1 ServerUnix

ACCESS CONTROL

1.7.2 Ensure local login warning banner is configured properlyCIS SUSE Linux Enterprise 15 v2.0.0 L1 ServerUnix

ACCESS CONTROL

1.7.2 Ensure local login warning banner is configured properlyCIS Rocky Linux 8 Workstation L1 v2.0.0Unix

ACCESS CONTROL

1.7.2 Ensure local login warning banner is configured properlyCIS Red Hat EL8 Workstation L1 v3.0.0Unix

ACCESS CONTROL

1.7.2 Ensure local login warning banner is configured properlyCIS Red Hat Enterprise Linux 9 v2.0.0 L1 ServerUnix

ACCESS CONTROL

1.7.2 Ensure local login warning banner is configured properlyCIS Rocky Linux 9 v2.0.0 L1 ServerUnix

ACCESS CONTROL

1.7.3 Ensure remote login warning banner is configured properlyCIS AlmaLinux OS 9 v2.0.0 L1 WorkstationUnix

ACCESS CONTROL

1.7.3 Ensure remote login warning banner is configured properlyCIS Rocky Linux 8 Server L1 v2.0.0Unix

ACCESS CONTROL

1.7.3 Ensure remote login warning banner is configured properlyCIS Oracle Linux 8 Server L1 v3.0.0Unix

ACCESS CONTROL

1.7.3 Ensure remote login warning banner is configured properlyCIS Red Hat Enterprise Linux 9 v2.0.0 L1 ServerUnix

ACCESS CONTROL

1.7.3 Ensure remote login warning banner is configured properlyCIS Rocky Linux 9 v2.0.0 L1 ServerUnix

ACCESS CONTROL

ALMA-09-019380 - AlmaLinux OS 9 must log packets with impossible addresses.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

ALMA-09-029720 - AlmaLinux OS 9 must be configured to disable Bluetooth.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

ALMA-09-034120 - AlmaLinux OS 9 SSHD must not allow blank passwords.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

IDENTIFICATION AND AUTHENTICATION

ALMA-09-041490 - AlmaLinux OS 9 systemd-journald service must be enabled.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

ALMA-09-042040 - AlmaLinux OS 9 must have the policycoreutils package installed.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

ALMA-09-055240 - AlmaLinux OS 9 must have the chrony package installed.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

AUDIT AND ACCOUNTABILITY

APPL-14-000031 The macOS system must configure audit log folders to not contain access control lists.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

AUDIT AND ACCOUNTABILITY

MYS8-00-000800 - The MySQL Database Server 8.0 must include additional, more detailed, organizationally defined information in the audit records for audit events identified by type, location, or subject.DISA Oracle MySQL 8.0 v2r2 DBMySQLDB

AUDIT AND ACCOUNTABILITY

MYS8-00-001500 - The MySQL Database Server 8.0 must protect against a user falsely repudiating having performed organization-defined actions.DISA Oracle MySQL 8.0 v2r2 DBMySQLDB

AUDIT AND ACCOUNTABILITY

MYS8-00-004700 - The MySQL Database Server 8.0, when utilizing PKI-based authentication, must validate certificates by performing RFC 5280-compliant certification path validation.DISA Oracle MySQL 8.0 v2r2 DBMySQLDB

IDENTIFICATION AND AUTHENTICATION

MYS8-00-008700 - The role(s)/group(s) used to modify database structure (including but not necessarily limited to tables, indexes, storage, etc.) and logic modules (stored procedures, functions, triggers, links to software external to the MySQL Database Server 8.0, etc.) must be restricted to authorized users.DISA Oracle MySQL 8.0 v2r2 DBMySQLDB

CONFIGURATION MANAGEMENT

MYS8-00-010600 - Execution of software modules (to include stored procedures, functions, and triggers) with elevated privileges must be restricted to necessary cases only.DISA Oracle MySQL 8.0 v2r2 DBMySQLDB

ACCESS CONTROL

MYS8-00-011300 - The MySQL Database Server 8.0 must maintain the confidentiality and integrity of information during preparation for transmission.DISA Oracle MySQL 8.0 v2r2 DBMySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

PHTN-40-000031 The Photon operating system must generate audit records when successful/unsuccessful attempts to access privileges occur.DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1Unix

AUDIT AND ACCOUNTABILITY

RHEL-09-654205 - Successful/unsuccessful uses of the umount system call in RHEL 9 must generate an audit record.DISA Red Hat Enterprise Linux 9 STIG v2r4Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

RHEL-09-654210 - Successful/unsuccessful uses of the umount2 system call in RHEL 9 must generate an audit record.DISA Red Hat Enterprise Linux 9 STIG v2r4Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

SLES-15-030020 - The SUSE operating system must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/shadow.DISA SLES 15 STIG v2r2Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

SLES-15-030080 - The SUSE operating system must generate audit records for all uses of the gpasswd command.DISA SLES 15 STIG v2r2Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

SLES-15-030480 - The SUSE operating system must generate audit records for all modifications to the lastlog file.DISA SLES 15 STIG v2r2Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020380 - Successful/unsuccessful uses of the mount command must generate an audit record - b64DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020540 - Successful/unsuccessful uses of the fchownat command must generate an audit record - b32DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020560 - Successful/unsuccessful uses of the chmod command must generate an audit record - b32DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020590 - Successful/unsuccessful uses of the open command must generate an audit record - EACCES b32DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020590 - Successful/unsuccessful uses of the open command must generate an audit record - EACCES b64DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020600 - Successful/unsuccessful uses of the truncate command must generate an audit record - EACCES b32DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020600 - Successful/unsuccessful uses of the truncate command must generate an audit record - EPERM b32DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020600 - Successful/unsuccessful uses of the truncate command must generate an audit record - EPERM b64DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020610 - Successful/unsuccessful uses of the ftruncate command must generate an audit record - EPERM b32DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020630 - Successful/unsuccessful uses of the openat command must generate an audit record - EACCES b64DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020640 - Successful/unsuccessful uses of the open_by_handle_at command must generate an audit record - EPERM b32DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020700 - Successful/unsuccessful uses of the apparmor_parser command must generate an audit record.DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020810 - Successful/unsuccessful uses of the crontab command must generate an audit record.DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

UBTU-16-020850 - Successful/unsuccessful uses of the delete_module command must generate an audit record - b32DISA STIG Ubuntu 16.04 LTS v2r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE