Ensure audit log storage size is configured
Details Configure the maximum size of the audit log file. Once the log reaches the maximum size, it will be...
- Home
- Security Hardening
- CIS CentOS Linux 8 Workstation L2 V1.0.1
CIS CentOS Linux 8 Workstation L2 V1.0.1
Ensure changes to system administration scope (sudoers) is collected – auditctl /etc/sudoers
Details Monitor scope changes for system administrators. If the system has been properly configured to force system administrators to log...Ensure changes to system administration scope (sudoers) is collected – auditctl /etc/sudoers.d
Details Monitor scope changes for system administrators. If the system has been properly configured to force system administrators to log...Ensure changes to system administration scope (sudoers) is collected – /etc/sudoers
Details Monitor scope changes for system administrators. If the system has been properly configured to force system administrators to log...Ensure changes to system administration scope (sudoers) is collected – /etc/sudoers.d
Details Monitor scope changes for system administrators. If the system has been properly configured to force system administrators to log...Ensure CUPS is not enabled
Details The Common Unix Print System (CUPS) provides the ability to print to both local and network printers. A system...Ensure DCCP is disabled – lsmod
Details The Datagram Congestion Control Protocol (DCCP) is a transport layer protocol that supports streaming media and telephony. DCCP provides...Ensure DCCP is disabled – modprobe
Details The Datagram Congestion Control Protocol (DCCP) is a transport layer protocol that supports streaming media and telephony. DCCP provides...Ensure login and logout events are collected – auditctl faillock
Details Monitor login and logout events. The parameters below track changes to files associated with login/logout events. The file /var/log/lastlog...Ensure login and logout events are collected – auditctl lastlog
Details Monitor login and logout events. The parameters below track changes to files associated with login/logout events. The file /var/log/lastlog...