Download
| Alert*
oval:org.secpod.oval:def:84478
The password minclass should meet minimum requirements using pam_cracklib oval:org.secpod.oval:def:84479 The password ocredit should meet minimum requirements using pam_cracklib oval:org.secpod.oval:def:84459 The gpgcheck option should be used to ensure that checking of an RPM package's signature always occurs prior to its installation. oval:org.secpod.oval:def:84514 SSH provides several logging levels with varying amounts of verbosity. DEBUG is specifically not recommended other than strictly for debugging SSH communications since it provides so much data that it is difficult to identify important security information. INFO level is the basic level that only re ... oval:org.secpod.oval:def:84333 Limit the ciphers to those which are FIPS-approved and only use ciphers in counter (CTR) mode. oval:org.secpod.oval:def:84433 The SSH ClientAliveCountMax should be set to an appropriate value (and dependencies are met) oval:org.secpod.oval:def:84477 The passwords to remember should be set correctly. oval:org.secpod.oval:def:84468 The password ucredit should meet minimum requirements using pam_cracklib oval:org.secpod.oval:def:84387 The number of allowed failed logins should be set correctly. oval:org.secpod.oval:def:84476 The maximum password age policy should meet minimum requirements. oval:org.secpod.oval:def:84395 The sudo command allows a user to execute programs with elevated (administrator) privileges. It prompts the user for their password and confirms your request to execute a command by checking a file, called sudoers. If the "sudoers" file is not configured correctly, any user defined on the system can ... oval:org.secpod.oval:def:84394 Without re-authentication, users may access resources or perform tasks for which they do not have authorization. oval:org.secpod.oval:def:84513 Configuring this setting for the SSH daemon provides additional assurance that remote logon via SSH will require a password, even in the event of misconfiguration elsewhere. oval:org.secpod.oval:def:84409 The SSH idle timeout interval should be set to an appropriate value. oval:org.secpod.oval:def:84473 The minimum password age policy should be set appropriately. oval:org.secpod.oval:def:84475 The maximum password age policy should meet minimum requirements. |