Create Separate Partition for /var
Details The /var directory is used by daemons and other system services to temporarily store dynamic data. Some directories created...
- Home
- Security Hardening
- CIS Red Hat Enterprise Linux 5 L1 V2.2 1
CIS Red Hat Enterprise Linux 5 L1 V2.2 1
Disable chargen-dgram
Details chargen-dram is a network service that responds with 0 to 512 ASCII characters for each datagram it receives. This...Disable chargen-stream
Details chargen-stream is a network service that responds with 0 to 512 ASCII characters for each connection it receives. This...Disable daytime-dgram
Details daytime-dram is a network service that responds with the server’s current date and time. This service is intended for...Disable daytime-stream
Details daytime-stream is a network service that responds with the server’s current date and time. This service is intended for...Disable Interactive Boot
Details The PROMPT option provides console users the ability to interactively boot the system and select which services to start...Disable Prelink – PRELINKING=no
Details Prelinking is a performance enhancing feature that decreases process start up time. It loads shared libraries into addresses for...Enable Randomized Virtual Memory Region Placement – kernel.randomize_va_space = 2
Details Set the system flag to force randomized virtual memory region placement. Rationale: Randomly placing virtual memory regions will make...Enable XD/NX Support on 32-bit x86 Systems – cpuinfo
Details Modern versions of 32bit processors of the x86 family support a feature that prevents code execution on a per...Enable XD/NX Support on 32-bit x86 Systems – kernel-PAE
Details Modern versions of 32bit processors of the x86 family support a feature that prevents code execution on a per...