Detections
Analytics

CSCv6|2.2

Title

Deploy application whitelisting technology that allows systems to run software only if it is included on the whitelist.

Description

Deploy application whitelisting technology that allows systems to run software only if it is included on the whitelist and prevents execution of all other software on the system. The whitelist may be very extensive (as is available from commercial whitelist vendors), so that users are not inconvenienced when using common software. Or, for some special-purpose systems (which require only a small number of programs to achieve their needed business functionality), the whitelist may be quite narrow.

Reference Item Details

Category: Inventory of Authorized and Unauthorized Software

Family: System

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.2.3.1.5 Set 'Turn off the Windows Messenger Customer Experience Improvement Program' to 'Enabled'WindowsCIS Windows 8 L1 v1.0.0
1.2.3.1.6 Set 'Turn off Search Companion content file updates' to 'Enabled'WindowsCIS Windows 8 L1 v1.0.0
1.2.3.1.9 Set 'Turn off printing over HTTP' to 'Enabled'WindowsCIS Windows 8 L1 v1.0.0
1.2.4.13 Configure 'Allow all trusted apps to install'WindowsCIS Windows 8 L1 v1.0.0
1.3.1 Ensure AIDE is installedUnixCIS Amazon Linux v2.1.0 L1
1.3.1 Ensure AIDE is installedUnixCIS Oracle Linux 6 Workstation L1 v2.0.0
1.3.1 Ensure AIDE is installedUnixCIS Red Hat 6 Server L1 v3.0.0
1.3.1 Ensure AIDE is installedUnixCIS Aliyun Linux 2 L1 v1.0.0
1.3.1 Ensure AIDE is installedUnixCIS CentOS 6 Server L1 v3.0.0
1.3.1 Ensure AIDE is installedUnixCIS Oracle Linux 6 Server L1 v2.0.0
1.3.1 Ensure AIDE is installedUnixCIS Debian 9 Server L1 v1.0.1
1.3.1 Ensure AIDE is installedUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.3.1 Ensure AIDE is installedUnixCIS Red Hat 6 Workstation L1 v3.0.0
1.3.1 Ensure AIDE is installedUnixCIS CentOS 6 Workstation L1 v3.0.0
1.3.1 Ensure AIDE is installedUnixCIS Debian 9 Workstation L1 v1.0.1
1.3.1 Ensure AIDE is installed - aideUnixCIS Ubuntu Linux 18.04 LTS Server L1 v2.1.0
1.3.1 Ensure AIDE is installed - aideUnixCIS Ubuntu Linux 18.04 LTS Workstation L1 v2.1.0
1.3.1 Ensure AIDE is installed - aide-commonUnixCIS Ubuntu Linux 18.04 LTS Server L1 v2.1.0
1.3.1 Ensure AIDE is installed - aide-commonUnixCIS Ubuntu Linux 18.04 LTS Workstation L1 v2.1.0
1.3.1 Ensure sudo is installedUnixCIS SUSE Linux Enterprise 15 Server L1 v1.1.1
1.3.1 Ensure sudo is installedUnixCIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1
1.3.1 Install AIDEUnixCIS Red Hat Enterprise Linux 5 L2 v2.2.1
1.3.2 Ensure filesystem integrity is regularly checked - aideUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.3.3 Ensure AIDE is configured to verify ACLs - installedUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.3.4 Ensure AIDE is configured to verify XATTRS - installedUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.3.5 Ensure AIDE is configured to use FIPS 140-2 - installedUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.4.1 Ensure AIDE is installedUnixCIS SUSE Linux Enterprise 15 Server L1 v1.1.1
1.4.1 Ensure AIDE is installedUnixCIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1
1.4.1 Ensure AIDE is installed - aideUnixCIS Debian Family Server L1 v1.0.0
1.4.1 Ensure AIDE is installed - aideUnixCIS Debian Family Workstation L1 v1.0.0
1.4.1 Ensure AIDE is installed - aide-commonUnixCIS Debian Family Server L1 v1.0.0
1.4.1 Ensure AIDE is installed - aide-commonUnixCIS Debian Family Workstation L1 v1.0.0
1.5.9 Ensure NIST FIPS-validated cryptography is configured - rpmUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.6.1.1 Ensure SELinux is installedUnixCIS Red Hat 6 Server L1 v3.0.0
1.6.1.1 Ensure SELinux is installedUnixCIS Oracle Linux 6 Server L1 v2.0.0
1.6.1.1 Ensure SELinux is installedUnixCIS CentOS 6 Server L1 v3.0.0
1.6.1.1 Ensure SELinux is installedUnixCIS Oracle Linux 6 Workstation L1 v2.0.0
1.6.1.1 Ensure SELinux is installedUnixCIS Red Hat 6 Workstation L1 v3.0.0
1.6.1.1 Ensure SELinux is installedUnixCIS CentOS 6 Workstation L1 v3.0.0
1.6.2 Ensure SELinux is installedUnixCIS Aliyun Linux 2 L2 v1.0.0
1.6.4 Enable XD/NX Support on 32-bit x86 Systems - kernel-PAEUnixCIS Red Hat Enterprise Linux 5 L1 v2.2.1
1.7.1.1 Ensure AppArmor is installed - apparmor-docsUnixCIS SUSE Linux Enterprise 15 Server L1 v1.1.1
1.7.1.1 Ensure AppArmor is installed - apparmor-docsUnixCIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1
1.7.1.1 Ensure AppArmor is installed - apparmor-parserUnixCIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1
1.7.1.1 Ensure AppArmor is installed - apparmor-parserUnixCIS SUSE Linux Enterprise 15 Server L1 v1.1.1
1.7.1.1 Ensure AppArmor is installed - apparmor-profilesUnixCIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1
1.7.1.1 Ensure AppArmor is installed - apparmor-profilesUnixCIS SUSE Linux Enterprise 15 Server L1 v1.1.1
1.7.1.1 Ensure AppArmor is installed - apparmor-utilsUnixCIS SUSE Linux Enterprise 15 Server L1 v1.1.1
1.10 Ensure required packages for multifactor authentication are installedUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.12 Ensure host-based intrusion detection tool is used - mcafeetp packageUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG