CSCv6|9.1

Title

Ensure that only ports, protocols, and services with validated business needs are running on each system.

Description

Ensure that only ports, protocols, and services with validated business needs are running on each system.

Reference Item Details

Category: Limitation and Control of Network Ports

Family: System

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.0.4 Use non-standard account names - '!= dasusr1'UnixCIS IBM DB2 OS L1 v1.2.0
1.0.4 Use non-standard account names - '!= db2admin'UnixCIS IBM DB2 OS L1 v1.2.0
1.0.4 Use non-standard account names - '!= db2fenc1'UnixCIS IBM DB2 OS L1 v1.2.0
1.0.4 Use non-standard account names - '!= db2inst1'UnixCIS IBM DB2 OS L1 v1.2.0
1.1 Remove extraneous files and directories - /conf/Catalina/localhost/host-manager.xmlUnixCIS Apache Tomcat 8 L2 v1.1.0 Middleware
1.1 Remove extraneous files and directories - /conf/Catalina/localhost/manager.xmlUnixCIS Apache Tomcat 8 L2 v1.1.0 Middleware
1.1 Remove extraneous files and directories - /server/webapps/host-manager.xmlUnixCIS Apache Tomcat 8 L2 v1.1.0 Middleware
1.1 Remove extraneous files and directories - /server/webapps/managerUnixCIS Apache Tomcat 8 L2 v1.1.0 Middleware
1.1 Remove extraneous files and directories - /webapps/balancerUnixCIS Apache Tomcat 8 L2 v1.1.0 Middleware
1.1 Remove extraneous files and directories - /webapps/examplesUnixCIS Apache Tomcat 8 L2 v1.1.0 Middleware
1.1 Remove extraneous files and directories - /webapps/js-examplesUnixCIS Apache Tomcat 8 L2 v1.1.0 Middleware
1.1 Remove extraneous files and directories - /webapps/ROOT/adminUnixCIS Apache Tomcat 8 L2 v1.1.0 Middleware
1.1 Remove extraneous files and directories - /webapps/servlet-exampleUnixCIS Apache Tomcat 8 L2 v1.1.0 Middleware
1.1 Remove extraneous files and directories - /webapps/tomcat-docsUnixCIS Apache Tomcat 8 L2 v1.1.0 Middleware
1.1 Remove extraneous files and directories - /webapps/webdavUnixCIS Apache Tomcat 8 L2 v1.1.0 Middleware
1.1 Remove extraneous files and directories - CATALINA_CONF/conf/Catalina/localhost/host-manager.xmlUnixCIS Apache Tomcat 8 L2 v1.1.0
1.1 Remove extraneous files and directories - CATALINA_CONF/conf/Catalina/localhost/manager.xmlUnixCIS Apache Tomcat 8 L2 v1.1.0
1.1 Remove extraneous files and directories - CATALINA_HOME/server/webapps/host-manager.xmlUnixCIS Apache Tomcat 8 L2 v1.1.0
1.1 Remove extraneous files and directories - CATALINA_HOME/server/webapps/managerUnixCIS Apache Tomcat 8 L2 v1.1.0
1.1 Remove extraneous files and directories - CATALINA_HOME/webapps/balancerUnixCIS Apache Tomcat 8 L2 v1.1.0
1.1 Remove extraneous files and directories - CATALINA_HOME/webapps/examplesUnixCIS Apache Tomcat 8 L2 v1.1.0
1.1 Remove extraneous files and directories - CATALINA_HOME/webapps/js-examplesUnixCIS Apache Tomcat 8 L2 v1.1.0
1.1 Remove extraneous files and directories - CATALINA_HOME/webapps/ROOT/adminUnixCIS Apache Tomcat 8 L2 v1.1.0
1.1 Remove extraneous files and directories - CATALINA_HOME/webapps/servlet-exampleUnixCIS Apache Tomcat 8 L2 v1.1.0
1.1 Remove extraneous files and directories - CATALINA_HOME/webapps/tomcat-docsUnixCIS Apache Tomcat 8 L2 v1.1.0
1.1 Remove extraneous files and directories - CATALINA_HOME/webapps/webdavUnixCIS Apache Tomcat 8 L2 v1.1.0
1.1.2 Ensure /tmp is configuredUnixCIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1
1.1.2 Ensure /tmp is configuredUnixCIS SUSE Linux Enterprise 15 Server L1 v1.1.1
1.1.2 Ensure /tmp is configured - or equivalent.UnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.10 - AirWatch - Turn Off AirDrop DiscoverabilityMDMAirWatch - CIS Apple iOS 9 v1.0.0 L2
1.1.10 - MobileIron - Turn Off AirDrop DiscoverabilityMDMMobileIron - CIS Apple iOS 9 v1.0.0 L2
1.1.10 - MobileIron - Turn off Auto-Join for all Wi-Fi networksMDMMobileIron - CIS Apple iOS 8 v1.0.0 L2
1.1.11 - AirWatch - Turn Off AirDrop DiscoverabilityMDMAirWatch - CIS Apple iOS 8 v1.0.0 L2
1.1.11 - MobileIron - Turn Off AirDrop DiscoverabilityMDMMobileIron - CIS Apple iOS 8 v1.0.0 L2
1.1.12 - AirWatch - Disable 'Notifications'MDMAirWatch - CIS Google Android 4 v1.0.0 L2
1.1.12 - MobileIron - Disable 'Notifications'MDMMobileIron - CIS Google Android 4 v1.0.0 L2
1.1.12 - MobileIron - Turn off VPN when not neededMDMMobileIron - CIS Apple iOS 9 v1.0.0 L1
1.1.13 - MobileIron - Turn off VPN when not neededMDMMobileIron - CIS Apple iOS 8 v1.0.0 L1
1.1.16 - AirWatch - Disable View in Lock Screen for apps when device is lockedMDMAirWatch - CIS Apple iOS 9 v1.0.0 L2
1.1.16 - MobileIron - Disable 'developer options' - 'USB Debug'MDMMobileIron - CIS Google Android 4 v1.0.0 L1
1.1.16 - MobileIron - Disable View in Lock Screen for apps when device is lockedMDMMobileIron - CIS Apple iOS 9 v1.0.0 L2
1.1.17 - AirWatch - Disable 'Unknown sources'MDMAirWatch - CIS Google Android 4 v1.0.0 L1
1.1.17 - MobileIron - Disable 'Unknown sources' - Samsung SAFEMDMMobileIron - CIS Google Android 4 v1.0.0 L1
1.1.18 - AirWatch - Disable View in Lock Screen for apps when device is lockedMDMAirWatch - CIS Apple iOS 8 v1.0.0 L2
1.1.18 - MobileIron - Disable View in Lock Screen for apps when device is lockedMDMMobileIron - CIS Apple iOS 8 v1.0.0 L2
1.1.18 Ensure that the --authorization-mode argument is not set to AlwaysAllowUnixCIS Kubernetes 1.8 Benchmark v1.2.0 L1
1.1.19 Disable AutomountingUnixCIS Amazon Linux v2.1.0 L1
1.1.19 Disable AutomountingUnixCIS Aliyun Linux 2 L1 v1.0.0
1.1.19 Ensure that the --authorization-mode argument is not set to AlwaysAllowUnixCIS Kubernetes 1.11 Benchmark v1.3.0 L1
1.1.19 Ensure that the --authorization-mode argument is not set to AlwaysAllowUnixCIS Kubernetes 1.13 Benchmark v1.4.1 L1