CCI|CCI-001493

Title

The information system protects audit tools from unauthorized access.

Reference Item Details

Category: 2009

Audit Items

View all Reference Audit Items

NamePluginAudit Name
AIX7-00-002025 - AIX audit tools must be owned by root.UnixDISA STIG AIX 7.x v2r9
AIX7-00-002026 - AIX audit tools must be group-owned by audit.UnixDISA STIG AIX 7.x v2r9
AIX7-00-002027 - AIX audit tools must be set to 4550 or less permissive.UnixDISA STIG AIX 7.x v2r9
AOSX-13-000240 - The macOS system must enable System Integrity Protection.UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-14-005001 - The macOS system must enable System Integrity Protection.UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-15-005001 - The macOS system must enable System Integrity Protection.UnixDISA STIG Apple Mac OSX 10.15 v1r10
APPL-11-005001 - The macOS system must enable System Integrity Protection.UnixDISA STIG Apple macOS 11 v1r5
APPL-11-005001 - The macOS system must enable System Integrity Protection.UnixDISA STIG Apple macOS 11 v1r8
APPL-12-005001 - The macOS system must enable System Integrity Protection.UnixDISA STIG Apple macOS 12 v1r7
APPL-13-005001 - The macOS system must enable System Integrity Protection.UnixDISA STIG Apple macOS 13 v1r3
Big Sur - Ensure System Integrity Protection is EnabledUnixNIST macOS Big Sur v1.4.0 - CNSSI 1253
Big Sur - Ensure System Integrity Protection is EnabledUnixNIST macOS Big Sur v1.4.0 - 800-171
Big Sur - Ensure System Integrity Protection is EnabledUnixNIST macOS Big Sur v1.4.0 - 800-53r4 Low
Big Sur - Ensure System Integrity Protection is EnabledUnixNIST macOS Big Sur v1.4.0 - 800-53r4 Moderate
Big Sur - Ensure System Integrity Protection is EnabledUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Big Sur - Ensure System Integrity Protection is EnabledUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Low
Big Sur - Ensure System Integrity Protection is EnabledUnixNIST macOS Big Sur v1.4.0 - All Profiles
Big Sur - Ensure System Integrity Protection is EnabledUnixNIST macOS Big Sur v1.4.0 - 800-53r5 High
Big Sur - Ensure System Integrity Protection is EnabledUnixNIST macOS Big Sur v1.4.0 - 800-53r4 High
Catalina - Ensure System Integrity Protection is EnabledUnixNIST macOS Catalina v1.5.0 - 800-53r5 Moderate
Catalina - Ensure System Integrity Protection is EnabledUnixNIST macOS Catalina v1.5.0 - CNSSI 1253
Catalina - Ensure System Integrity Protection is EnabledUnixNIST macOS Catalina v1.5.0 - 800-53r4 High
Catalina - Ensure System Integrity Protection is EnabledUnixNIST macOS Catalina v1.5.0 - 800-53r5 High
Catalina - Ensure System Integrity Protection is EnabledUnixNIST macOS Catalina v1.5.0 - 800-53r4 Low
Catalina - Ensure System Integrity Protection is EnabledUnixNIST macOS Catalina v1.5.0 - 800-53r5 Low
Catalina - Ensure System Integrity Protection is EnabledUnixNIST macOS Catalina v1.5.0 - 800-53r4 Moderate
Catalina - Ensure System Integrity Protection is EnabledUnixNIST macOS Catalina v1.5.0 - All Profiles
Catalina - Ensure System Integrity Protection is EnabledUnixNIST macOS Catalina v1.5.0 - 800-171
DB2X-00-002500 - DB2 must protect its audit features from unauthorized accessIBM_DB2DBDISA STIG IBM DB2 v10.5 LUW v2r1 Database
EP11-00-002900 - The EDB Postgres Advanced Server must protect its audit features from unauthorized access.WindowsEDB PostgreSQL Advanced Server v11 Windows OS Audit v2r2
F5BI-DM-000079 - The BIG-IP appliance must be configured to protect audit tools from unauthorized access.F5DISA F5 BIG-IP Device Management 11.x STIG v2r2
F5BI-LT-000061 - The BIG-IP Core implementation must be configured to protect audit tools from unauthorized access.F5DISA F5 BIG-IP Local Traffic Manager 11.x STIG v2r2
FGFW-ND-000135 - The FortiGate device must protect audit tools from unauthorized access.FortiGateDISA Fortigate Firewall NDM STIG v1r4
GEN002715 - System audit tool executables must be owned by root - '/sbin/audispd'UnixDISA STIG for Oracle Linux 5 v2r1
GEN002715 - System audit tool executables must be owned by root - '/sbin/audispd'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN002715 - System audit tool executables must be owned by root - '/sbin/auditctl'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN002715 - System audit tool executables must be owned by root - '/sbin/auditctl'UnixDISA STIG for Oracle Linux 5 v2r1
GEN002715 - System audit tool executables must be owned by root - '/sbin/auditd'UnixDISA STIG for Oracle Linux 5 v2r1
GEN002715 - System audit tool executables must be owned by root - '/sbin/auditd'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN002715 - System audit tool executables must be owned by root - '/sbin/aureport'UnixDISA STIG for Oracle Linux 5 v2r1
GEN002715 - System audit tool executables must be owned by root - '/sbin/aureport'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN002715 - System audit tool executables must be owned by root - '/sbin/ausearch'UnixDISA STIG for Oracle Linux 5 v2r1
GEN002715 - System audit tool executables must be owned by root - '/sbin/ausearch'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN002715 - System audit tool executables must be owned by root - '/sbin/autrace'UnixDISA STIG for Oracle Linux 5 v2r1
GEN002715 - System audit tool executables must be owned by root - '/sbin/autrace'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN002715 - System audit tool executables must be owned by root - '/usr/sbin/audit'UnixDISA STIG AIX 6.1 v1r14
GEN002715 - System audit tool executables must be owned by root - '/usr/sbin/audit'UnixDISA STIG AIX 5.3 v1r2
GEN002715 - System audit tool executables must be owned by root - '/usr/sbin/auditbin'UnixDISA STIG AIX 6.1 v1r14
GEN002715 - System audit tool executables must be owned by root - '/usr/sbin/auditbin'UnixDISA STIG AIX 5.3 v1r2
GEN002715 - System audit tool executables must be owned by root - '/usr/sbin/auditcat'UnixDISA STIG AIX 6.1 v1r14