Disable IPv6 – grub.cfg
Details Although IPv6 has many advantages over IPv4, not all organizations have IPv6 or dual stack configurations implemented. Rationale: If...
- Home
- Security Hardening
- CIS SUSE Linux Enterprise 15 Server L2 V1.1.1
CIS SUSE Linux Enterprise 15 Server L2 V1.1.1
Disable IPv6 – sysctl all disable_ipv6
Details Although IPv6 has many advantages over IPv4, not all organizations have IPv6 or dual stack configurations implemented. Rationale: If...Disable IPv6 – sysctl.conf all disable_ipv6
Details Although IPv6 has many advantages over IPv4, not all organizations have IPv6 or dual stack configurations implemented. Rationale: If...Disable IPv6 – sysctl.conf default disable_ipv6
Details Although IPv6 has many advantages over IPv4, not all organizations have IPv6 or dual stack configurations implemented. Rationale: If...Disable IPv6 – sysctl default disable_ipv6
Details Although IPv6 has many advantages over IPv4, not all organizations have IPv6 or dual stack configurations implemented. Rationale: If...Ensure all AppArmor Profiles are enforcing – profiles enforce mode
Details AppArmor profiles define what resources applications are able to access. Rationale: Security configuration requirements vary from site to site....Ensure all AppArmor Profiles are enforcing – profiles loaded
Details AppArmor profiles define what resources applications are able to access. Rationale: Security configuration requirements vary from site to site....Ensure all AppArmor Profiles are enforcing – unconfined
Details AppArmor profiles define what resources applications are able to access. Rationale: Security configuration requirements vary from site to site....Ensure audit_backlog_limit is sufficient
Details The backlog limit has a default setting of 64 Rationale: During boot if audit=1, then the backlog will hold...Ensure auditd is installed
Details auditd is the userspace component to the Linux Auditing System. It’s responsible for writing audit records to the disk...