Download
| Alert*
oval:org.secpod.oval:def:20339
The maximum password age policy should meet minimum requirements. oval:org.secpod.oval:def:20316 The /etc/group file should be owned by the appropriate group. oval:org.secpod.oval:def:20358 The minimum password age policy should be set appropriately. oval:org.secpod.oval:def:20235 The screen saver should be blank. oval:org.secpod.oval:def:20334 The /etc/gshadow file should be owned by the appropriate group. oval:org.secpod.oval:def:20319 The /etc/shadow file should be owned by the appropriate user. oval:org.secpod.oval:def:20266 The rsyslog service should be enabled if possible. oval:org.secpod.oval:def:20244 The kernel module jffs2 should be disabled. oval:org.secpod.oval:def:20222 The kernel module freevxfs should be disabled. oval:org.secpod.oval:def:20283 The /etc/passwd file should be owned by the appropriate group. oval:org.secpod.oval:def:20328 The SELinux state should be enforcing the local policy. oval:org.secpod.oval:def:20206 The kernel module cramfs should be disabled. oval:org.secpod.oval:def:20368 The /etc/gshadow file should be owned by the appropriate user. oval:org.secpod.oval:def:20223 Limit the ciphers to those which are FIPS-approved and only use ciphers in counter (CTR) mode. oval:org.secpod.oval:def:20202 The postfix service should be enabled if possible. oval:org.secpod.oval:def:20268 The /etc/group file should be owned by the appropriate user. oval:org.secpod.oval:def:20408 SSH's cryptographic host-based authentication is more secure than .rhosts authentication. However, it is not recommended that hosts unilaterally trust one another, even within an organization. oval:org.secpod.oval:def:20291 This test makes sure that '/etc/passwd' has proper permission. If the target file or directory has an extended ACL then it will fail the mode check. oval:org.secpod.oval:def:20199 The SSH ClientAliveCountMax should be set to an appropriate value (and dependencies are met) oval:org.secpod.oval:def:20351 The password minimum length should be set appropriately. oval:org.secpod.oval:def:20252 The gpgcheck option should be used to ensure that checking of an RPM package's signature always occurs prior to its installation. oval:org.secpod.oval:def:20194 Record attempts to alter time through adjtimex. |