Capacity
CNTR-OS-000930
1
Rule
Severity: Medium
Ensure auditd Collects Information on Exporting to Media (successful)
1
Rule
Severity: Medium
Record Events that Modify User/Group Information - /etc/group
1
Rule
Severity: Medium
Record Events that Modify User/Group Information - /etc/gshadow
1
Rule
Severity: Medium
Record Events that Modify User/Group Information - /etc/security/opasswd
1
Rule
Severity: Medium
Record Events that Modify User/Group Information - /etc/passwd
1
Rule
Severity: Medium
Record Events that Modify User/Group Information - /etc/shadow
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - chmod
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - chown
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - fchmod
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - fchmodat
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - fchown
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - fchownat
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - fremovexattr
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - fsetxattr
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - lchown
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - lremovexattr
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - lsetxattr
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - removexattr
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - setxattr
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - umount
1
Rule
Severity: Medium
Record Events that Modify the System's Discretionary Access Controls - umount2
1
Rule
Severity: Medium
Record Any Attempts to Run chcon
1
Rule
Severity: Medium
Record Any Attempts to Run semanage
1
Rule
Severity: Medium
Record Any Attempts to Run setfiles
1
Rule
Severity: Medium
Record Any Attempts to Run setsebool
1
Rule
Severity: Medium
Ensure auditd Collects File Deletion Events by User - rename
1
Rule
Severity: Medium
Ensure auditd Collects File Deletion Events by User - renameat
1
Rule
Severity: Medium
Ensure auditd Collects File Deletion Events by User - rmdir
1
Rule
Severity: Medium
Ensure auditd Collects File Deletion Events by User - unlink
1
Rule
Severity: Medium
Ensure auditd Collects File Deletion Events by User - unlinkat
1
Rule
Severity: Medium
Ensure auditd Collects Information on Kernel Module Unloading - delete_module
1
Rule
Severity: Medium
Ensure auditd Collects Information on Kernel Module Loading and Unloading - finit_module
1
Rule
Severity: Medium
Ensure auditd Collects Information on Kernel Module Loading - init_module
1
Rule
Severity: Medium
Record Attempts to Alter Logon and Logout Events - lastlog
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - chage
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - chsh
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - crontab
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - gpasswd
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - newgrp
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - pam_timestamp_check
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - passwd
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - postdrop
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - postqueue
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - ssh-keysign
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - su
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - sudo
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - sudoedit
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - unix_chkpwd
1
Rule
Severity: Medium
Ensure auditd Collects Information on the Use of Privileged Commands - userhelper
1
Rule
Severity: Medium
Configure immutable Audit login UIDs
Patternfly
PatternFly elements
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Modules