CSCv7|13.7

Title

Manage USB Devices

Description

If USB storage devices are required, enterprise software should be used that can configure systems to allow the use of specific devices. An inventory of such devices should be maintained.

Reference Item Details

Reference: CIS Critical Security Controls v7

Category: Data Protection

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 9 v2.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Amazon Linux 2 v3.0.0 L1
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Rocky Linux 9 v2.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS CentOS Linux 7 v4.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 7 v4.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Debian Linux 11 v2.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Ubuntu Linux 22.04 LTS v2.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 9 v2.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Rocky Linux 9 v2.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Ubuntu Linux 22.04 LTS v2.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 9 v2.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 9 v2.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 7 v4.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 7 v4.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS Debian Linux 11 v2.0.0 L2 Workstation
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS CentOS Linux 7 v4.0.0 L1 Server
1.1.1.8 Ensure usb-storage kernel module is not available	Unix	CIS AlmaLinux OS 9 v2.0.0 L1 Server
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Debian Linux 12 v1.1.0 L2 Workstation
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Debian Linux 12 v1.1.0 L1 Server
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Linux Mint 22 v1.0.0 L2 Workstation
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Server
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Ubuntu Linux 20.04 LTS v3.0.0 L1 Server
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Server
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L2 Workstation
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Ubuntu Linux 24.04 LTS v1.0.0 L2 Workstation
1.1.1.9 Ensure usb-storage kernel module is not available	Unix	CIS Ubuntu Linux 20.04 LTS v3.0.0 L2 Workstation
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 8 v4.0.0 L1 Server
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 10 v1.0.0 L1 Server
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 8 v4.0.0 L2 Workstation
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS Rocky Linux 8 v3.0.0 L1 Server
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS AlmaLinux OS 10 v1.0.0 L2 Workstation
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS Rocky Linux 8 v3.0.0 L2 Workstation
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 10 v1.0.1 L1 Server
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 10 v1.0.1 L2 Workstation
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS AlmaLinux OS 8 v4.0.0 L2 Workstation
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 10 v1.0.0 L2 Workstation
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS Red Hat Enterprise Linux 8 v4.0.0 L2 Workstation
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS Oracle Linux 8 v4.0.0 L1 Server
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS AlmaLinux OS 8 v4.0.0 L1 Server
1.1.1.10 Ensure usb-storage kernel module is not available	Unix	CIS AlmaLinux OS 10 v1.0.0 L1 Server
1.1.10 Disable USB Storage	Unix	CIS Debian 10 Workstation L2 v2.0.0
1.1.10 Disable USB Storage	Unix	CIS CentOS Linux 8 Workstation L2 v2.0.0
1.1.10 Disable USB Storage	Unix	CIS Fedora 28 Family Linux Workstation L2 v2.0.0
1.1.10 Disable USB Storage	Unix	CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 Workstation
1.1.10 Disable USB Storage	Unix	CIS Debian 10 Server L1 v2.0.0
1.1.10 Disable USB Storage	Unix	CIS Fedora 28 Family Linux Server L1 v2.0.0
1.1.10 Disable USB Storage	Unix	CIS CentOS Linux 8 Server L1 v2.0.0

Detections

Analytics

CSCv7|13.7

Title

Description

Reference Item Details

Audit Items