4.1.4.1 Ensure Audit logs are owned by root and mode 0600 or less permissive | CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG | Unix | AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY |
AIX7-00-002070 - AIX log files must be owned by a system account. | DISA STIG AIX 7.x v2r9 | Unix | SYSTEM AND INFORMATION INTEGRITY |
AIX7-00-002071 - AIX log files must be owned by a system group. | DISA STIG AIX 7.x v2r9 | Unix | SYSTEM AND INFORMATION INTEGRITY |
AIX7-00-003006 - AIX log files must have mode 0640 or less permissive. | DISA STIG AIX 7.x v2r9 | Unix | SYSTEM AND INFORMATION INTEGRITY |
AIX7-00-003007 - AIX log files must not have extended ACLs, except as needed to support authorized software. | DISA STIG AIX 7.x v2r9 | Unix | SYSTEM AND INFORMATION INTEGRITY |
AOSX-13-002105 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - asl | DISA STIG Apple Mac OSX 10.13 v2r5 | Unix | SYSTEM AND INFORMATION INTEGRITY |
AOSX-13-002105 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - newsyslog | DISA STIG Apple Mac OSX 10.13 v2r5 | Unix | SYSTEM AND INFORMATION INTEGRITY |
AOSX-13-002106 - The macOS system must be configured with system log files set to mode 640 or less permissive - newsyslog | DISA STIG Apple Mac OSX 10.13 v2r5 | Unix | SYSTEM AND INFORMATION INTEGRITY |
AOSX-13-002107 - The macOS system must be configured with access control lists (ACLs) for system log files to be set correctly - newsyslog | DISA STIG Apple Mac OSX 10.13 v2r5 | Unix | SYSTEM AND INFORMATION INTEGRITY |
AOSX-14-004001 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - Newsyslog | DISA STIG Apple Mac OSX 10.14 v2r6 | Unix | SYSTEM AND INFORMATION INTEGRITY |
DB2X-00-006300 - DB2 must reveal detailed error messages only to the ISSO, ISSM, SA and DBA. | DISA STIG IBM DB2 v10.5 LUW v2r1 Database | IBM_DB2DB | SYSTEM AND INFORMATION INTEGRITY |
EP11-00-006600 - The EDB Postgres Advanced Server must reveal detailed error messages only to the ISSO, ISSM, SA, and DBA. | EDB PostgreSQL Advanced Server v11 DB Audit v2r3 | PostgreSQLDB | SYSTEM AND INFORMATION INTEGRITY |
MD3X-00-000530 - MongoDB must reveal detailed error messages only to the ISSO, ISSM, SA, and DBA. | DISA STIG MongoDB Enterprise Advanced 3.x v2r2 OS | Unix | SYSTEM AND INFORMATION INTEGRITY |
O112-C2-020000 - The DBMS must restrict error messages, so only authorized personnel may view them. | DISA STIG Oracle 11.2g v2r4 Database | OracleDB | SYSTEM AND INFORMATION INTEGRITY |
O121-C2-020000 - The DBMS must restrict error messages so only authorized personnel may view them. | DISA STIG Oracle 12c v2r9 Database | OracleDB | SYSTEM AND INFORMATION INTEGRITY |
OL6-00-000133 - All rsyslog-generated log files must be owned by root. | DISA STIG Oracle Linux 6 v2r7 | Unix | SYSTEM AND INFORMATION INTEGRITY |
OL6-00-000134 - All rsyslog-generated log files must be group-owned by root. | DISA STIG Oracle Linux 6 v2r7 | Unix | SYSTEM AND INFORMATION INTEGRITY |
PANW-AG-000127 - The Palo Alto Networks security platform must block traceroutes and ICMP probes originating from untrusted networks (e.g., ISP and other non-DoD networks). | DISA STIG Palo Alto ALG v2r4 | Palo_Alto | SYSTEM AND INFORMATION INTEGRITY |
PGS9-00-002500 - PostgreSQL must reveal detailed error messages only to the ISSO, ISSM, SA and DBA. | DISA STIG PostgreSQL 9.x on RHEL OS v2r4 | Unix | SYSTEM AND INFORMATION INTEGRITY |
PPS9-00-006600 - The EDB Postgres Advanced Server must reveal detailed error messages only to the ISSO, ISSM, SA and DBA. | EDB PostgreSQL Advanced Server DB Audit v2r3 | PostgreSQLDB | SYSTEM AND INFORMATION INTEGRITY |
RHEL-06-000134 - All rsyslog-generated log files must be group-owned by root. | DISA Red Hat Enterprise Linux 6 STIG v2r2 | Unix | SYSTEM AND INFORMATION INTEGRITY |
RHEL-06-000135 - All rsyslog-generated log files must have mode 0600 or less permissive. | DISA Red Hat Enterprise Linux 6 STIG v2r2 | Unix | SYSTEM AND INFORMATION INTEGRITY |
RHEL-07-910055 - The Red Hat Enterprise Linux operating system must protect audit information from unauthorized read, modification, or deletion. | DISA Red Hat Enterprise Linux 7 STIG v3r14 | Unix | AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY |
RHEL-09-653080 - RHEL 9 audit logs must be group-owned by root or by a restricted logging group to prevent unauthorized read access. | DISA Red Hat Enterprise Linux 9 STIG v1r3 | Unix | AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY |
RHEL-09-653085 - RHEL 9 audit log directory must be owned by root to prevent unauthorized read access. | DISA Red Hat Enterprise Linux 9 STIG v1r3 | Unix | AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY |
RHEL-09-653090 - RHEL 9 audit logs file must have mode 0600 or less permissive to prevent unauthorized access to the audit log. | DISA Red Hat Enterprise Linux 9 STIG v1r3 | Unix | AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY |
SLES-12-010890 - The SUSE operating system must prevent unauthorized users from accessing system error messages. | DISA SLES 12 STIG v2r13 | Unix | SYSTEM AND INFORMATION INTEGRITY |
SOL-11.1-070240 - The operating system must reveal error messages only to authorized personnel. | DISA STIG Solaris 11 X86 v2r9 | Unix | SYSTEM AND INFORMATION INTEGRITY |
SOL-11.1-070240 - The operating system must reveal error messages only to authorized personnel. | DISA STIG Solaris 11 SPARC v2r9 | Unix | SYSTEM AND INFORMATION INTEGRITY |
SQL6-D0-010100 - SQL Server must reveal detailed error messages only to the ISSO, ISSM, SA, and DBA. | DISA STIG SQL Server 2016 Instance DB Audit v2r11 | MS_SQLDB | SYSTEM AND INFORMATION INTEGRITY |
TCAT-AS-000930 - Default error pages for manager application must be customized. | DISA STIG Apache Tomcat Application Server 9 v2r7 Middleware | Unix | SYSTEM AND INFORMATION INTEGRITY |
TCAT-AS-000930 - Default error pages for manager application must be customized. | DISA STIG Apache Tomcat Application Server 9 v2r7 | Unix | SYSTEM AND INFORMATION INTEGRITY |
TCAT-AS-000940 - ErrorReportValve showReport must be set to false. | DISA STIG Apache Tomcat Application Server 9 v2r7 Middleware | Unix | SYSTEM AND INFORMATION INTEGRITY |
TCAT-AS-000940 - ErrorReportValve showReport must be set to false. | DISA STIG Apache Tomcat Application Server 9 v2r7 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-16-010940 - The /var/log directory must be group-owned by syslog. | DISA STIG Ubuntu 16.04 LTS v2r3 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-16-010950 - The /var/log directory must be owned by root. | DISA STIG Ubuntu 16.04 LTS v2r3 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-16-010960 - The /var/log directory must have mode 0770 or less permissive. | DISA STIG Ubuntu 16.04 LTS v2r3 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-16-010970 - The /var/log/syslog file must be group-owned by adm. | DISA STIG Ubuntu 16.04 LTS v2r3 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-16-010980 - The /var/log/syslog file must be owned by syslog. | DISA STIG Ubuntu 16.04 LTS v2r3 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-16-010990 - The /var/log/syslog file must have mode 0640 or less permissive. | DISA STIG Ubuntu 16.04 LTS v2r3 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-16-020160 - The audit log files must be owned by root. | DISA STIG Ubuntu 16.04 LTS v2r3 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-18-010122 - The Ubuntu operating system must configure the /var/log directory to be group-owned by syslog. | DISA STIG Ubuntu 18.04 LTS v2r13 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-18-010123 - The Ubuntu operating system must configure the /var/log directory to be owned by root. | DISA STIG Ubuntu 18.04 LTS v2r13 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-18-010124 - The Ubuntu operating system must configure the /var/log directory to have mode 0755 or less permissive. | DISA STIG Ubuntu 18.04 LTS v2r13 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-18-010125 - The Ubuntu operating system must configure the /var/log/syslog file to be group-owned by adm. | DISA STIG Ubuntu 18.04 LTS v2r13 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-18-010126 - The Ubuntu operating system must configure /var/log/syslog file to be owned by syslog. | DISA STIG Ubuntu 18.04 LTS v2r13 | Unix | SYSTEM AND INFORMATION INTEGRITY |
UBTU-18-010127 - The Ubuntu operating system must configure /var/log/syslog file with mode 0640 or less permissive. | DISA STIG Ubuntu 18.04 LTS v2r13 | Unix | SYSTEM AND INFORMATION INTEGRITY |
WBLC-09-000254 - Oracle WebLogic must restrict error messages so only authorized personnel may view them. | Oracle WebLogic Server 12c Linux v2r1 | Unix | SYSTEM AND INFORMATION INTEGRITY |
WN22-DC-000070 - Windows Server 2022 permissions on the Active Directory data files must only allow System and Administrators access - Database file | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL, SYSTEM AND INFORMATION INTEGRITY |
WN22-DC-000070 - Windows Server 2022 permissions on the Active Directory data files must only allow System and Administrators access - Log files path | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL, SYSTEM AND INFORMATION INTEGRITY |