Skip to content

Commit

Permalink
Merge pull request #12648 from teacup-on-rockingchair/add_cis_slem
Browse files Browse the repository at this point in the history 
Add CIS  support for slmicro5
  • Loading branch information
@Mab879
Mab879 authored Dec 10, 2024
2 parents db834ce + 931bc91 commit dddbdd5
Show file tree
Hide file tree
Showing 405 changed files with 3,169 additions and 410 deletions.
2,331 changes: 2,331 additions & 0 deletions controls/cis_slmicro5.yml
View file

Large diffs are not rendered by default.

2 changes: 2 additions & 0 deletions ...ting/auditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_chmod/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,11 +36,13 @@ identifiers:
cce@rhel10: CCE-90466-4
cce@sle12: CCE-83106-5
cce@sle15: CCE-85693-0
cce@slmicro5: CCE-93862-1

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
2 changes: 2 additions & 0 deletions ...ting/auditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_chown/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,11 +36,13 @@ identifiers:
cce@rhel10: CCE-89540-9
cce@sle12: CCE-83137-0
cce@sle15: CCE-85690-6
cce@slmicro5: CCE-93861-3

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
1 change: 1 addition & 0 deletions ...ing/auditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_fchmod/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,7 @@ references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
2 changes: 2 additions & 0 deletions ...g/auditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_fchmodat/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,11 +33,13 @@ identifiers:
cce@rhel10: CCE-89356-0
cce@sle12: CCE-83132-1
cce@sle15: CCE-85695-5
cce@slmicro5: CCE-93860-5

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
2 changes: 2 additions & 0 deletions ...ing/auditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_fchown/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,11 +36,13 @@ identifiers:
cce@rhel10: CCE-90685-9
cce@sle12: CCE-83136-2
cce@sle15: CCE-85721-9
cce@slmicro5: CCE-93859-7

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
2 changes: 2 additions & 0 deletions ...g/auditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_fchownat/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,11 +33,13 @@ identifiers:
cce@rhel10: CCE-90651-1
cce@sle12: CCE-83134-7
cce@sle15: CCE-85692-2
cce@slmicro5: CCE-93858-9

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
1 change: 1 addition & 0 deletions ...ditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_fremovexattr/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -56,6 +56,7 @@ references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
2 changes: 2 additions & 0 deletions .../auditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_fsetxattr/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,11 +45,13 @@ identifiers:
cce@rhel10: CCE-89370-1
cce@sle12: CCE-83141-2
cce@sle15: CCE-85688-0
cce@slmicro5: CCE-93857-1

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
1 change: 1 addition & 0 deletions ...ing/auditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_lchown/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -42,6 +42,7 @@ references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
2 changes: 2 additions & 0 deletions ...ditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_lremovexattr/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,11 +50,13 @@ identifiers:
cce@rhel10: CCE-90100-9
cce@sle12: CCE-83139-6
cce@sle15: CCE-85685-6
cce@slmicro5: CCE-93856-3

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
2 changes: 2 additions & 0 deletions .../auditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_lsetxattr/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,11 +45,13 @@ identifiers:
cce@rhel10: CCE-88052-6
cce@sle12: CCE-83256-8
cce@sle15: CCE-85689-8
cce@slmicro5: CCE-93855-5

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
2 changes: 2 additions & 0 deletions ...uditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_removexattr/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -49,11 +49,13 @@ identifiers:
cce@rhel10: CCE-89677-9
cce@sle12: CCE-83140-4
cce@sle15: CCE-85684-9
cce@slmicro5: CCE-93854-8

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
2 changes: 2 additions & 0 deletions ...g/auditd_configure_rules/audit_dac_actions/audit_rules_dac_modification_setxattr/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,11 +45,13 @@ identifiers:
cce@rhel10: CCE-89571-4
cce@sle12: CCE-83142-0
cce@sle15: CCE-85687-2
cce@slmicro5: CCE-93853-0

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.9
cis@sle15: 4.1.9
cis@slmicro5: 4.1.9
cis@ubuntu2004: 4.1.9
cis@ubuntu2204: 4.1.3.9
cjis: 5.4.1.1
Expand Down
2 changes: 2 additions & 0 deletions ...nfigure_rules/audit_file_deletion_events/audit_rules_file_deletion_events_rename/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,11 +33,13 @@ identifiers:
cce@rhel10: CCE-90733-7
cce@sle12: CCE-91606-4
cce@sle15: CCE-85768-0
cce@slmicro5: CCE-93852-2

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.13
cis@sle15: 4.1.13
cis@slmicro5: 4.1.13
cis@ubuntu2004: 4.1.13
cis@ubuntu2204: 4.1.3.13
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
Expand Down
2 changes: 2 additions & 0 deletions ...igure_rules/audit_file_deletion_events/audit_rules_file_deletion_events_renameat/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,11 +30,13 @@ identifiers:
cce@rhel10: CCE-90237-9
cce@sle12: CCE-91607-2
cce@sle15: CCE-85769-8
cce@slmicro5: CCE-93851-4

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.13
cis@sle15: 4.1.13
cis@slmicro5: 4.1.13
cis@ubuntu2004: 4.1.13
cis@ubuntu2204: 4.1.3.13
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
Expand Down
2 changes: 2 additions & 0 deletions ...nfigure_rules/audit_file_deletion_events/audit_rules_file_deletion_events_unlink/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,11 +33,13 @@ identifiers:
cce@rhel10: CCE-86737-4
cce@sle12: CCE-91609-8
cce@sle15: CCE-85771-4
cce@slmicro5: CCE-93849-8

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.13
cis@sle15: 4.1.13
cis@slmicro5: 4.1.13
cis@ubuntu2004: 4.1.13
cis@ubuntu2204: 4.1.3.13
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
Expand Down
2 changes: 2 additions & 0 deletions ...igure_rules/audit_file_deletion_events/audit_rules_file_deletion_events_unlinkat/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,11 +30,13 @@ identifiers:
cce@rhel10: CCE-87813-2
cce@sle12: CCE-91610-6
cce@sle15: CCE-85772-2
cce@slmicro5: CCE-93850-6

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.13
cis@sle15: 4.1.13
cis@slmicro5: 4.1.13
cis@ubuntu2004: 4.1.13
cis@ubuntu2204: 4.1.3.13
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
Expand Down
2 changes: 1 addition & 1 deletion ...nfigure_rules/audit_file_modification/audit_rules_unsuccessful_file_modification/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,6 +40,7 @@ identifiers:
cce@rhel10: CCE-87250-7
cce@sle12: CCE-91652-8
cce@sle15: CCE-91246-9
cce@slmicro5: CCE-93846-4

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
Expand Down Expand Up @@ -72,4 +73,3 @@ warnings:
<li><tt>audit_rules_unsuccessful_file_modification_ftruncate</tt></li>
<li><tt>audit_rules_unsuccessful_file_modification_creat</tt></li>
</ul>
2 changes: 2 additions & 0 deletions ...e_rules/audit_file_modification/audit_rules_unsuccessful_file_modification_creat/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -41,11 +41,13 @@ identifiers:
cce@rhel10: CCE-87052-7
cce@sle12: CCE-83092-7
cce@sle15: CCE-85681-5
cce@slmicro5: CCE-93848-0

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.10
cis@sle15: 4.1.10
cis@slmicro5: 4.1.10
cis@ubuntu2004: 4.1.10
cis@ubuntu2204: 4.1.3.7
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
Expand Down
2 changes: 2 additions & 0 deletions ...les/audit_file_modification/audit_rules_unsuccessful_file_modification_ftruncate/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -41,11 +41,13 @@ identifiers:
cce@rhel10: CCE-86729-1
cce@sle12: CCE-83091-9
cce@sle15: CCE-85696-3
cce@slmicro5: CCE-93847-2

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.10
cis@sle15: 4.1.10
cis@slmicro5: 4.1.10
cis@ubuntu2004: 4.1.10
cis@ubuntu2204: 4.1.3.7
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
Expand Down
2 changes: 2 additions & 0 deletions ..._rules/audit_file_modification/audit_rules_unsuccessful_file_modification_openat/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -41,11 +41,13 @@ identifiers:
cce@rhel10: CCE-89291-9
cce@sle12: CCE-83093-5
cce@sle15: CCE-85682-3
cce@slmicro5: CCE-93845-6

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.10
cis@sle15: 4.1.10
cis@slmicro5: 4.1.10
cis@ubuntu2004: 4.1.10
cis@ubuntu2204: 4.1.3.7
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
Expand Down
2 changes: 2 additions & 0 deletions ...ules/audit_file_modification/audit_rules_unsuccessful_file_modification_truncate/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -41,11 +41,13 @@ identifiers:
cce@rhel10: CCE-89869-2
cce@sle12: CCE-83085-1
cce@sle15: CCE-85608-8
cce@slmicro5: CCE-93844-9

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.10
cis@sle15: 4.1.10
cis@slmicro5: 4.1.10
cis@ubuntu2004: 4.1.10
cis@ubuntu2204: 4.1.3.7
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
Expand Down
2 changes: 1 addition & 1 deletion ...re_rules/audit_kernel_module_loading/audit_rules_kernel_module_loading/ansible/shared.yml
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_rhv,multi_platform_sle
# platform = multi_platform_rhel,multi_platform_fedora,multi_platform_ol,multi_platform_rhv,multi_platform_sle,multi_platform_slmicro
# reboot = true
# strategy = restrict
# complexity = low
Expand Down
2 changes: 2 additions & 0 deletions ...td_configure_rules/audit_kernel_module_loading/audit_rules_kernel_module_loading/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,11 +30,13 @@ identifiers:
cce@rhel10: CCE-89198-6
cce@sle12: CCE-91653-6
cce@sle15: CCE-91247-7
cce@slmicro5: CCE-93843-1

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.16
cis@sle15: 4.1.16
cis@slmicro5: 4.1.16
cjis: 5.4.1.1
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
cui: 3.1.7
Expand Down
1 change: 1 addition & 0 deletions ...igure_rules/audit_kernel_module_loading/audit_rules_kernel_module_loading_delete/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,7 @@ references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.16
cis@sle15: 4.1.16
cis@slmicro5: 4.1.16
cis@ubuntu2004: 4.1.16
cis@ubuntu2204: 4.1.3.19
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
Expand Down
2 changes: 1 addition & 1 deletion ...les/audit_kernel_module_loading/audit_rules_kernel_module_loading_init/ansible/shared.yml
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
# platform = multi_platform_rhel,multi_platform_rhv,multi_platform_sle,multi_platform_ol,multi_platform_ubuntu,multi_platform_debian
# platform = multi_platform_debian,multi_platform_ol,multi_platform_rhel,multi_platform_rhv,multi_platform_sle,multi_platform_slmicro,multi_platform_ubuntu
# reboot = false
# complexity = low
# disruption = low
Expand Down
2 changes: 2 additions & 0 deletions ...nfigure_rules/audit_kernel_module_loading/audit_rules_kernel_module_loading_init/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,11 +33,13 @@ identifiers:
cce@rhel10: CCE-90172-8
cce@sle12: CCE-83130-5
cce@sle15: CCE-85750-8
cce@slmicro5: CCE-93842-3

references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.16
cis@sle15: 4.1.16
cis@slmicro5: 4.1.16
cis@ubuntu2004: 4.1.16
cis@ubuntu2204: 4.1.3.19
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
Expand Down
2 changes: 2 additions & 0 deletions ...iting/auditd_configure_rules/audit_login_events/audit_rules_login_events_faillog/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,10 +26,12 @@ severity: medium
identifiers:
cce@sle12: CCE-83192-5
cce@sle15: CCE-92576-8
cce@slmicro5: CCE-93841-5

references:
cis@sle12: 4.1.7
cis@sle15: 4.1.7
cis@slmicro5: 4.1.7
cis@ubuntu2004: 4.1.7
disa: CCI-000130,CCI-000169,CCI-000172,CCI-002884
nist@sle12: AU-3,AU-12(a),AU-12(c),MA-4(1)(a)
Expand Down
1 change: 1 addition & 0 deletions ...iting/auditd_configure_rules/audit_login_events/audit_rules_login_events_lastlog/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,7 @@ references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.7
cis@sle15: 4.1.7
cis@slmicro5: 4.1.7
cis@ubuntu2004: 4.1.7
cis@ubuntu2204: 4.1.3.12
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
Expand Down
1 change: 1 addition & 0 deletions ...ting/auditd_configure_rules/audit_login_events/audit_rules_login_events_tallylog/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,7 @@ references:
cis-csc: 1,11,12,13,14,15,16,19,2,3,4,5,6,7,8,9
cis@sle12: 4.1.7
cis@sle15: 4.1.7
cis@slmicro5: 4.1.7
cis@ubuntu2004: 4.1.7
cobit5: APO10.01,APO10.03,APO10.04,APO10.05,APO11.04,APO12.06,APO13.01,BAI03.05,BAI08.02,DSS01.03,DSS01.04,DSS02.02,DSS02.04,DSS02.07,DSS03.01,DSS03.05,DSS05.02,DSS05.03,DSS05.04,DSS05.05,DSS05.07,MEA01.01,MEA01.02,MEA01.03,MEA01.04,MEA01.05,MEA02.01
cui: 3.1.7
Expand Down
2 changes: 1 addition & 1 deletion ...configure_rules/audit_privileged_commands/audit_rules_privileged_commands_insmod/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -35,6 +35,7 @@ identifiers:
references:
cis@sle12: 4.1.16
cis@sle15: 4.1.16
cis@slmicro5: 4.1.16
cis@ubuntu2004: 4.1.16
cis@ubuntu2204: 4.1.3.19
disa: CCI-000130,CCI-000169,CCI-000172,CCI-002884
Expand All @@ -52,4 +53,3 @@ ocil: |-
</pre>
If the system is configured to audit the execution of the module management program "insmod",
the command will return a line.
2 changes: 1 addition & 1 deletion ...nfigure_rules/audit_privileged_commands/audit_rules_privileged_commands_modprobe/rule.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,7 @@ identifiers:
references:
cis@sle12: 4.1.16
cis@sle15: 4.1.16
cis@slmicro5: 4.1.16
cis@ubuntu2004: 4.1.16
cis@ubuntu2204: 4.1.3.19
disa: CCI-000130,CCI-000169,CCI-000172,CCI-002884
Expand All @@ -58,4 +59,3 @@ ocil: |-
-w /sbin/modprobe -p x -k modules
</pre>
It should return a relevant line in the audit rules.
Loading

0 comments on commit dddbdd5

Please sign in to comment.