Ensure nosuid option set on /tmp partition
Details The nosuid mount option specifies that the filesystem cannot contain setuid files. Rationale: Since the /tmp filesystem is only...
- Home
- Security Hardening
- CIS Amazon Linux 2 STIG V1.0.0 L1
CIS Amazon Linux 2 STIG V1.0.0 L1
Ensure ntp is configured – daemon
Details ntp is a daemon which implements the Network Time Protocol (NTP). It is designed to synchronize system clocks across...Ensure ntp is configured – remote server
Details ntp is a daemon which implements the Network Time Protocol (NTP). It is designed to synchronize system clocks across...Ensure ntp is configured – restrict -4
Details ntp is a daemon which implements the Network Time Protocol (NTP). It is designed to synchronize system clocks across...Ensure ntp is configured – restrict -6
Details ntp is a daemon which implements the Network Time Protocol (NTP). It is designed to synchronize system clocks across...Ensure package manager repositories are configured
Details Systems need to have package manager repositories configured to ensure they receive the latest patches and updates. Rationale: If...Ensure permissions on bootloader config are configured
Details The grub configuration file contains information on boot settings and passwords for unlocking boot options. The grub configuration is...Ensure permissions on /etc/issue are configured
Details The contents of the /etc/issue file are displayed to users prior to login for local terminals. Rationale: If the...Ensure permissions on /etc/issue.net are configured
Details The contents of the /etc/issue.net file are displayed to users prior to login for remote connections from configured services....Ensure permissions on /etc/motd are configured
Details The contents of the /etc/motd file are displayed to users after login and function as a message of the...