Disable Automounting
Details autofs allows automatic mounting of devices, typically including CD/DVDs and USB drives. Rationale: With automounting enabled anyone with physical...
- Home
- Security Hardening
- CIS Red Hat Enterprise Linux 7 STIG V2.0.0 STIG
CIS Red Hat Enterprise Linux 7 STIG V2.0.0 STIG
Disable USB Storage – /bin/true
Details USB storage provides a means to transfer and store files insuring persistence and availability of the files independent of...Disable USB Storage – blacklist
Details USB storage provides a means to transfer and store files insuring persistence and availability of the files independent of...Ensure address space layout randomization (ASLR) is enabled – config
Details Address space layout randomization (ASLR) is an exploit mitigation technique which randomly arranges the address space of key data...Ensure address space layout randomization (ASLR) is enabled – sysctl
Details Address space layout randomization (ASLR) is an exploit mitigation technique which randomly arranges the address space of key data...Ensure AIDE is configured to use FIPS 140-2 – installed
Details The operating system must use a file integrity tool that is configured to use FIPS 140-2 approved cryptographic hashes...Ensure AIDE is configured to use FIPS 140-2 – sha512
Details The operating system must use a file integrity tool that is configured to use FIPS 140-2 approved cryptographic hashes...Ensure AIDE is configured to verify ACLs – config
Details The operating system must be configured so that the file integrity tool is configured to verify Access Control Lists...Ensure AIDE is configured to verify ACLs – installed
Details The operating system must be configured so that the file integrity tool is configured to verify Access Control Lists...Ensure AIDE is configured to verify XATTRS – config
Details The operating system must be configured so that the file integrity tool is configured to verify extended attributes. Rationale:...