CCI|CCI-001314

Title

The information system reveals error messages only to organization-defined personnel or roles.

Reference Item Details

Category: 2009

Audit Items

View all Reference Audit Items

NamePluginAudit Name
4.1.4.1 Ensure Audit logs are owned by root and mode 0600 or less permissiveUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
AIX7-00-002070 - AIX log files must be owned by a system account - /var/admUnixDISA STIG AIX 7.x v2r6
AIX7-00-002070 - AIX log files must be owned by a system account - /var/logUnixDISA STIG AIX 7.x v2r6
AIX7-00-002070 - AIX log files must be owned by a system account - /var/log/syslogUnixDISA STIG AIX 7.x v2r6
AIX7-00-002071 - AIX log files must be owned by a system group - /var/admUnixDISA STIG AIX 7.x v2r6
AIX7-00-002071 - AIX log files must be owned by a system group - /var/logUnixDISA STIG AIX 7.x v2r6
AIX7-00-002071 - AIX log files must be owned by a system group - /var/log/syslogUnixDISA STIG AIX 7.x v2r6
AIX7-00-003006 - AIX log files must have mode 0640 or less permissive - /var/admUnixDISA STIG AIX 7.x v2r6
AIX7-00-003006 - AIX log files must have mode 0640 or less permissive - /var/logUnixDISA STIG AIX 7.x v2r6
AIX7-00-003006 - AIX log files must have mode 0640 or less permissive - /var/log/syslogUnixDISA STIG AIX 7.x v2r6
AIX7-00-003007 - AIX log files must not have extended ACLs, except as needed to support authorized software.UnixDISA STIG AIX 7.x v2r6
AMLS-NM-000250 - The Arista Multilayer Switch must reveal error messages only to authorized individuals (ISSO, ISSM, and SA) - ISSO, ISSM, and SA.AristaDISA STIG Arista MLS DCS-7000 Series NDM v1r3
AOSX-13-002105 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - aslUnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-002105 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - newsyslogUnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-002106 - The macOS system must be configured with system log files set to mode 640 or less permissive - aslUnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-002106 - The macOS system must be configured with system log files set to mode 640 or less permissive - newsyslogUnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-002107 - The macOS system must be configured with access control lists (ACLs) for system log files to be set correctly - aslUnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-002107 - The macOS system must be configured with access control lists (ACLs) for system log files to be set correctly - newsyslogUnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-14-000030 - The macOS system must be configured so that log files must not contain access control lists (ACLs).UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-004001 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - ASLUnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-004001 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - NewsyslogUnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-004002 - The macOS system must be configured with system log files set to mode 640 or less permissive - ASLUnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-004002 - The macOS system must be configured with system log files set to mode 640 or less permissive - NewsyslogUnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-15-000030 - The macOS system must be configured so that log files must not contain access control lists (ACLs).UnixDISA STIG Apple Mac OSX 10.15 v1r8
AOSX-15-004001 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - ASLUnixDISA STIG Apple Mac OSX 10.15 v1r8
AOSX-15-004001 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - NewsyslogUnixDISA STIG Apple Mac OSX 10.15 v1r8
AOSX-15-004002 - The macOS system must be configured with system log files set to mode 640 or less permissive - ASLUnixDISA STIG Apple Mac OSX 10.15 v1r8
AOSX-15-004002 - The macOS system must be configured with system log files set to mode 640 or less permissive - NewsyslogUnixDISA STIG Apple Mac OSX 10.15 v1r8
APPL-11-000030 - The macOS system must be configured so that log files must not contain access control lists (ACLs).UnixDISA STIG Apple macOS 11 v1r6
APPL-11-000030 - The macOS system must be configured so that log files must not contain access control lists (ACLs).UnixDISA STIG Apple macOS 11 v1r5
APPL-11-004001 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - aslUnixDISA STIG Apple macOS 11 v1r5
APPL-11-004001 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - aslUnixDISA STIG Apple macOS 11 v1r6
APPL-11-004001 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - newsyslogUnixDISA STIG Apple macOS 11 v1r6
APPL-11-004001 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - newsyslogUnixDISA STIG Apple macOS 11 v1r5
APPL-11-004002 - The macOS system must be configured with system log files set to mode 640 or less permissive - aslUnixDISA STIG Apple macOS 11 v1r6
APPL-11-004002 - The macOS system must be configured with system log files set to mode 640 or less permissive - aslUnixDISA STIG Apple macOS 11 v1r5
APPL-11-004002 - The macOS system must be configured with system log files set to mode 640 or less permissive - newsyslogUnixDISA STIG Apple macOS 11 v1r6
APPL-11-004002 - The macOS system must be configured with system log files set to mode 640 or less permissive - newsyslogUnixDISA STIG Apple macOS 11 v1r5
APPL-12-000030 - The macOS system must be configured so that log files must not contain access control lists (ACLs).UnixDISA STIG Apple macOS 12 v1r4
APPL-12-004001 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - aslUnixDISA STIG Apple macOS 12 v1r4
APPL-12-004001 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - newsyslogUnixDISA STIG Apple macOS 12 v1r4
APPL-12-004002 - The macOS system must be configured with system log files set to mode 640 or less permissive - aslUnixDISA STIG Apple macOS 12 v1r4
APPL-12-004002 - The macOS system must be configured with system log files set to mode 640 or less permissive - newsyslogUnixDISA STIG Apple macOS 12 v1r4
Big Sur - Configure Apple System Log Files Owned by Root and Group to WheelUnixNIST macOS Big Sur v1.4.0 - 800-53r5 High
Big Sur - Configure Apple System Log Files Owned by Root and Group to WheelUnixNIST macOS Big Sur v1.4.0 - All Profiles
Big Sur - Configure Apple System Log Files Owned by Root and Group to WheelUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Big Sur - Configure Apple System Log Files To Mode 640 or Less PermissiveUnixNIST macOS Big Sur v1.4.0 - 800-53r5 High
Big Sur - Configure Apple System Log Files To Mode 640 or Less PermissiveUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Big Sur - Configure Apple System Log Files To Mode 640 or Less PermissiveUnixNIST macOS Big Sur v1.4.0 - All Profiles
Big Sur - Configure Audit Log Files to Not Contain Access Control ListsUnixNIST macOS Big Sur v1.4.0 - 800-53r4 Low