Ensure noexec option set on /dev/shm partition
Details The noexec mount option specifies that the filesystem cannot contain executable binaries. Rationale: Setting this option on a file...
- Home
- Security Hardening
- CIS CentOS 6 Workstation L1 V3.0.0
CIS CentOS 6 Workstation L1 V3.0.0
Ensure noexec option set on removable media partitions
Details The noexec mount option specifies that the filesystem cannot contain executable binaries. Rationale: Setting this option on a file...Ensure noexec option set on /tmp partition
Details The noexec mount option specifies that the filesystem cannot contain executable binaries. Rationale: Since the /tmp filesystem is only...Ensure noexec option set on /var/tmp partition
Details The noexec mount option specifies that the filesystem cannot contain executable binaries. Rationale: Since the /var/tmp filesystem is only...Ensure nosuid option set on /dev/shm partition
Details The nosuid mount option specifies that the filesystem cannot contain setuid files. Rationale: Setting this option on a file...Ensure nosuid option set on removable media partitions
Details The nosuid mount option specifies that the filesystem cannot contain setuid files. Rationale: Setting this option on a file...Ensure nosuid option set on /tmp partition
Details The nosuid mount option specifies that the filesystem cannot contain setuid files. Rationale: Since the /tmp filesystem is only...Ensure nosuid option set on /var/tmp partition
Details The nosuid mount option specifies that the filesystem cannot contain setuid files. Rationale: Since the /var/tmp filesystem is only...Ensure no unconfined daemons exist
Details Unconfined processes run in unconfined domains Note: Occasionally certain daemons such as backup or centralized management software may require...Ensure package manager repositories are configured
Details Systems need to have package manager repositories configured to ensure they receive the latest patches and updates. Rationale: If...