Download
| Alert*
oval:org.secpod.oval:def:53833
The SSH ClientAliveCountMax should be set to an appropriate value (and dependencies are met) oval:org.secpod.oval:def:53829 The password minimum length should be set appropriately. oval:org.secpod.oval:def:53819 The /etc/gshadow file should be owned by the appropriate group. oval:org.secpod.oval:def:53911 The gpgcheck option should be used to ensure that checking of an RPM package's signature always occurs prior to its installation. oval:org.secpod.oval:def:53836 The kernel module freevxfs should be disabled. oval:org.secpod.oval:def:53843 The SELinux state should be enforcing the local policy. oval:org.secpod.oval:def:53831 Record attempts to alter time through adjtimex. oval:org.secpod.oval:def:53703 The rsyslog service should be enabled if possible. oval:org.secpod.oval:def:53710 The /etc/passwd file should be owned by the appropriate group. oval:org.secpod.oval:def:53713 The postfix service should be enabled if possible. oval:org.secpod.oval:def:53765 Limit the ciphers to those which are FIPS-approved and only use ciphers in counter (CTR) mode. oval:org.secpod.oval:def:53943 The /etc/shadow file should be owned by the appropriate user. oval:org.secpod.oval:def:53920 SSH's cryptographic host-based authentication is more secure than .rhosts authentication. However, it is not recommended that hosts unilaterally trust one another, even within an organization. oval:org.secpod.oval:def:53914 The kernel module jffs2 should be disabled. oval:org.secpod.oval:def:53830 The /etc/gshadow file should be owned by the appropriate user. oval:org.secpod.oval:def:53944 The kernel module cramfs should be disabled. oval:org.secpod.oval:def:53735 The /etc/group file should be owned by the appropriate user. oval:org.secpod.oval:def:53786 This test makes sure that '/etc/passwd' has proper permission. If the target file or directory has an extended ACL then it will fail the mode check. oval:org.secpod.oval:def:53924 The /etc/group file should be owned by the appropriate group. oval:org.secpod.oval:def:53780 The minimum password age policy should be set appropriately. oval:org.secpod.oval:def:53693 The screen saver should be blank. oval:org.secpod.oval:def:53859 The maximum password age policy should meet minimum requirements. |