Ensure SCTP is disabled – modprobe
Details The Stream Control Transmission Protocol (SCTP) is a transport layer protocol used to support message oriented communication, with several...
- Home
- Security Hardening
- CIS Red Hat Enterprise Linux 7 STIG V2.0.0 L2 Server
CIS Red Hat Enterprise Linux 7 STIG V2.0.0 L2 Server
Ensure separate partition exists for /home
Details The /home directory is used to support disk storage needs of local users. Rationale: If the system is intended...Ensure separate partition exists for /var
Details The /var directory is used by daemons and other system services to temporarily store dynamic data. Some directories created...Ensure separate partition exists for /var/log
Details The /var/log directory is used by system services to store log data. Rationale: There are two important reasons to...Ensure separate partition exists for /var/log/audit
Details The auditing daemon, auditd , stores log data in the /var/log/audit directory. Rationale: There are two important reasons to...Ensure separate partition exists for /var/tmp
Details The /var/tmp directory is a world-writable directory used for temporary storage by all users and some applications and is...Ensure session initiation information is collected – auditctl btmp
Details Monitor session initiation events. The parameters in this section track changes to the files associated with session events. The...Ensure session initiation information is collected – auditctl utmp
Details Monitor session initiation events. The parameters in this section track changes to the files associated with session events. The...Ensure session initiation information is collected – auditctl wtmp
Details Monitor session initiation events. The parameters in this section track changes to the files associated with session events. The...Ensure session initiation information is collected – btmp
Details Monitor session initiation events. The parameters in this section track changes to the files associated with session events. The...