[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

256040

 
 

909

 
 

199103

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 30477 Download | Alert*

Create Separate Partition for /var (Scored) The /var directory is used by daemons and other system services to temporarily store dynamic data. Some directories created by these processes may be world-writable.

Bind Mount the /var/tmp directory to /tmp (Scored) The /var/tmp directory is normally a standalone directory in the /var file system. Binding /var/tmp to /tmp establishes an unbreakable link to /tmp that cannot be removed (even by the root user). It also allows /var/tmp to inherit the same mount options that /tmp owns, allowing /var/tmp to be protected in the same manner /tmp is protected. It wil ...

Create Separate Partition for /var/log (Scored) The /var/log directory is used by system services to store log data .

Create Separate Partition for /var/log/audit (Scored) The auditing daemon, auditd, stores log data in the /var/log/audit directory.

Create Separate Partition for /home (Scored) The /home directory is used to support disk storage needs of local users.

Add nodev Option to /home (Scored) When set on a file system, this option prevents character and block special devices from being defined, or if they exist, from being used as character and block special devices.

Add noexec Option to Removable Media Partitions (Not Scored) Set noexec on removable media to prevent programs from executing from the removable media.

Require Authentication for Single-User Mode (Scored) Setting a password for the root user will force authentication in single user mode.

Enable XD/NX Support on 32-bit x86 Systems (Not Scored) Recent processors in the x86 family support the ability to prevent code execution on a per memory page basis. Generically and on AMD processors, this ability is called No Execute (NX), while on Intel processors it is called Execute Disable (XD). This ability can help prevent exploitation of buffer overflow vulnerabilities and should be activ ...

Ensure DNS Server is not enabled (Not Scored) The Domain Name System (DNS) is a hierarchical naming system that maps names to IP addresses for computers, services and other resources connected to a network.


Pages:      Start    3000    3001    3002    3003    3004    3005    3006    3007    3008    3009    3010    3011    3012    3013    ..   3047

© SecPod Technologies