Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide (STIG) V2R1
Rules and Groups employed by this XCCDF Profile
-
ufw Must rate-limit network interfaces
The operating system must configure the uncomplicated firewall to rate-limit impacted network interfaces. Check all the services listening to the ...Rule Medium Severity -
Verify Permissions on /etc/audit/audit.rules
To properly set the permissions of/etc/audit/audit.rules, run the command:$ sudo chmod 0640 /etc/audit/audit.rules
Rule Medium Severity -
Restrict Access to Kernel Message Buffer
To set the runtime status of the <code>kernel.dmesg_restrict</code> kernel parameter, run the following command: <pre>$ sudo sysctl -w kernel.dmesg...Rule Low Severity -
Remove the ntp service
The ntpd service should not be installed.Rule Low Severity -
Remove the systemd_timesyncd Service
The systemd_timesyncd service should not be installed.Rule Low Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules