CIS_Amazon_Linux_2_Benchmarks
Profile Applicability: Level 1 Description: Files with SUID (Set User ID) and SGID (Set Group ID) permissions execute with the privileges of the file owne...
Thu, 29 May, 2025 at 6:21 AM
Profile Applicability: • Level 1 Description: The /etc/cron.d directory contains system-wide cron job files. Proper permissions on this directory prevent...
Thu, 29 May, 2025 at 6:23 AM
Profile Applicability: • Level 1 Description: The crontab command allows users to schedule tasks to run automatically. Restricting access to crontab ensur...
Thu, 29 May, 2025 at 6:29 AM
Profile Applicability: Level 1 Description: Files or directories without a valid owner (user) or group can cause security risks by allowing unauthorized a...
Thu, 29 May, 2025 at 6:33 AM
Profile Applicability: • Level 1 Description: The at command schedules one-time tasks to run at a specified time. Restricting access to the at command en...
Thu, 29 May, 2025 at 6:33 AM
Profile Applicability: • Level 1 Description: The /etc/ssh/sshd_config file contains the configuration settings for the OpenSSH daemon (sshd), which cont...
Thu, 29 May, 2025 at 6:43 AM
Profile Applicability: • Level 1 Description: SSH private host key files are critical for securing SSH server authentication. Proper permissions prevent ...
Thu, 29 May, 2025 at 6:40 AM
Profile Applicability: Level 1 Description: World writable files and directories allow any user to modify or write to them, which can lead to unauthorized...
Thu, 29 May, 2025 at 6:41 AM
Profile Applicability: Level 1 Description: The /etc/security/opasswd file stores users’ old passwords to enforce password reuse policies. Improper permis...
Thu, 29 May, 2025 at 6:49 AM
Profile Applicability: • Level 1 Description: Configuring the SSH daemon (sshd) access controls ensures only authorized users and hosts can connect to th...
Thu, 29 May, 2025 at 6:52 AM