.. |
1.1_install_updates.sh
|
Add audit and apply methods for 1.1~1.3
|
2018-11-16 02:43:08 +08:00 |
1.2_enable_verify_sign_packages_from_repository.sh
|
Add audit and apply methods for 1.1~1.3
|
2018-11-16 02:43:08 +08:00 |
1.3_enable_verify_sign_of_local_packages.sh
|
Add audit and apply methods for 1.1~1.3
|
2018-11-16 02:43:08 +08:00 |
1.4_set_no_allow_insecure_repository_by_apt.sh
|
Add audit and apply methods for 1.4
|
2018-11-16 03:23:02 +08:00 |
2.1_tmp_partition.sh
|
Fix bug for 2.1
|
2018-12-07 23:52:00 +08:00 |
2.2_tmp_nodev.sh
|
Fix some bugs for mount options of tmp partition
|
2018-12-06 14:45:31 +08:00 |
2.3_tmp_nosuid.sh
|
Fix some bugs for mount options of tmp partition
|
2018-12-06 14:45:31 +08:00 |
2.4_tmp_noexec.sh
|
Fix some bugs for mount options of tmp partition
|
2018-12-06 14:45:31 +08:00 |
2.5_var_partition.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.6.1_var_tmp_partition.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.6.2_var_tmp_nodev.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.6.3_var_tmp_nosuid.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.6.4_var_tmp_noexec.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.7_var_log_partition.sh
|
Fix some bug
|
2018-11-21 02:45:33 -05:00 |
2.8_var_log_audit_partition.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.9_home_partition.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.10_home_nodev.sh
|
Fix bug of add_option_to_fstab function.
|
2018-11-21 04:32:59 -05:00 |
2.11_removable_device_nodev.sh
|
Fix some bugs for mount options check of removable device
|
2018-12-06 02:41:44 +08:00 |
2.12_removable_device_noexec.sh
|
Fix some bugs for mount options check of removable device
|
2018-12-06 02:41:44 +08:00 |
2.13_removable_device_nosuid.sh
|
Fix some bugs for mount options check of removable device
|
2018-12-06 02:41:44 +08:00 |
2.14_run_shm_nodev.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.15_run_shm_nosuid.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.16_run_shm_noexec.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.17_sticky_bit_world_writable_folder.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.18_disable_cramfs.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.19_disable_freevxfs.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.20_disable_jffs2.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.21_disable_hfs.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.22_disable_hfsplus.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.23_disable_squashfs.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.24_disable_udf.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
2.25_disable_automounting.sh
|
Modify is_service_enabled method for debian 9, and apply to 2.25.
|
2019-04-01 04:15:09 +08:00 |
2.26_home_nosuid.sh
|
Modify description
|
2018-11-09 18:43:55 +08:00 |
2.27_nfs_nosuid.sh
|
Add audit and apply methods for 2.27~2.29
|
2018-11-15 03:38:56 +08:00 |
2.28_nfs_noexec.sh
|
Add audit and apply methods for 2.27~2.29
|
2018-11-15 03:38:56 +08:00 |
2.29_nfs_RPCSEC_GSS.sh
|
Add audit and apply methods for 2.27~2.29
|
2018-11-15 03:38:56 +08:00 |
3.1_bootloader_ownership.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
3.2_bootloader_permissions.sh
|
Modify 3.2
|
2018-12-11 16:55:05 +08:00 |
3.3_bootloader_password.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
3.4_root_password.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
4.1_restrict_core_dumps.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
4.2_enable_nx_support.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
4.3_enable_randomized_vm_placement.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
4.4_disable_prelink.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
4.5_enable_apparmor.sh
|
Fix a bug for 4.5
|
2018-12-11 17:31:49 +08:00 |
4.6_disable_usb_devices.sh
|
Rename 99.1 to 10.6, 99.2 to 4.6, Add description to benchmark doc for 4.6 10.6
|
2018-12-04 04:16:39 +08:00 |
5.1.1_disable_nis.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.1.2_disable_rsh.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.1.3_disable_rsh_client.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.1.4_disable_talk.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.1.5_disable_talk_client.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.1.6_disable_telnet_server.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.1.7_disable_tftp_server.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.1.8_disable_inetd.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.2_disable_chargen.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.3_disable_daytime.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.4_disable_echo.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.5_disable_discard.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.6_disable_time.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
5.7_install_screen.sh
|
Rename 5.7_enable_screen.sh to 5.7_install_screen.sh.
|
2018-09-06 03:47:27 +08:00 |
5.8_enable_openssh_server.sh
|
Add audit and apply methods for 5.8
|
2018-10-25 01:57:47 +08:00 |
5.9_disable_ctrl_alt_del_target.sh
|
Optimization: Replace grep|wc -l combination with grep -c.
|
2018-12-05 13:59:04 +08:00 |
5.10_ensure_installed_sudo.sh
|
Fix a bug
|
2018-12-02 20:34:40 +08:00 |
6.1_disable_xwindow_system.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
6.2_disable_avahi_server.sh
|
Implement the exception handling feature for the specified service.
|
2019-03-29 17:02:58 +08:00 |
6.3_disable_print_server.sh
|
Implement the exception handling feature for the specified service.
|
2019-03-29 17:02:58 +08:00 |
6.4_disable_dhcp.sh
|
Implement the exception handling feature for the specified service.
|
2019-03-29 17:02:58 +08:00 |
6.5_ensure_time_sync_server_is_installed.sh
|
Adjust the order of detection cases.
|
2019-04-04 17:52:01 +08:00 |
6.6_disable_ldap.sh
|
Implement the exception handling feature for the specified service.
|
2019-03-29 17:02:58 +08:00 |
6.7_disable_nfs_rpc.sh
|
Implement the exception handling feature for the specified service.
|
2019-03-29 17:02:58 +08:00 |
6.8_disable_dns_server.sh
|
Implement the exception handling feature for the specified service.
|
2019-03-29 17:02:58 +08:00 |
6.9_disable_ftp.sh
|
Implement the exception handling feature for the specified service.
|
2019-03-29 17:02:58 +08:00 |
6.10_disable_http_server.sh
|
Add new feature: Implement the exception handling feature for the specified service. Just implement http for 6.10
|
2019-03-28 03:39:16 +08:00 |
6.11_disable_imap_pop.sh
|
Implement the exception handling feature for the specified service.
|
2019-03-29 17:02:58 +08:00 |
6.12_disable_samba.sh
|
Implement the exception handling feature for the specified service.
|
2019-03-29 17:02:58 +08:00 |
6.13_disable_http_proxy.sh
|
Implement the exception handling feature for the specified service.
|
2019-03-29 17:02:58 +08:00 |
6.14_disable_snmp_server.sh
|
Implement the exception handling feature for the specified service.
|
2019-03-29 17:02:58 +08:00 |
6.15_mta_localhost.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
6.16_disable_rsync.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
6.17_ensure_virul_scan_server_is_enabled.sh
|
Optimization: Replace grep|wc -l combination with grep -c.
|
2018-12-05 13:59:04 +08:00 |
6.18_ensure_virusscan_program_update_is_enabled.sh
|
Fix bugs: Exec some script return error when use grep -c, and clamav daily file extension maybe changed.
|
2018-12-06 16:01:22 +08:00 |
6.19_configure_ntp.sh
|
Adjust the order of detection cases.
|
2019-04-04 17:52:01 +08:00 |
6.20_configure_chrony.sh
|
Add methods of audit and apply for 6.20: configure chrony
|
2019-04-03 06:13:44 +08:00 |
7.1.1_disable_ip_forwarding.sh
|
Implement the exception handling feature for the specified service.
|
2019-03-29 17:02:58 +08:00 |
7.1.2_disable_send_packet_redirects.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.1.3_disable_interface_promisc_mode.sh
|
Fix bugs: Exec some script return error when use grep -c, and clamav daily file extension maybe changed.
|
2018-12-06 16:01:22 +08:00 |
7.2.1_disable_source_routed_packets.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.2.2_disable_icmp_redirect.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.2.3_disable_secure_icmp_redirect.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.2.4_log_martian_packets.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.2.5_ignore_broadcast_requests.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.2.6_enable_bad_error_message_protection.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.2.7_enable_source_route_validation.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.2.8_enable_tcp_syn_cookies.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.3.1_disable_ipv6_router_advertisement.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.3.2_disable_ipv6_redirect.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.3.3_disable_ipv6.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.4.1_install_tcp_wrapper.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.4.2_hosts_allow.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.4.3_hosts_allow_permissions.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.4.4_hosts_deny.sh
|
Fix some bug and add CIS_Debian_Linux_8_Benchmark to docs dir.
|
2018-12-01 04:36:21 +08:00 |
7.4.5_hosts_deny_permissions.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.5.1_disable_dccp.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.5.2_disable_sctp.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.5.3_disable_rds.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.5.4_disable_tipc.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.6_disable_wireless.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
7.7.1_enable_firewall.sh
|
Add check iptables persistent function for 7.7.1
|
2018-11-28 06:14:34 -05:00 |
7.7.2_ensure_set_firewall_rules.sh
|
Modify functions for firewall
|
2018-11-27 02:05:23 +08:00 |
7.7.3_ensure_firewall_set_protect_dos_attacks.sh
|
Modify functions for firewall
|
2018-11-27 02:05:23 +08:00 |
7.7.4_ensure_default_deny_firewall_policy.sh
|
Add audit and apply methods for 7.7.4: Ensure default deny firewall policy. (Include ipv4 and ip6)
|
2019-04-09 03:01:17 +08:00 |
8.0_enable_auditd_kernel.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
8.1.1.1_audit_log_storage.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
8.1.1.2_halt_when_audit_log_full.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
8.1.1.3_keep_all_audit_logs.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
8.1.1.4_set_failure_mode.sh
|
Add audit and apply methods for 8.1.1.4
|
2018-11-10 02:57:18 +08:00 |
8.1.1.5_ensure_set_remote_server.sh
|
Add audit and apply methods for 8.1.1.5
|
2018-11-12 18:05:36 +08:00 |
8.1.1.6_ensure_set_encrypt_for_audit_remote.sh
|
Fix spell error.
|
2018-11-13 04:46:20 +08:00 |
8.1.1.7_ensure_set_action_for_audit_storage_full.sh
|
Optimization: Replace grep|wc -l combination with grep -c.
|
2018-12-05 13:59:04 +08:00 |
8.1.1.8_ensure_set_action_for_net_fail.sh
|
Optimization: Replace grep|wc -l combination with grep -c.
|
2018-12-05 13:59:04 +08:00 |
8.1.1.9_set_space_left_audit.sh
|
Add audit and apply methods for 8.1.1.9
|
2018-11-13 14:10:10 +08:00 |
8.1.2_enable_auditd.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
8.1.3_audit_bootloader.sh
|
Fix some bugs.
|
2018-12-02 21:11:10 +08:00 |
8.1.4_record_date_time_edit.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.5_record_user_group_edit.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.6_record_network_edit.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.7_record_mac_edit.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.8_record_login_logout.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.9_record_session_init.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.10_record_dac_edit.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.11_record_failed_access_file.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.12_record_privileged_commands.sh
|
Fix some bugs.
|
2018-12-05 16:06:35 +08:00 |
8.1.13_record_successful_mount.sh
|
Fix bug for 8.1.13
|
2018-11-30 16:30:46 +08:00 |
8.1.14_record_file_deletions.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.15_record_sudoers_edit.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.16_record_sudo_usage.sh
|
Add audit and apply methods for 8.1.27
|
2018-11-22 08:42:11 -05:00 |
8.1.17_record_kernel_modules.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.18_freeze_auditd_conf.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.19_record_sshkeysign_usage.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.20_record_open_by_handle_at_syscall.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.21_record_Events_that_privileged_passwd_cmd_usage.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.22_record_Events_that_privileged_priv_change_cmd_usage.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.23_record_Events_that_privileged_postfix_cmd_usage.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.24_record_crontab_cmd_usage.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.25_record_pam_timestamp_check_cmd_usage.sh
|
Fix bug: audit.rules file path error.
|
2018-10-30 04:14:47 +08:00 |
8.1.26_record_pam_tally_cmd_usage.sh
|
Add description for 8.1.26
|
2018-10-30 04:18:56 +08:00 |
8.1.27_record_Events_that_modify_conf_files.sh
|
Add audit item for iptables save path
|
2018-11-28 07:52:29 -05:00 |
8.2.1_install_syslog-ng.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
8.2.2_enable_syslog-ng.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
8.2.3_configure_syslog-ng.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
8.2.4_set_logfile_perm.sh
|
Fix some bugs.
|
2018-12-05 16:28:34 +08:00 |
8.2.5_syslog-ng_remote_host.sh
|
Fix some bugs.
|
2018-12-05 16:28:34 +08:00 |
8.2.6_remote_syslog-ng_acl.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
8.3.1_install_aide.sh
|
Modify aide audit methods for debian 9
|
2018-11-20 03:02:44 -05:00 |
8.3.2_aide_cron.sh
|
Modify aide audit methods for debian 9
|
2018-11-20 03:02:44 -05:00 |
8.4_configure_logrotate.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
8.5_verify_integrity_packages.sh
|
Fix some bug
|
2018-11-21 02:45:33 -05:00 |
9.1.1_enable_cron.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.1.2_crontab_perm_ownership.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.1.3_cron_hourly_perm_ownership.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.1.4_cron_daily_perm_ownership.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.1.5_cron_weekly_perm_ownership.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.1.6_cron_monthly_perm_ownership.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.1.7_cron_d_perm_ownership.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.1.8_cron_users.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.2.1_enable_retry_cracklib.sh
|
Rename function name for human.
|
2018-11-07 12:25:57 +08:00 |
9.2.2_enable_minlen_cracklib.sh
|
Rename function name for human.
|
2018-11-07 12:25:57 +08:00 |
9.2.3_enable_dcredit_cracklib.sh
|
Rename function name for human.
|
2018-11-07 12:25:57 +08:00 |
9.2.4_enable_ucredit_cracklib.sh
|
Rename function name for human.
|
2018-11-07 12:25:57 +08:00 |
9.2.5_enable_ocredit_cracklib.sh
|
Rename function name for human.
|
2018-11-07 12:25:57 +08:00 |
9.2.6_enable_lcredit_cracklib.sh
|
Rename function name for human.
|
2018-11-07 12:25:57 +08:00 |
9.2.7_enable_difok_cracklib.sh
|
Rename function name for human.
|
2018-11-07 12:25:57 +08:00 |
9.2.8_enable_minclass_cracklib.sh
|
Rename function name for human.
|
2018-11-07 12:25:57 +08:00 |
9.2.9_enable_maxrepeat_cracklib.sh
|
Rename function name for human.
|
2018-11-07 12:25:57 +08:00 |
9.2.10_enable_maxclassrepeat_cracklib.sh
|
Rename function name for human.
|
2018-11-07 12:25:57 +08:00 |
9.2.11_set_deny_times_password.sh
|
Add audit and apply methods for enable even_deny_root with pam_tally2
|
2018-11-08 03:46:17 +08:00 |
9.2.12_limit_password_reuse.sh
|
Rename function name for human.
|
2018-11-07 12:25:57 +08:00 |
9.2.13_enable_password_sha512.sh
|
Rename function name for human and modify associated file.
|
2018-11-06 04:31:36 +08:00 |
9.2.14_enable_auth_without_nullpwd.sh
|
Fix some bug and add CIS_Debian_Linux_8_Benchmark to docs dir.
|
2018-12-01 04:36:21 +08:00 |
9.2.15_set_printlastlog_to_showfailed.sh
|
Rename function name for human and modify associated file.
|
2018-11-06 04:31:36 +08:00 |
9.2.16_enable_lockout_failed_password.sh
|
Modify description for 9.2.16
|
2018-11-08 04:05:58 +08:00 |
9.2.17_enable_even_deny_root_password.sh
|
Add audit and apply methods for enable even_deny_root with pam_tally2
|
2018-11-08 03:46:17 +08:00 |
9.3.1_sshd_protocol.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.2_sshd_loglevel.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.3_sshd_conf_perm_ownership.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.4_disable_x11_forwarding.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.5_sshd_maxauthtries.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.6_enable_sshd_ignorerhosts.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.7_disable_sshd_hostbasedauthentication.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.8_disable_root_login.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.9_disable_sshd_permitemptypasswords.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.10_disable_sshd_setenv.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.11_sshd_ciphers.sh
|
Fix bug
|
2018-11-19 02:29:03 +08:00 |
9.3.12_sshd_idle_timeout.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.13_sshd_limit_access.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.14_ssh_banner.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.3.15_sshd_printlastlog.sh
|
Add audit and apply methods for 9.3.15
|
2018-10-26 03:33:34 +08:00 |
9.3.16_sshd_IgnoreUserKnownHosts.sh
|
Add audit and apply methods for 9.3.16 9.3.17 9.3.18 9.3.19
|
2018-10-26 03:54:17 +08:00 |
9.3.17_sshd_GSSAPIAuthentication.sh
|
Modify 9.3.17
|
2018-10-26 03:55:53 +08:00 |
9.3.18_sshd_KerberosAuthentication.sh
|
Add audit and apply methods for 9.3.16 9.3.17 9.3.18 9.3.19
|
2018-10-26 03:54:17 +08:00 |
9.3.19_sshd_StrictModes.sh
|
Add audit and apply methods for 9.3.16 9.3.17 9.3.18 9.3.19
|
2018-10-26 03:54:17 +08:00 |
9.3.20_sshd_UsePrivilegeSeparation.sh
|
Add audit and apply methods for 9.3.20 9.3.21 9.2.15, modify 9.2.13 for compatible.
|
2018-10-27 04:12:56 +08:00 |
9.3.21_sshd_compression.sh
|
Add audit and apply methods for 9.3.20 9.3.21 9.2.15, modify 9.2.13 for compatible.
|
2018-10-27 04:12:56 +08:00 |
9.3.22_sshd_MACs.sh
|
Modify description for 9.3.22
|
2018-10-28 23:44:55 +08:00 |
9.3.23_ssh_check_pub_hostkey_permission.sh
|
Fix bug for 9.3.23 9.3.24
|
2018-12-05 15:17:29 +08:00 |
9.3.24_ssh_check_priv_hostkey_permission.sh
|
Fix bug for 9.3.23 9.3.24
|
2018-12-05 15:17:29 +08:00 |
9.4_secure_tty.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
9.5_restrict_su.sh
|
Modify apply method for 9.5
|
2018-11-19 17:25:34 +08:00 |
10.1.1_set_password_exp_days.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
10.1.2_set_password_min_days_change.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
10.1.3_set_password_exp_warning_days.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
10.1.4_set_password_encrypt_method.sh
|
Add 10.1.4 for audit and apply ENCRYPT_METHOD in /etc/login.defs
|
2018-09-11 15:17:58 +08:00 |
10.1.5_set_min_password_lifetime.sh
|
Fix spelling errors.
|
2018-09-12 04:35:11 +08:00 |
10.1.6_set_max_password_lifetime.sh
|
Fix spelling errors.
|
2018-09-12 04:35:11 +08:00 |
10.1.7_remove_nopasswd_sudoers.sh
|
Fix bugs for 10.1.7 and 10.1.8
|
2018-12-09 15:58:06 +08:00 |
10.1.8_remove_noauthenticate_sudoers.sh
|
Fix bugs for 10.1.7 and 10.1.8
|
2018-12-09 15:58:06 +08:00 |
10.1.9_set_fail_delay_seconds.sh
|
Fix bug for 10.1.9 and modify apt_update_if_needed function.
|
2018-12-05 15:10:06 +08:00 |
10.1.10_set_create_home_bool.sh
|
Add audit and apply methods for 10.1.10 and modify 10.1.9
|
2018-10-18 03:17:01 +08:00 |
10.1.11_set_maxlogins_for_all_accounts.sh
|
Fix bugs: Exec some script return error when use grep -c, and clamav daily file extension maybe changed.
|
2018-12-06 16:01:22 +08:00 |
10.1.12_ensure_no_shosts_cfg_on_system.sh
|
Add audit and apply methods for 10.1.12
|
2018-11-13 18:35:40 +08:00 |
10.2_disable_system_accounts.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
10.3_default_root_group.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
10.4_default_umask.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
10.5_lock_inactive_user_account.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
10.6_set_timeout_tty.sh
|
Rename 99.1 to 10.6, 99.2 to 4.6, Add description to benchmark doc for 4.6 10.6
|
2018-12-04 04:16:39 +08:00 |
11.1_warning_banners.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
11.2_remove_os_info_warning_banners.sh
|
Modify for 11.2 and delete not implemented 11.3
|
2019-04-04 17:07:20 +08:00 |
12.1_etc_passwd_permissions.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
12.2_etc_shadow_permissions.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
12.3_etc_group_permissions.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
12.4_etc_passwd_ownership.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
12.5_etc_shadow_ownership.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
12.6_etc_group_ownership.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
12.7_find_world_writable_file.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
12.8_find_unowned_files.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
12.9_find_ungrouped_files.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
12.10_find_suid_files.sh
|
Fix a bug for 12.10, and remove the unwanted exceptions.
|
2018-12-11 04:44:01 +08:00 |
12.11_find_sgid_files.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.1_remove_empty_password_field.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.2_remove_legacy_passwd_entries.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.3_remove_legacy_shadow_entries.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.4_remove_legacy_group_entries.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.5_find_0_uid_non_root_account.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.6_sanitize_root_path.sh
|
Modify function for dpkg verity
|
2018-12-03 00:47:10 +08:00 |
13.7_check_user_dir_perm.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.8_check_user_dot_file_perm.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.9_set_perm_on_user_netrc.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.10_find_user_rhosts_files.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.11_find_passwd_group_inconsistencies.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.12_users_valid_homedir.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.13_check_user_homedir_ownership.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.14_check_duplicate_uid.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.15_check_duplicate_gid.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.16_check_duplicate_username.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.17_check_duplicate_groupname.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.18_find_user_netrc_files.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.19_find_user_forward_files.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |
13.20_shadow_group_empty.sh
|
Modify the description.
|
2018-08-25 09:31:24 +08:00 |