Skip to content
Log In

SR 7.6

Disable Prelinking

7 rules found Severity: Medium

Logo

Verify File Hashes with RPM

21 rules found Severity: High

Logo

Verify and Correct File Permissions with RPM

22 rules found Severity: High

Logo

Install AIDE

32 rules found Severity: Medium

Logo

Configure Periodic Execution of AIDE

27 rules found Severity: Medium

Logo

Verify and Correct Ownership with RPM

17 rules found Severity: High

Logo

Build and Test AIDE Database

27 rules found Severity: Medium

Logo

Configure Notification of Post-AIDE Scan Details

18 rules found Severity: Medium

Logo

Install the Host Intrusion Prevention System (HIPS) Module

27 rules found Severity: Medium

Logo

Ensure /home Located On Separate Partition

32 rules found Severity: Low

Logo

Ensure /tmp Located On Separate Partition

30 rules found Severity: Low

Logo

Ensure /var Located On Separate Partition

32 rules found Severity: Low

Logo

Ensure /var/log Located On Separate Partition

31 rules found Severity: Low

Logo

Install the dracut-fips-aesni Package

5 rules found Severity: Medium

Logo

Install the dracut-fips Package

5 rules found Severity: Medium

Logo

Enable FIPS Mode in GRUB2

5 rules found Severity: High

Logo

Ensure /var/log/audit Located On Separate Partition

32 rules found Severity: Low

Logo

Ensure gpgcheck Enabled In Main yum Configuration

14 rules found Severity: High

Logo

Install Intrusion Detection Software

11 rules found Severity: High

Logo

Ensure Red Hat GPG Key Installed

15 rules found Severity: High

Logo

Install the Asset Configuration Compliance Module (ACCM)

7 rules found Severity: Medium

Logo

Install the Policy Auditor (PA) Module

7 rules found Severity: Medium

Logo

Ensure PAM Enforces Password Requirements - Authentication Retry Prompts Permitted Per-Session

27 rules found Severity: Medium

Logo

Disable GDM Automatic Login

13 rules found Severity: High

Logo

Disable GDM Guest Login

10 rules found Severity: High

Logo

Disable All GNOME3 Thumbnailers

10 rules found

Logo

Require Encryption for Remote Access in GNOME3

12 rules found Severity: Medium

Logo

Ensure the Logon Failure Delay is Set Correctly in login.defs

32 rules found Severity: Medium

Logo

Ensure that Root's Path Does Not Include World or Group-Writable Directories

31 rules found Severity: Medium

Logo

Ensure that Root's Path Does Not Include Relative Paths or Null Directories

31 rules found

Logo

Ensure the Default Umask is Set Correctly in login.defs

32 rules found Severity: Medium

Logo

Ensure gpgcheck Enabled for Local Packages

17 rules found Severity: High

Logo

Ensure gpgcheck Enabled for All yum Package Repositories

10 rules found Severity: High

Logo

Ensure gpgcheck Enabled for Repository Metadata

10 rules found Severity: High

Logo

Enable auditd Service

36 rules found Severity: Medium

Logo

Record Events that Modify the System's Mandatory Access Controls

34 rules found Severity: Medium

Logo

Record Events that Modify the System's Mandatory Access Controls in usr/share

33 rules found Severity: Medium

Logo

Ensure auditd Collects Information on Exporting to Media (successful)

34 rules found Severity: Medium

Logo

Record Events that Modify the System's Network Environment

34 rules found Severity: Medium

Logo

Record Attempts to Alter Process and Session Initiation Information

34 rules found Severity: Medium

Logo

Ensure auditd Collects System Administrator Actions

34 rules found Severity: Medium

Logo

Record Events that Modify User/Group Information

29 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - chmod

33 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - chown

33 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - fchmod

34 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - fchmodat

33 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - fchown

33 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - fchownat

33 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - fremovexattr

34 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - fsetxattr

33 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - lchown

34 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - lremovexattr

33 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - lsetxattr

33 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - removexattr

33 rules found Severity: Medium

Logo

Record Events that Modify the System's Discretionary Access Controls - setxattr

33 rules found Severity: Medium

Logo

Ensure auditd Collects File Deletion Events by User

23 rules found Severity: Medium

Logo

Ensure auditd Collects File Deletion Events by User - rename

33 rules found Severity: Medium

Logo

Ensure auditd Collects File Deletion Events by User - renameat

33 rules found Severity: Medium

Logo

Ensure auditd Collects File Deletion Events by User - rmdir

32 rules found Severity: Medium

Logo

Ensure auditd Collects File Deletion Events by User - unlink

33 rules found Severity: Medium

Logo

Ensure auditd Collects File Deletion Events by User - unlinkat

33 rules found Severity: Medium

Logo

Ensure auditd Collects Unauthorized Access Attempts to Files (unsuccessful)

25 rules found Severity: Medium

Logo

Record Unsuccessful Access Attempts to Files - creat

27 rules found Severity: Medium

Logo

Record Unsuccessful Access Attempts to Files - ftruncate

27 rules found Severity: Medium

Logo

Record Unsuccessful Access Attempts to Files - open

28 rules found Severity: Medium

Logo

Record Unsuccessful Access Attempts to Files - open_by_handle_at

26 rules found Severity: Medium

Logo

Record Unsuccessful Access Attempts to Files - openat

27 rules found Severity: Medium

Logo

Record Unsuccessful Access Attempts to Files - truncate

27 rules found Severity: Medium

Logo

Ensure auditd Collects Information on Kernel Module Loading and Unloading

25 rules found Severity: Medium

Logo

Ensure auditd Collects Information on Kernel Module Unloading - delete_module

27 rules found Severity: Medium

Logo

Ensure auditd Collects Information on Kernel Module Loading and Unloading - finit_module

28 rules found Severity: Medium

Logo

Ensure auditd Collects Information on Kernel Module Loading - init_module

26 rules found Severity: Medium

Logo

Ensure auditd Collects Information on the Use of Privileged Commands

33 rules found Severity: Medium

Logo

Record attempts to alter time through adjtimex

34 rules found Severity: Medium

Logo

Record Attempts to Alter Time Through clock_settime

34 rules found Severity: Medium

Logo

Record attempts to alter time through settimeofday

33 rules found Severity: Medium

Logo

Record Attempts to Alter Time Through stime

33 rules found Severity: Medium

Logo

Record Attempts to Alter the localtime File

33 rules found Severity: Medium

Logo

Enable Auditing for Processes Which Start Prior to the Audit Daemon

22 rules found Severity: Low

Logo

Record Events that Modify User/Group Information - /etc/group

26 rules found Severity: Medium

Logo

Record Events that Modify User/Group Information - /etc/gshadow

25 rules found Severity: Medium

Logo

Record Events that Modify User/Group Information - /etc/security/opasswd

26 rules found Severity: Medium

Logo

Record Events that Modify User/Group Information - /etc/passwd

26 rules found Severity: Medium

Logo

Record Events that Modify User/Group Information - /etc/shadow

26 rules found Severity: Medium

Logo

Verify firewalld Enabled

26 rules found Severity: Medium

Logo

Install libreswan Package

21 rules found Severity: Medium

Logo

Verify ip6tables Enabled if Using IPv6

30 rules found Severity: Medium

Logo

Verify iptables Enabled

30 rules found Severity: Medium

Logo

Set Default ip6tables Policy for Incoming Packets

29 rules found Severity: Medium

Logo

Set Default iptables Policy for Incoming Packets

30 rules found Severity: Medium

Logo

Set Default iptables Policy for Forwarded Packets

29 rules found Severity: Medium

Logo

Disable IPv6 Networking Support Automatic Loading

29 rules found Severity: Medium

Logo

Disable IPv6 Addressing on All IPv6 Interfaces

29 rules found Severity: Medium

Logo

Disable IPv6 Addressing on IPv6 Interfaces by Default

29 rules found Severity: Medium

Logo

Configure Accepting Router Advertisements on All IPv6 Interfaces

22 rules found Severity: Medium

Logo

Disable Accepting ICMP Redirects for All IPv6 Interfaces

27 rules found Severity: Medium

Logo

Disable Kernel Parameter for Accepting Source-Routed Packets on all IPv6 Interfaces

27 rules found Severity: Medium

Logo

Disable Kernel Parameter for IPv6 Forwarding

24 rules found Severity: Medium

Logo

Disable Accepting Router Advertisements on all IPv6 Interfaces by Default

23 rules found Severity: Medium

Logo

Disable Kernel Parameter for Accepting ICMP Redirects by Default on IPv6 Interfaces

26 rules found Severity: Medium

Logo

Disable Kernel Parameter for Accepting Source-Routed Packets on IPv6 Interfaces by Default

29 rules found Severity: Medium

Logo

Disable Accepting ICMP Redirects for All IPv4 Interfaces

28 rules found Severity: Medium

Logo

Disable Kernel Parameter for Accepting Source-Routed Packets on all IPv4 Interfaces

28 rules found Severity: Medium

Logo

Enable Kernel Parameter to Log Martian Packets on all IPv4 Interfaces

24 rules found

Logo

Enable Kernel Parameter to Use Reverse Path Filtering on all IPv4 Interfaces

29 rules found Severity: Medium

Logo

Disable Kernel Parameter for Accepting Secure ICMP Redirects on all IPv4 Interfaces

29 rules found Severity: Medium

Logo

Disable Kernel Parameter for Accepting ICMP Redirects by Default on IPv4 Interfaces

28 rules found Severity: Medium

Logo

Disable Kernel Parameter for Accepting Source-Routed Packets on IPv4 Interfaces by Default

28 rules found Severity: Medium

Logo

Enable Kernel Paremeter to Log Martian Packets on all IPv4 Interfaces by Default

24 rules found

Logo

Enable Kernel Parameter to Use Reverse Path Filtering on all IPv4 Interfaces by Default

27 rules found Severity: Medium

Logo

Configure Kernel Parameter for Accepting Secure Redirects By Default

27 rules found Severity: Medium

Logo

Enable Kernel Parameter to Ignore ICMP Broadcast Echo Requests on IPv4 Interfaces

27 rules found Severity: Medium

Logo

Enable Kernel Parameter to Ignore Bogus ICMP Error Responses on IPv4 Interfaces

28 rules found

Logo

Enable Kernel Parameter to Use TCP Syncookies on Network Interfaces

29 rules found Severity: Medium

Logo

Disable Kernel Parameter for Sending ICMP Redirects on all IPv4 Interfaces

30 rules found Severity: Medium

Logo

Disable Kernel Parameter for Sending ICMP Redirects on all IPv4 Interfaces by Default

30 rules found Severity: Medium

Logo

Disable Kernel Parameter for IP Forwarding on IPv4 Interfaces

30 rules found Severity: Medium

Logo

Disable DCCP Support

24 rules found Severity: Medium

Logo

Disable RDS Support

31 rules found Severity: Low

Logo

Disable SCTP Support

26 rules found Severity: Medium

Logo

Disable TIPC Support

32 rules found Severity: Low

Logo

Deactivate Wireless Network Interfaces

25 rules found Severity: Medium

Logo

Record Unsuccessful Creation Attempts to Files - open_by_handle_at O_CREAT

13 rules found Severity: Medium

Logo

Record Unsuccessful Modification Attempts to Files - open_by_handle_at O_TRUNC_WRITE

13 rules found Severity: Medium

Logo

Ensure auditd Unauthorized Access Attempts To open_by_handle_at Are Ordered Correctly

13 rules found Severity: Medium

Logo

Record Unsuccessful Creation Attempts to Files - open O_CREAT

13 rules found Severity: Medium

Logo

Record Unsuccessful Modification Attempts to Files - open O_TRUNC_WRITE

13 rules found Severity: Medium

Logo

Ensure auditd Rules For Unauthorized Attempts To open Are Ordered Correctly

13 rules found Severity: Medium

Logo

Record Unsuccessful Creation Attempts to Files - openat O_CREAT

13 rules found Severity: Medium

Logo

Record Unsuccessful Modification Attempts to Files - openat O_TRUNC_WRITE

13 rules found Severity: Medium

Logo

Ensure auditd Rules For Unauthorized Attempts To openat Are Ordered Correctly

13 rules found Severity: Medium

Logo

Record Unsuccessful Delete Attempts to Files - rename

16 rules found Severity: Medium

Logo

Record Unsuccessful Delete Attempts to Files - renameat

15 rules found Severity: Medium

Logo

Add nodev Option to /dev/shm

30 rules found Severity: Medium

Logo

Add nosuid Option to /dev/shm

30 rules found Severity: Medium

Logo

Record Unsuccessful Delete Attempts to Files - unlink

15 rules found Severity: Medium

Logo

Record Unsuccessful Delete Attempts to Files - unlinkat

15 rules found Severity: Medium

Logo

Ensure SELinux State is Enforcing

35 rules found Severity: High

Logo

Record Attempts to Alter Logon and Logout Events

19 rules found Severity: Medium

Logo

Record Attempts to Alter Logon and Logout Events - faillock

25 rules found Severity: Medium

Logo

Record Attempts to Alter Logon and Logout Events - lastlog

28 rules found Severity: Medium

Logo

Record Attempts to Alter Logon and Logout Events - tallylog

23 rules found Severity: Medium

Logo

Disable Avahi Publishing

29 rules found Severity: Low

Logo

Disable Avahi Server Software

22 rules found Severity: Medium

Logo

Disable Automatic Bug Reporting Tool (abrtd)

13 rules found Severity: Medium

Logo

Disable Apache Qpid (qpidd)

15 rules found Severity: Low

Logo

Disable Network Router Discovery Daemon (rdisc)

15 rules found Severity: Medium

Logo

Install the cron service

31 rules found Severity: Medium

Logo

Enable cron Service

50 rules found Severity: Medium

Logo

Disable At Service (atd)

16 rules found Severity: Medium

Logo

Uninstall the inet-based telnet server

29 rules found Severity: High

Logo

Uninstall the ssl compliant telnet server

29 rules found Severity: High

Logo

Uninstall the telnet server

29 rules found Severity: High

Logo

Minimize Served Information

29 rules found

Logo

Disable DHCP Service

14 rules found Severity: Medium

Logo

Uninstall bind Package

25 rules found Severity: Low

Logo

Disable named Service

13 rules found Severity: Medium

Logo

Disable vsftpd Service

12 rules found Severity: Medium

Logo

Disable httpd Service

12 rules found

Logo

Remove Rsh Trust Files

30 rules found Severity: High

Logo

Disable the CUPS Service

16 rules found

Logo

Disable Host-Based Authentication

34 rules found Severity: Medium

Logo

Allow Only SSH Protocol 2

30 rules found Severity: High

Logo

Disable Compression Or Set Compression to delayed

31 rules found Severity: Medium

Logo

Disable SSH Access via Empty Passwords

35 rules found Severity: High

Logo

Disable GSSAPI Authentication

31 rules found Severity: Medium

Logo

Disable Kerberos Authentication

31 rules found Severity: Medium

Logo

Disable SSH Support for .rhosts Files

34 rules found Severity: Medium

Logo

Disable SSH Support for Rhosts RSA Authentication

31 rules found Severity: Medium

Logo

Disable SSH Support for User Known Hosts

33 rules found Severity: Medium

Logo

Do Not Allow SSH Environment Options

35 rules found Severity: Medium

Logo

Enable Encrypted X11 Forwarding

29 rules found Severity: High

Logo

Ensure rsyslog Does Not Accept Remote Messages Unless Acting As Log Server

19 rules found Severity: Medium

Logo

Configure Multiple DNS Servers in /etc/resolv.conf

13 rules found Severity: Medium

Logo

Disable Client Dynamic DNS Updates

5 rules found Severity: Medium

Logo

Disable Zeroconf Networking

6 rules found

Logo

Ensure System is Not Acting as a Network Sniffer

17 rules found Severity: Medium

Logo

Configure the Firewalld Ports

13 rules found Severity: Medium

Logo

Set Default firewalld Zone for Incoming Packets

18 rules found Severity: Medium

Logo

Verify Any Configured IPSec Tunnel Connections

15 rules found Severity: Medium

Logo

Disable Support for RPC IPv6

9 rules found

Logo

Disable Bluetooth Service

14 rules found Severity: Medium

Logo

Disable Bluetooth Kernel Module

15 rules found Severity: Medium

Logo

Disable WiFi or Bluetooth in BIOS

7 rules found

Logo

Ensure All Files Are Owned by a User

25 rules found Severity: Medium

Logo

Disable Mounting of cramfs

21 rules found Severity: Low

Logo

Disable Mounting of freevxfs

18 rules found Severity: Low

Logo

Disable Mounting of hfs

17 rules found Severity: Low

Logo

Disable Mounting of hfsplus

17 rules found Severity: Low

Logo

Disable Mounting of jffs2

18 rules found Severity: Low

Logo

Disable Mounting of squashfs

17 rules found Severity: Low

Logo

Disable Mounting of udf

17 rules found Severity: Low

Logo

Disable Mounting of vFAT filesystems

12 rules found Severity: Low

Logo

Add noexec Option to /dev/shm

20 rules found Severity: Medium

Logo

Add nosuid Option to /home

22 rules found Severity: Medium

Logo

Add nodev Option to Non-Root Local Partitions

18 rules found Severity: Medium

Logo

Add nodev Option to Removable Media Partitions

19 rules found Severity: Medium

Logo

Add noexec Option to Removable Media Partitions

19 rules found Severity: Medium

Logo

Add nosuid Option to Removable Media Partitions

19 rules found Severity: Medium

Logo

Add nodev Option to /tmp

20 rules found Severity: Medium

Logo

Add noexec Option to /tmp

21 rules found Severity: Medium

Logo

Add nosuid Option to /tmp

22 rules found Severity: Medium

Logo

Bind Mount /var/tmp To /tmp

10 rules found

Logo

Enable ExecShield via sysctl

14 rules found Severity: Medium

Logo

Enable NX or XD Support in the BIOS

18 rules found Severity: Medium

Logo

Install PAE Kernel on Supported 32-bit x86 Systems

12 rules found

Logo

Ensure SELinux Not Disabled in the kernel arguments

13 rules found Severity: Medium

Logo

Ensure SELinux Not Disabled in /etc/default/grub

19 rules found Severity: Medium

Logo

Ensure No Device Files are Unlabeled by SELinux

14 rules found Severity: Medium

Logo

Ensure No Daemons are Unconfined by SELinux

20 rules found Severity: Medium

Logo

Configure SELinux Policy

23 rules found Severity: Medium

Logo

Check Avahi Responses' TTL Field

5 rules found Severity: Low

Logo

Serve Avahi Only via Required Protocol

5 rules found Severity: Low

Logo

Prevent Other Programs from Using Avahi's Port

5 rules found Severity: Medium

Logo

Restrict Information Published by Avahi

5 rules found Severity: Low

Logo

Uninstall avahi-autoipd Server Package

9 rules found Severity: Medium

Logo

Uninstall avahi Server Package

12 rules found Severity: Medium

Logo

Install the psacct package

6 rules found Severity: Low

Logo

Enable IRQ Balance (irqbalance)

3 rules found Severity: Low

Logo

Enable Process Accounting (psacct)

6 rules found Severity: Low

Logo

Disable Advanced Configuration and Power Interface (acpid)

5 rules found Severity: Medium

Logo

Disable Certmonger Service (certmonger)

5 rules found Severity: Low

Logo

Disable Control Group Config (cgconfig)

3 rules found Severity: Low

Logo

Disable Control Group Rules Engine (cgred)

3 rules found Severity: Low

Logo

Disable CPU Speed (cpupower)

5 rules found Severity: Low

Logo

Disable KDump Kernel Crash Analyzer (kdump)

18 rules found Severity: Medium

Logo

Disable Software RAID Monitor (mdmonitor)

5 rules found Severity: Low

Logo

Disable D-Bus IPC Service (messagebus)

3 rules found Severity: Low

Logo

Disable Network Console (netconsole)

5 rules found Severity: Low

Logo

Disable ntpdate Service (ntpdate)

13 rules found Severity: Low

Logo

Disable Odd Job Daemon (oddjobd)

13 rules found Severity: Medium

Logo

Disable Portreserve (portreserve)

5 rules found Severity: Low

Logo

Disable Quota Netlink (quota_nld)

5 rules found Severity: Low

Logo

Disable Red Hat Network Service (rhnsd)

7 rules found Severity: Low

Logo

Disable Red Hat Subscription Manager Daemon (rhsmcertd)

5 rules found Severity: Low

Logo

Disable Cyrus SASL Authentication Daemon (saslauthd)

5 rules found Severity: Low

Logo

Disable SMART Disk Monitoring Service (smartd)

3 rules found Severity: Low

Logo

Disable System Statistics Reset Service (sysstat)

5 rules found Severity: Low

Logo

Disable anacron Service

6 rules found

Logo

Deny BOOTP Queries

5 rules found

Logo

Deny Decline Messages

5 rules found

Logo

Do Not Use Dynamic DNS

5 rules found

Logo

Disable DHCP Client in ifcfg

5 rules found

Logo

Uninstall DHCP Server Package

18 rules found Severity: Medium

Logo

Authenticate Zone Transfers

5 rules found Severity: Medium

Logo

Uninstall vsftpd Package

19 rules found Severity: High

Logo

Restrict Access to Anonymous Users if Possible

6 rules found Severity: Medium

Logo

Install vsftpd Package

6 rules found Severity: Low

Logo

Uninstall httpd Package

16 rules found

Logo

Set Permissions on the /var/log/httpd/ Directory

5 rules found Severity: Medium

Logo

Set Permissions on All Configuration Files Inside /etc/httpd/conf.d/

7 rules found

Logo

Set Permissions on All Configuration Files Inside /etc/httpd/conf/

7 rules found

Logo

Set Permissions on All Configuration Files Inside /etc/httpd/conf.modules.d/

7 rules found

Logo

Set httpd ServerSignature Directive to Off

5 rules found

Logo

Set httpd ServerTokens Directive to Prod

5 rules found

Logo

Enable the LDAP Client For Use in Authconfig

10 rules found Severity: Medium

Logo

Configure LDAP Client to Use TLS For All Transactions

8 rules found Severity: Medium

Logo

Configure Certificate Directives for LDAP Use of TLS

6 rules found Severity: Medium

Logo

Uninstall openldap-servers Package

14 rules found Severity: Low

Logo

Uninstall Sendmail Package

16 rules found Severity: Medium

Logo

Disable Postfix Network Listening

21 rules found Severity: Medium

Logo

Mount Remote Filesystems with nodev

13 rules found Severity: Medium

Logo

Install tcp_wrappers Package

4 rules found Severity: Medium

Logo

Uninstall xinetd Package

19 rules found Severity: Low

Logo

Disable xinetd Service

12 rules found Severity: Medium

Logo

Uninstall ypserv Package

15 rules found Severity: High

Logo

Disable ypbind Service

8 rules found Severity: Medium

Logo

Uninstall rsh-server Package

18 rules found Severity: High

Logo

Disable rexec Service

11 rules found Severity: High

Logo

Disable rlogin Service

14 rules found Severity: High

Logo

Disable rsh Service

10 rules found Severity: High

Logo

Uninstall telnet-server Package

22 rules found Severity: High

Logo

Disable telnet Service

14 rules found Severity: High

Logo

Uninstall tftp-server Package

21 rules found Severity: High

Logo

Disable tftp Service

6 rules found Severity: High

Logo

Ensure tftp Daemon Uses Secure Mode

11 rules found Severity: Medium

Logo

Uninstall CUPS Package

13 rules found

Logo

Disable Printer Browsing Entirely if Possible

5 rules found

Logo

Disable Print Server Capabilities

5 rules found

Logo

Uninstall quagga Package

11 rules found Severity: Low

Logo

Disable Quagga Service

9 rules found Severity: Medium

Logo

Use Only FIPS 140-2 Validated Ciphers

14 rules found Severity: Medium

Logo

Use Only FIPS 140-2 Validated MACs

12 rules found Severity: Medium

Logo

Configure SSSD LDAP Backend to Use TLS For All Transactions

11 rules found Severity: High

Logo

Remove the X Windows Package Group

21 rules found Severity: Medium

Logo

Disable X Windows Startup By Setting Default Target

16 rules found Severity: Medium

Logo

Ensure gpgcheck Enabled In Main dnf Configuration

10 rules found Severity: High

Logo

Ensure gpgcheck Enabled for All dnf Package Repositories

8 rules found Severity: High

Logo

Uninstall nginx Package

13 rules found

Logo

Ensure Fedora GPG Key Installed

1 rule found Severity: High

Logo

Ensure Oracle Linux GPG Key Installed

4 rules found Severity: High

Logo

Enable Auditing for Processes Which Start Prior to the Audit Daemon

1 rule found Severity: Medium

Logo

Ensure gpgcheck Enabled In Main zypper Configuration

3 rules found Severity: High

Logo

Ensure gpgcheck Enabled for All zypper Package Repositories

2 rules found Severity: High

Logo

Ensure SUSE GPG Key Installed

2 rules found Severity: High

Logo

Install strongswan Package

1 rule found Severity: Medium

Logo

Uninstall DHCP Client Package

2 rules found Severity: Medium

Logo

Uninstall tcpd Package

2 rules found Severity: Low

Logo

Uninstall 389-ds-base Package

8 rules found Severity: Low

Logo

Configure Systemd Timer Execution of AIDE

4 rules found Severity: Medium

Logo