[Forgot Password]
Login  Register Subscribe












Paid content will be excluded from the download.

Matches : 24437 Download | Alert*

Disable Automounting autofs allows automatic mounting of devices, typically including CD/DVDs and USB drives.

Set User/Group Owner on bootloader config Set the owner and group of your boot loaders config file to the root user. These instructions default to GRUB stored at /boot/grub/grub.cfg.

Set Boot Loader Password Setting the boot loader password will require that anyone rebooting the system must enter a password before being able to set command line boot parameters

Restrict Core Dumps A core dump is the memory of an executable program. It is generally used to determine why a program aborted. It can also be used to glean confidential information from a core file. The system provides the ability to set a soft limit for core dumps, but this can be overridden by the user.

Enable Randomized Virtual Memory Region Placement Set the system flag to force randomized virtual memory region placement.

Ensure rsh server is not enabled The Berkeley rsh-server (rsh, rlogin, rcp) package contains legacy services that exchange credentials in clear-text.

Ensure talk server is not enabled The talk software makes it possible for users to send and receive messages across systems through a terminal session. The talk client (allows initiate of talk sessions) is installed by default.

Ensure tftp-server is not enabled Trivial File Transfer Protocol (TFTP) is a simple file transfer protocol, typically used to automatically transfer configuration or boot machines from a boot server. The packages tftp and atftp are both used to define and support a TFTP server.

Ensure xinetd is not enabled The eXtended InterNET Daemon (xinetd) is an open source super daemon that replaced the original inetd daemon. The xinetd daemon listens for well known services and dispatches the appropriate daemon to properly respond to service requests. Note: Several other services recommended to be disabled in this benchmark have xinetd versions as well, if xinetd is required in yo ...

Ensure chargen is not enabled chargen is a network service that responds with 0 to 512 ASCII characters for each connection it receives. This service is intended for debugging and testing purposes. It is recommended that this service be disabled.

Pages:      Start    1    2    3    4    5    6    7    8    9    10    11    12    13    14    ..   2443

© SecPod Technologies