• Tenable
  • Audits
  • Settings
    Links
    Tenable.io Tenable Community & Support Tenable University
    Theme
  • Tenable
  • Links
  • Tenable.io
  • Tenable Community & Support
  • Tenable University
  • Settings
  • Theme
  • Newest
  • Updated
  • Search Audit Files
  • Search Items
  • References
  • Authorities
  • Documentation
  • Download All Audit Files
  • Newest
  • Updated
  • Search Audit Files
  • Search Items
  • References
  • Authorities
  • Documentation
  • Download All Audit Files
  1. Audits
  2. References
  3. CSCv7
  4. 5.3
  1. CSCv7

CSCv7|5.3

Title

Securely Store Master Images

Description

Store the master images and templates on securely configured servers, validated with integrity monitoring tools, to ensure that only authorized changes to the images are possible.

Reference Item Details

Reference: CIS Critical Security Controls v7

Category: Secure Configuration for Hardware and Software on Mobile Devices, Laptops, Workstations and Servers

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.5.2 Ensure address space layout randomization (ASLR) is enabled - sysctlUnixCIS Aliyun Linux 2 L1 v1.0.0
1.5.2 Ensure address space layout randomization (ASLR) is enabled - sysctl.conf/sysctl.dUnixCIS Aliyun Linux 2 L1 v1.0.0
2.4.2 Ensure 'Snapshot' is setCheckPointCIS Check Point Firewall L1 v1.1.0
2.4.3 Configuring Scheduled BackupsCheckPointCIS Check Point Firewall L1 v1.1.0
5.1.4 Minimize Container Registries to only those approvedGCPCIS Google Kubernetes Engine (GKE) v1.3.0 L2
5.5.5 Ensure Shielded GKE Nodes are EnabledGCPCIS Google Kubernetes Engine (GKE) v1.3.0 L1
5.5.6 Ensure Integrity Monitoring for Shielded GKE Nodes is EnabledGCPCIS Google Kubernetes Engine (GKE) v1.3.0 L1
5.5.7 Ensure Secure Boot for Shielded GKE Nodes is EnabledGCPCIS Google Kubernetes Engine (GKE) v1.3.0 L2
6.1 Ensure that image sprawl is avoidedUnixCIS Docker v1.3.1 L1 Linux Host OS
  • Tenable.com
  • Community & Support
  • Documentation
  • Education
  • © 2023 Tenable®, Inc. All Rights Reserved
  • Privacy Policy
  • Legal
  • 508 Compliance