Ensure AIDE is configured to verify XATTRS – installed
Details The operating system must be configured so that the file integrity tool is configured to verify extended attributes. Rationale:...
- Home
- Security Hardening
- CIS Red Hat Enterprise Linux 7 STIG V2.0.0 STIG
CIS Red Hat Enterprise Linux 7 STIG V2.0.0 STIG
Ensure AIDE is installed
Details AIDE takes a snapshot of filesystem state including modification times, permissions, and file hashes which can then be used...Ensure all world-writable directories are group-owned.
Details The operating system must be configured so that all world-writable directories are group-owned by root, sys, bin, or an...Ensure authentication required for single user mode
Details Single user mode (rescue mode) is used for recovery when the system detects an issue during boot or by...Ensure boot loader does not allow removable media
Details The operating system must not allow removable media to be used as the boot loader unless approved. Rationale: Malicious...Ensure bootloader password is set – password efi grub
Details Setting the boot loader password will require that anyone rebooting the system must enter a password before being able...Ensure bootloader password is set – password efi user
Details Setting the boot loader password will require that anyone rebooting the system must enter a password before being able...Ensure bootloader password is set – password grub
Details Setting the boot loader password will require that anyone rebooting the system must enter a password before being able...Ensure bootloader password is set – password user
Details Setting the boot loader password will require that anyone rebooting the system must enter a password before being able...Ensure bootloader password is set – superusers efi
Details Setting the boot loader password will require that anyone rebooting the system must enter a password before being able...