Ensure auditing for processes that start prior to auditd is enabled
Details Configure grub so that processes that are capable of being audited can be audited even if they start up...
- Home
- Security Hardening
- CIS Ubuntu Linux 18.04 LTS Workstation L2 V2.1.0
CIS Ubuntu Linux 18.04 LTS Workstation L2 V2.1.0
Ensure audit logs are not automatically deleted
Details The max_log_file_action setting determines how to handle the audit log file reaching the max file size. A value of...Ensure audit log storage size is configured
Details Configure the maximum size of the audit log file. Once the log reaches the maximum size, it will be...Ensure CUPS is not installed
Details The Common Unix Print System (CUPS) provides the ability to print to both local and network printers. A system...Ensure DCCP is disabled – lsmod
Details The Datagram Congestion Control Protocol (DCCP) is a transport layer protocol that supports streaming media and telephony. DCCP provides...Ensure DCCP is disabled – modprobe
Details The Datagram Congestion Control Protocol (DCCP) is a transport layer protocol that supports streaming media and telephony. DCCP provides...Ensure events that modify date and time information are collected – adjtimex (32-bit)
Details Capture events where the system date and/or time has been modified. The parameters in this section are set to...Ensure events that modify date and time information are collected – adjtimex (64-bit)
Details Capture events where the system date and/or time has been modified. The parameters in this section are set to...Ensure events that modify date and time information are collected – auditctl adjtimex (32-bit)
Details Capture events where the system date and/or time has been modified. The parameters in this section are set to...Ensure events that modify date and time information are collected – auditctl adjtimex (64-bit)
Details Capture events where the system date and/or time has been modified. The parameters in this section are set to...