Item Search

NameAudit NamePluginCategory
5.3.1 Ensure SSH is installedCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.3.2 Ensure SSH is runningCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

SYSTEM AND COMMUNICATIONS PROTECTION

DB2X-00-009100 - DB2 must maintain the confidentiality and integrity of information during preparation for transmission.DISA STIG IBM DB2 v10.5 LUW v1r4 OS LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

DB2X-00-009100 - DB2 must maintain the confidentiality and integrity of information during preparation for transmission.DISA STIG IBM DB2 v10.5 LUW v1r4 OS WindowsWindows

SYSTEM AND COMMUNICATIONS PROTECTION

EP11-00-009500 - The EDB Postgres Advanced Server must maintain the confidentiality and integrity of information during preparation for transmission.EDB PostgreSQL Advanced Server v11 Windows OS Audit v2r1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

IISW-SI-000249 - The IIS 8.5 website must maintain the confidentiality and integrity of information during preparation for transmission and during reception.DISA IIS 8.5 Site v2r5Windows

SYSTEM AND COMMUNICATIONS PROTECTION

MD3X-00-000760 - MongoDB must maintain the confidentiality and integrity of information during preparation for transmission - modeDISA STIG MongoDB Enterprise Advanced 3.x v2r1 OSUnix

SYSTEM AND COMMUNICATIONS PROTECTION

MD4X-00-006000 - MongoDB must maintain the confidentiality and integrity of information during preparation for transmission.DISA STIG MongoDB Enterprise Advanced 4.x v1r1 OSUnix

SYSTEM AND COMMUNICATIONS PROTECTION

O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures - SQLNET.CRYPTO_CHECKSUM_CLIENTDISA STIG Oracle 11.2g v2r3 WindowsWindows

SYSTEM AND COMMUNICATIONS PROTECTION

O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures - SQLNET.CRYPTO_CHECKSUM_CLIENTDISA STIG Oracle 11.2g v2r3 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures - SQLNET.CRYPTO_CHECKSUM_SERVERDISA STIG Oracle 11.2g v2r3 WindowsWindows

SYSTEM AND COMMUNICATIONS PROTECTION

O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures - SQLNET.CRYPTO_CHECKSUM_TYPES_CLIENTDISA STIG Oracle 11.2g v2r3 WindowsWindows

SYSTEM AND COMMUNICATIONS PROTECTION

O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures - SQLNET.CRYPTO_CHECKSUM_TYPES_CLIENTDISA STIG Oracle 11.2g v2r3 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures - SQLNET.CRYPTO_CHECKSUM_TYPES_SERVERDISA STIG Oracle 11.2g v2r3 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures - SQLNET.CRYPTO_CHECKSUM_TYPES_SERVERDISA STIG Oracle 11.2g v2r3 WindowsWindows

SYSTEM AND COMMUNICATIONS PROTECTION

O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures - SQLNET.ENCRYPTION_TYPES_CLIENTDISA STIG Oracle 11.2g v2r3 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures - SQLNET.ENCRYPTION_TYPES_CLIENTDISA STIG Oracle 11.2g v2r3 WindowsWindows

SYSTEM AND COMMUNICATIONS PROTECTION

O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures - SQLNET.ENCRYPTION_TYPES_SERVERDISA STIG Oracle 11.2g v2r3 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures - SQLNET.ENCRYPTION_TYPES_SERVERDISA STIG Oracle 11.2g v2r3 WindowsWindows

SYSTEM AND COMMUNICATIONS PROTECTION

O112-C1-019700 - The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures.DISA STIG Oracle 11.2g v2r3 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

OH12-1X-000324 - OHS must have the LoadModule ossl_module directive enabled to maintain the confidentiality and integrity of information during preparation for transmission.DISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

OH12-1X-000325 - OHS must have the SSLFIPS directive enabled to maintain the confidentiality and integrity of information during preparation for transmission.DISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

OH12-1X-000326 - OHS must have the SSLEngine, SSLProtocol, and SSLWallet directives enabled and configured to maintain the confidentiality and integrity of information during preparation for transmission - SSLEngineDISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

OH12-1X-000326 - OHS must have the SSLEngine, SSLProtocol, and SSLWallet directives enabled and configured to maintain the confidentiality and integrity of information during preparation for transmission - SSLProtocolDISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

OH12-1X-000326 - OHS must have the SSLEngine, SSLProtocol, and SSLWallet directives enabled and configured to maintain the confidentiality and integrity of information during preparation for transmission - SSLWalletDISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

OH12-1X-000327 - OHS must have the SSLCipherSuite directive enabled to maintain the confidentiality and integrity of information during preparation for transmission.DISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

OH12-1X-000328 - If using the WebLogic Web Server Proxy Plugin and configuring end-to-end SSL, OHS must have the SecureProxy directive enabled to maintain the confidentiality and integrity of information during preparation for transmission.DISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

OH12-1X-000329 - If using the WebLogic Web Server Proxy Plugin and configuring end-to-end SSL, OHS must have the WLSSLWallet directive enabled to maintain the confidentiality and integrity of information during preparation for transmission.DISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

OH12-1X-000330 - If using the WebLogic Web Server Proxy Plugin and configuring SSL termination at OHS, OHS must have the WLSProxySSL directive enabled to maintain the confidentiality and integrity of information during preparation for transmission.DISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

PGS9-00-007200 - PostgreSQL must maintain the confidentiality and integrity of information during preparation for transmission.DISA STIG PostgreSQL 9.x on RHEL OS v2r2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

PPS9-00-009500 - The EDB Postgres Advanced Server must maintain the confidentiality and integrity of information during preparation for transmission.EDB PostgreSQL Advanced Server OS Linux Audit v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

SLES-15-010530 - All networked SUSE operating systems must have and implement SSH to protect the confidentiality and integrity of transmitted and received information, as well as information during preparation for transmission.DISA SLES 15 STIG v1r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

SOL-11.1-060090 - The operating system must maintain the integrity of information during aggregation, packaging, and transformation in preparation for transmission.DISA STIG Solaris 11 SPARC v2r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

SOL-11.1-060090 - The operating system must maintain the integrity of information during aggregation, packaging, and transformation in preparation for transmission.DISA STIG Solaris 11 X86 v2r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

SOL-11.1-060120 - The operating system must maintain the confidentiality of information during aggregation, packaging, and transformation in preparation for transmission.DISA STIG Solaris 11 X86 v2r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

SOL-11.1-060120 - The operating system must maintain the confidentiality of information during aggregation, packaging, and transformation in preparation for transmission.DISA STIG Solaris 11 SPARC v2r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

SP13-00-000120 - SharePoint must maintain the confidentiality of information during aggregation, packaging, and transformation in preparation for transmission. When transmitting data, applications need to leverage transmission protection mechanisms such as TLS, SSL VPNs, or IPSec.DISA STIG SharePoint 2013 v2r3Windows

SYSTEM AND COMMUNICATIONS PROTECTION

UBTU-20-010042 - The Ubuntu operating system must use SSH to protect the confidentiality and integrity of transmitted information - openssh-serverDISA STIG Ubuntu 20.04 LTS v1r5Unix

SYSTEM AND COMMUNICATIONS PROTECTION

UBTU-20-010042 - The Ubuntu operating system must use SSH to protect the confidentiality and integrity of transmitted information - sshd.serviceDISA STIG Ubuntu 20.04 LTS v1r5Unix

SYSTEM AND COMMUNICATIONS PROTECTION

WBLC-08-000235 - Oracle WebLogic must protect the integrity of applications during the processes of data aggregation, packaging, and transformation in preparation for deployment.Oracle WebLogic Server 12c Linux v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

WBLC-08-000235 - Oracle WebLogic must protect the integrity of applications during the processes of data aggregation, packaging, and transformation in preparation for deployment.Oracle WebLogic Server 12c Windows v2r1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WBLC-08-000235 - Oracle WebLogic must protect the integrity of applications during the processes of data aggregation, packaging, and transformation in preparation for deployment.Oracle WebLogic Server 12c Linux v2r1 MiddlewareUnix

SYSTEM AND COMMUNICATIONS PROTECTION

WBSP-AS-001620 - The WebSphere Application Server distribution and consistency services (DCS) transport links must be encrypted.DISA IBM WebSphere Traditional 9 Windows STIG v1r1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WBSP-AS-001620 - The WebSphere Application Server distribution and consistency services (DCS) transport links must be encrypted.DISA IBM WebSphere Traditional 9 STIG v1r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

WBSP-AS-001620 - The WebSphere Application Server distribution and consistency services (DCS) transport links must be encrypted.DISA IBM WebSphere Traditional 9 STIG v1r1 MiddlewareUnix

SYSTEM AND COMMUNICATIONS PROTECTION

WDNS-SC-000030 - The Windows 2012 DNS Server must maintain the integrity of information during reception.DISA Microsoft Windows 2012 Server DNS STIG v2r5Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WN12-00-000019 - Protection methods such as TLS, encrypted VPNs, or IPSEC must be implemented if the data owner has a strict requirement for ensuring data integrity and confidentiality is maintained at every step of the data transfer and handling process.DISA Windows Server 2012 and 2012 R2 MS STIG v3r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WN12-00-000019 - Protection methods such as TLS, encrypted VPNs, or IPSEC must be implemented if the data owner has a strict requirement for ensuring data integrity and confidentiality is maintained at every step of the data transfer and handling process.DISA Windows Server 2012 and 2012 R2 DC STIG v3r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WN16-00-000290 - Protection methods such as TLS, encrypted VPNs, or IPsec must be implemented if the data owner has a strict requirement for ensuring data integrity and confidentiality is maintained at every step of the data transfer and handling process.DISA Windows Server 2016 STIG v2r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WN19-00-000260 - Windows Server 2019 must implement protection methods such as TLS, encrypted VPNs, or IPsec if the data owner has a strict requirement for ensuring data integrity and confidentiality is maintained at every step of the data transfer and handling process.DISA Windows Server 2019 STIG v2r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION