CSCv7|13.7

Title

Manage USB Devices

Description

If USB storage devices are required, enterprise software should be used that can configure systems to allow the use of specific devices. An inventory of such devices should be maintained.

Reference Item Details

Reference: CIS Critical Security Controls v7

Category: Data Protection

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 8 Workstation L2 v3.0.0
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 7 v4.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Debian Linux 12 v1.0.1 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS AlmaLinux OS 8 Workstation L2 v3.0.0
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Ubuntu Linux 22.04 LTS v2.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS CentOS Linux 7 v4.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS AlmaLinux OS 8 Server L1 v3.0.0
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Amazon Linux 2 v3.0.0 L1
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 9 v2.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 9 v2.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Ubuntu Linux 22.04 LTS v2.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat EL8 Server L1 v3.0.0
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Rocky Linux 8 Server L1 v2.0.0
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Debian Linux 11 v2.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Debian Linux 12 v1.0.1 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 7 v4.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat EL8 Workstation L2 v3.0.0
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 7 v4.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 8 Server L1 v3.0.0
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS AlmaLinux OS 9 v2.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 9 v2.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 9 v2.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Rocky Linux 9 v2.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Debian Linux 11 v2.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS CentOS Linux 7 v4.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Rocky Linux 8 Workstation L2 v2.0.0
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Rocky Linux 9 v2.0.0 L2 Workstation
1.1.10 Disable USB Storage	Unix	CIS Debian 10 Workstation L2 v2.0.0
1.1.10 Disable USB Storage	Unix	CIS CentOS Linux 8 Workstation L2 v2.0.0
1.1.10 Disable USB Storage	Unix	CIS Ubuntu Linux 18.04 LTS v2.2.0 L1 Server
1.1.10 Disable USB Storage	Unix	CIS Debian 10 Server L1 v2.0.0
1.1.10 Disable USB Storage	Unix	CIS Fedora 28 Family Linux Workstation L2 v2.0.0
1.1.10 Disable USB Storage	Unix	CIS Ubuntu Linux 20.04 LTS Server L1 v2.0.1
1.1.10 Disable USB Storage	Unix	CIS Rocky Linux 8 Workstation L2 v1.0.0
1.1.10 Disable USB Storage	Unix	CIS CentOS Linux 8 Server L1 v2.0.0
1.1.10 Disable USB Storage	Unix	CIS Fedora 28 Family Linux Server L1 v2.0.0
1.1.10 Disable USB Storage	Unix	CIS Ubuntu Linux 20.04 LTS Workstation L2 v2.0.1
1.1.10 Disable USB Storage	Unix	CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 Workstation
1.1.10 Disable USB Storage - blacklist	Unix	CIS Ubuntu Linux 22.04 LTS Workstation L2 v.1.0.0
1.1.10 Disable USB Storage - blacklist	Unix	CIS Debian Linux 11 Workstation L2 v.1.0.0
1.1.10 Disable USB Storage - blacklist	Unix	CIS Debian Linux 11 Server L1 v1.0.0
1.1.10 Disable USB Storage - blacklist	Unix	CIS Ubuntu Linux 22.04 LTS Server L1 v1.0.0
1.1.10 Disable USB Storage - lsmod	Unix	CIS Debian Linux 11 Server L1 v1.0.0
1.1.10 Disable USB Storage - lsmod	Unix	CIS AlmaLinux OS 8 Server L1 v2.0.0
1.1.10 Disable USB Storage - lsmod	Unix	CIS Red Hat EL8 Server L1 v2.0.0
1.1.10 Disable USB Storage - lsmod	Unix	CIS Ubuntu Linux 22.04 LTS Server L1 v1.0.0
1.1.10 Disable USB Storage - lsmod	Unix	CIS Red Hat EL8 Workstation L2 v2.0.0
1.1.10 Disable USB Storage - lsmod	Unix	CIS AlmaLinux OS 8 Workstation L2 v2.0.0

Detections

Analytics

CSCv7|13.7

Title

Description

Reference Item Details

Audit Items