Ensure events that modify user/group information are collected – ‘/etc/security/opasswd’
Details Record events affecting the group, passwd (user IDs), shadow and gshadow (passwords) or /etc/security/opasswd (old passwords, based on remember...
- Home
- Security Hardening
- CIS Ubuntu Linux 14.04 LTS Workstation L2 V2.1.0
CIS Ubuntu Linux 14.04 LTS Workstation L2 V2.1.0
Ensure events that modify user/group information are collected – ‘/etc/shadow’
Details Record events affecting the group, passwd (user IDs), shadow and gshadow (passwords) or /etc/security/opasswd (old passwords, based on remember...Ensure no unconfined daemons exist
Details Daemons that are not defined in SELinux policy will inherit the security context of their parent process. Since daemons...Ensure SELinux is not disabled in bootloader configuration
Details Configure SELINUX to be enabled at boot time and verify that it has not been overwritten by the grub...Ensure SELinux is not disabled in bootloader configuration – ‘enforcing’
Details Configure SELINUX to be enabled at boot time and verify that it has not been overwritten by the grub...Ensure SELinux is not disabled in bootloader configuration -‘selinux’
Details Configure SELINUX to be enabled at boot time and verify that it has not been overwritten by the grub...Ensure SELinux or AppArmor are installed
Details SELinux and AppArmor provide Mandatory Access Controls. Without a Mandatory Access Control system installed only the default Discretionary Access...Ensure SELinux policy is configured
Details Configure SELinux to meet or exceed the default targeted policy, which constrains daemons and system software only. Security configuration...Ensure SELinux policy is configured – ‘Policy from config file’
Details Configure SELinux to meet or exceed the default targeted policy, which constrains daemons and system software only. Security configuration...Ensure SELinux policy is configured – ‘SELINUXTYPE’
Details Configure SELinux to meet or exceed the default targeted policy, which constrains daemons and system software only. Security configuration...