Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Release Notes
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Release Notes
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Audits
References
CCI
CCI-002418
CCI
CCI|CCI-002418
Title
Protect the confidentiality and/or integrity of transmitted information.
Reference Item Details
Reference:
CCI - DISA Control Correlation Identifier
Category:
2024
Audit Items
View all Reference Audit Items
Name
Plugin
Audit Name
3.1.2 Ensure wireless interfaces are disabled
Unix
CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
3.042 - Outgoing secure channel traffic is not signed when possible.
Windows
DISA Windows Vista STIG v6r41
3.043 - Outgoing secure channel traffic is not encrypted when possible.
Windows
DISA Windows Vista STIG v6r41
3.045 - The Windows SMB client is not enabled to perform SMB packet signing when possible.
Windows
DISA Windows Vista STIG v6r41
3.046 - The Windows SMB server is not enabled to perform SMB packet signing when possible.
Windows
DISA Windows Vista STIG v6r41
3.113 - Outgoing secure channel traffic is not encrypted or signed.
Windows
DISA Windows Vista STIG v6r41
3.114 - The Windows Server SMB client is not enabled to always perform SMB packet signing.
Windows
DISA Windows Vista STIG v6r41
3.115 - The Windows Server SMB server is not enabled to always perform SMB packet signing.
Windows
DISA Windows Vista STIG v6r41
4.044 - The system is not configured to require a strong session key.
Windows
DISA Windows Vista STIG v6r41
5.3.1 Ensure SSH is installed
Unix
CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.3.2 Ensure SSH is running
Unix
CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
ALMA-09-042700 - All AlmaLinux OS 9 networked systems must have the OpenSSH client installed.
Unix
DISA CloudLinux AlmaLinux OS 9 STIG v1r2
ALMA-09-043250 - AlmaLinux OS 9 wireless network adapters must be disabled.
Unix
DISA CloudLinux AlmaLinux OS 9 STIG v1r2
AOSX-13-000035 - The macOS system must implement DoD-approved encryption to protect the confidentiality and integrity of remote access sessions including transmitted data and data during preparation for transmission.
Unix
DISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-000070 - The macOS system must be configured with Wi-Fi support software disabled.
Unix
DISA STIG Apple Mac OSX 10.13 v2r5
AOSX-14-000011 - The macOS system must implement DoD-approved encryption to protect the confidentiality and integrity of remote access sessions including transmitted data and data during preparation for transmission - OpenSSH version
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-000011 - The macOS system must implement DoD-approved encryption to protect the confidentiality and integrity of remote access sessions including transmitted data and data during preparation for transmission - SSHD currently running
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-000011 - The macOS system must implement DoD-approved encryption to protect the confidentiality and integrity of remote access sessions including transmitted data and data during preparation for transmission - SSHD service disabled
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-002054 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - DisableBluetooth
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-002054 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - DisabledPreferencePanes
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-002054 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - HiddenPreferencePanes
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization.
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-15-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - DisableBluetooth
Unix
DISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - DisabledPreferencePanes
Unix
DISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - HiddenPreferencePanes
Unix
DISA STIG Apple Mac OSX 10.15 v1r10
APPL-11-000011 - The macOS system must disable the SSHD service.
Unix
DISA STIG Apple macOS 11 v1r8
APPL-11-000011 - The macOS system must disable the SSHD service.
Unix
DISA STIG Apple macOS 11 v1r5
APPL-11-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - DisableBluetooth
Unix
DISA STIG Apple macOS 11 v1r8
APPL-11-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - DisableBluetooth
Unix
DISA STIG Apple macOS 11 v1r5
APPL-11-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - DisabledPreferencesPanes
Unix
DISA STIG Apple macOS 11 v1r5
APPL-11-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - DisabledPreferencesPanes
Unix
DISA STIG Apple macOS 11 v1r8
APPL-11-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - HiddenPreferencePanes
Unix
DISA STIG Apple macOS 11 v1r8
APPL-11-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - HiddenPreferencePanes
Unix
DISA STIG Apple macOS 11 v1r5
APPL-12-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization.
Unix
DISA STIG Apple macOS 12 v1r9
APPL-13-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization.
Unix
DISA STIG Apple macOS 13 v1r5
APPL-14-002062 The macOS system must disable Bluetooth when no approved device is connected.
Unix
DISA Apple macOS 14 (Sonoma) STIG v2r3
APPL-15-002062 - The macOS system must disable Bluetooth when no approved device is connected.
Unix
DISA Apple macOS 15 (Sequoia) STIG v1r3
AS24-U1-000030 - The Apache web server must use cryptography to protect the integrity of remote sessions
Unix
DISA STIG Apache Server 2.4 Unix Server v3r2 Middleware
AS24-U1-000030 - The Apache web server must use cryptography to protect the integrity of remote sessions.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r2
AS24-U1-000870 - Cookies exchanged between the Apache web server and the client, such as session cookies, must have cookie properties set to prohibit client-side scripts from reading the cookie data
Unix
DISA STIG Apache Server 2.4 Unix Server v3r2 Middleware
AS24-U1-000870 - Cookies exchanged between the Apache web server and the client, such as session cookies, must have cookie properties set to prohibit client-side scripts from reading the cookie data.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r2
AS24-U1-000900 - The Apache web server must remove all export ciphers to protect the confidentiality and integrity of transmitted information.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r2
AS24-U1-000900 - The Apache web server must remove all export ciphers to protect the confidentiality and integrity of transmitted information.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r2 Middleware
AS24-W1-000030 - The Apache web server must use encryption strength in accordance with the categorization of data hosted by the Apache web server when remote connections are provided - ssl_module
Windows
DISA STIG Apache Server 2.4 Windows Server v3r3
AS24-W1-000030 - The Apache web server must use encryption strength in accordance with the categorization of data hosted by the Apache web server when remote connections are provided - ssl_module
Windows
DISA STIG Apache Server 2.4 Windows Server v2r3
AS24-W1-000030 - The Apache web server must use encryption strength in accordance with the categorization of data hosted by the Apache web server when remote connections are provided - SSLProtocol
Windows
DISA STIG Apache Server 2.4 Windows Server v2r3
AS24-W1-000030 - The Apache web server must use encryption strength in accordance with the categorization of data hosted by the Apache web server when remote connections are provided - SSLProtocol
Windows
DISA STIG Apache Server 2.4 Windows Server v3r3
AS24-W1-000860 - The Apache web server cookies, such as session cookies, sent to the client using SSL/TLS must not be compressed.
Windows
DISA STIG Apache Server 2.4 Windows Server v2r3
AS24-W1-000860 - The Apache web server cookies, such as session cookies, sent to the client using SSL/TLS must not be compressed.
Windows
DISA STIG Apache Server 2.4 Windows Server v3r3
AS24-W2-000860 - The Apache web server cookies, such as session cookies, sent to the client using SSL/TLS must not be compressed.
Windows
DISA STIG Apache Server 2.4 Windows Site v2r2
