Download
| Alert*
|
oval:org.secpod.oval:def:30592
The /etc/group file should be owned by the appropriate user. oval:org.secpod.oval:def:30577 The /etc/shadow file should be owned by the appropriate user. oval:org.secpod.oval:def:30612 The SSH ClientAliveCountMax should be set to an appropriate value (and dependencies are met) oval:org.secpod.oval:def:30334 Record attempts to alter time through adjtimex. oval:org.secpod.oval:def:30582 The /etc/gshadow file should be owned by the appropriate group. oval:org.secpod.oval:def:30463 The kernel module cramfs should be disabled. oval:org.secpod.oval:def:30578 The SELinux state should be enforcing the local policy. oval:org.secpod.oval:def:30606 The /etc/group file should be owned by the appropriate group. oval:org.secpod.oval:def:30621 The password minimum length should be set appropriately. oval:org.secpod.oval:def:30484 The kernel module jffs2 should be disabled. oval:org.secpod.oval:def:30601 The gpgcheck option should be used to ensure that checking of an RPM package's signature always occurs prior to its installation. oval:org.secpod.oval:def:30473 The kernel module freevxfs should be disabled. oval:org.secpod.oval:def:30589 This test makes sure that '/etc/passwd' has proper permission. If the target file or directory has an extended ACL then it will fail the mode check. oval:org.secpod.oval:def:72725 Ensure rsyslog Service is enabled and running oval:org.secpod.oval:def:30609 Limit the ciphers to those which are FIPS-approved and only use ciphers in counter (CTR) mode. oval:org.secpod.oval:def:30586 SSH's cryptographic host-based authentication is more secure than .rhosts authentication. However, it is not recommended that hosts unilaterally trust one another, even within an organization. oval:org.secpod.oval:def:30573 The /etc/passwd file should be owned by the appropriate group. oval:org.secpod.oval:def:30631 The /etc/gshadow file should be owned by the appropriate user. oval:org.secpod.oval:def:30602 The minimum password age policy should be set appropriately. oval:org.secpod.oval:def:30508 The maximum password age policy should meet minimum requirements. |
