Ensure nodev option set on /home partition
Details Since the user partitions are not intended to support devices, set this option to ensure that users cannot attempt...
- Home
- Security Hardening
- CIS Amazon Linux V2.1.0 L1
CIS Amazon Linux V2.1.0 L1
Ensure nodev option set on /tmp partition
Details Since the /tmp filesystem is not intended to support devices, set this option to ensure that users cannot attempt...Ensure nodev option set on /var/tmp partition
Details Since the /var/tmp filesystem is not intended to support devices, set this option to ensure that users cannot attempt...Ensure noexec option set on /dev/shm partition
Details Setting this option on a file system prevents users from executing programs from shared memory. This deters users from...Ensure noexec option set on /tmp partition
Details Since the /tmp filesystem is only intended for temporary file storage, set this option to ensure that users cannot...Ensure noexec option set on /var/tmp partition
Details Since the /var/tmp filesystem is only intended for temporary file storage, set this option to ensure that users cannot...Ensure nosuid option set on /dev/shm partition
Details Setting this option on a file system prevents users from introducing privileged programs onto the system and allowing non-root...Ensure nosuid option set on /tmp partition
Details Since the /tmp filesystem is only intended for temporary file storage, set this option to ensure that users cannot...Ensure nosuid option set on /var/tmp partition
Details Since the /var/tmp filesystem is only intended for temporary file storage, set this option to ensure that users cannot...Ensure package manager repositories are configured
Details If a system’s package repositories are misconfigured important patches may not be identified or a rogue repository could introduce...