Ensure all AppArmor Profiles are enforcing
Details AppArmor profiles define what resources applications are able to access. Security configuration requirements vary from site to site. Some...
- Home
- Security Hardening
- CIS Ubuntu Linux 14.04 LTS Server L2 V2.1.0
CIS Ubuntu Linux 14.04 LTS Server L2 V2.1.0
Ensure all AppArmor Profiles are enforcing – ‘complian mode’
Details AppArmor profiles define what resources applications are able to access. Security configuration requirements vary from site to site. Some...Ensure all AppArmor Profiles are enforcing – ‘profiles loaded’
Details AppArmor profiles define what resources applications are able to access. Security configuration requirements vary from site to site. Some...Ensure all AppArmor Profiles are enforcing – ‘unconfined processes’
Details AppArmor profiles define what resources applications are able to access. Security configuration requirements vary from site to site. Some...Ensure AppArmor is not disabled in bootloader configuration
Details Configure AppArmor to be enabled at boot time and verify that it has not been overwritten by the bootloader...Ensure auditd service is enabled
Details Turn on the auditd daemon to record system events. Rationale: The capturing of system events provides system administrators with...Ensure auditing for processes that start prior to auditd is enabled – ‘/boot/grub/grub.cfg’
Details Configure grub so that processes that are capable of being audited can be audited even if they start up...Ensure auditing for processes that start prior to auditd is enabled – ‘/etc/default/grub’
Details Configure grub so that processes that are capable of being audited can be audited even if they start up...Ensure audit logs are not automatically deleted
Details The max_log_file_action setting determines how to handle the audit log file reaching the max file size. A value of...Ensure audit log storage size is configured
Details Configure the maximum size of the audit log file. Once the log reaches the maximum size, it will be...