Ensure system is disabled when audit logs are full – ‘action_mail_acct = root’
Details The auditd daemon can be configured to halt the system when the audit logs are full. Rationale: In high...
- Home
- Security Hardening
- CIS Distribution Independent Linux Server L2 V2.0.0
CIS Distribution Independent Linux Server L2 V2.0.0
Ensure system is disabled when audit logs are full – ‘admin_space_left_action = halt’
Details The auditd daemon can be configured to halt the system when the audit logs are full. Rationale: In high...Ensure system is disabled when audit logs are full – ‘space_left_action = email’
Details The auditd daemon can be configured to halt the system when the audit logs are full. Rationale: In high...Ensure the MCS Translation Service (mcstrans) is not installed
Details The mcstransd daemon provides category label information to client processes requesting information. The label translations are defined in /etc/selinux/targeted/setrans.conf...Ensure the SELinux state is enforcing
Details Set SELinux to enable when the system is booted. Rationale: SELinux must be enabled at boot time to ensure...Ensure TIPC is disabled – lsmod
Details The Transparent Inter-Process Communication (TIPC) protocol is designed to provide communication between cluster nodes. Rationale: If the protocol is...Ensure TIPC is disabled – modprobe
Details The Transparent Inter-Process Communication (TIPC) protocol is designed to provide communication between cluster nodes. Rationale: If the protocol is...