Skip to content
ATO Pathways
  Log In

Guide to the Secure Configuration of Red Hat Enterprise Linux 8

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Disable the zoneminder_anon_write SELinux Boolean

    By default, the SELinux boolean <code>zoneminder_anon_write</code> is disabled. If this setting is enabled, it should be disabled. To disable the ...
    Rule Medium Severity
    Show

  • Disable the zoneminder_run_sudo SELinux Boolean

    By default, the SELinux boolean <code>zoneminder_run_sudo</code> is disabled. If this setting is enabled, it should be disabled. To disable the <c...
    Rule Medium Severity
    Show

  • Services

    The best protection against vulnerable software is running less software. This section describes how to review the software which Red Hat Enterpris...
    Group
    Show

  • Apport Service

    The Apport service provides debugging and crash reporting features on Ubuntu distributions.
    Group
    Show

  • APT service configuration

    The apt service manage the package management and update of the whole system. Its configuration need to be properly defined to ensure efficient sec...
    Group
    Show

  • Avahi Server

    The Avahi daemon implements the DNS Service Discovery and Multicast DNS protocols, which provide service and host discovery on a network. It allows...
    Group
    Show

  • Configure Avahi if Necessary

    If your system requires the Avahi daemon, its configuration can be restricted to improve security. The Avahi daemon configuration file is <code>/et...
    Group
    Show

  • Check Avahi Responses' TTL Field

    To make Avahi ignore packets unless the TTL field is 255, edit <code>/etc/avahi/avahi-daemon.conf</code> and ensure the following line appears in t...
    Rule Low Severity
    Show

  • Disable Avahi Publishing

    To prevent Avahi from publishing its records, edit <code>/etc/avahi/avahi-daemon.conf</code> and ensure the following line appears in the <code>[pu...
    Rule Low Severity
    Show

  • Serve Avahi Only via Required Protocol

    If you are using only IPv4, edit <code>/etc/avahi/avahi-daemon.conf</code> and ensure the following line exists in the <code>[server]</code> sectio...
    Rule Low Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules