Ensure core dumps are restricted – ProcessSizeMax=0
Details A core dump is the memory of an executable program. It is generally used to determine why a program...
- Home
- Security Hardening
- CIS Oracle Linux 8 Server L1 V1.0.1
CIS Oracle Linux 8 Server L1 V1.0.1
Ensure core dumps are restricted – Storage=none
Details A core dump is the memory of an executable program. It is generally used to determine why a program...Ensure core dumps are restricted – sysctl
Details A core dump is the memory of an executable program. It is generally used to determine why a program...Ensure core dumps are restricted – sysctl.conf sysctl.d
Details A core dump is the memory of an executable program. It is generally used to determine why a program...Ensure filesystem integrity is regularly checked – cron
Details Periodic checking of the filesystem integrity is needed to detect changes to the filesystem. Rationale: Periodic file checking allows...Ensure filesystem integrity is regularly checked – systemctl is-enabled aidecheck.service
Details Periodic checking of the filesystem integrity is needed to detect changes to the filesystem. Rationale: Periodic file checking allows...Ensure filesystem integrity is regularly checked – systemctl is-enabled aidecheck.timer
Details Periodic checking of the filesystem integrity is needed to detect changes to the filesystem. Rationale: Periodic file checking allows...Ensure filesystem integrity is regularly checked – systemctl status aidecheck.timer
Details Periodic checking of the filesystem integrity is needed to detect changes to the filesystem. Rationale: Periodic file checking allows...Ensure gpgcheck is globally activated
Details The gpgcheck option, found in the main section of the /etc/yum.conf and individual /etc/yum/repos.d/* files determines if an RPM...Ensure GPG keys are configured
Details Most packages managers implement GPG key signing to verify package integrity during installation. Rationale: It is important to ensure...