CIS_Amazon_Linux_2_Benchmarks
Profile Applicability: • Level 1 Description: The nosuid mount option prevents the operation of set-user-identifier or set-group-identifier bits on execu...
Wed, 21 May, 2025 at 2:22 AM
Profile Applicability: • Level 1 Description: The noexec mount option prevents execution of binaries on the mounted filesystem. Applying this option to /...
Wed, 21 May, 2025 at 2:27 AM
Profile Applicability: • Level 2 Description: The chcon command is used to change SELinux security contexts on files and processes. Recording both succes...
Wed, 21 May, 2025 at 3:12 AM
Profile Applicability: • Level 2 Description: The setfacl command is used to set Access Control Lists (ACLs) on files and directories, controlling fine-g...
Wed, 21 May, 2025 at 3:18 AM
Profile Applicability: • Level 2 Description: The chacl command modifies Access Control Lists (ACLs) on files and directories, controlling permissions. R...
Wed, 21 May, 2025 at 3:23 AM
Profile Applicability: • Level 2 Description: The usermod command modifies user account properties. Recording both successful and unsuccessful attempts t...
Wed, 21 May, 2025 at 3:36 AM
Profile Applicability: • Level 1 Description: /dev/shm is a temporary filesystem (tmpfs) that provides shared memory support for processes. Mounting /dev...
Wed, 21 May, 2025 at 11:59 PM
Profile Applicability: • Level 1 Description: The nodev mount option prevents device files from being interpreted on the mounted filesystem. Applying thi...
Thu, 22 May, 2025 at 12:05 AM
Profile Applicability: • Level 1 Description: The nosuid mount option prevents the operation of set-user-identifier (setuid) and set-group-identifier (set...
Thu, 22 May, 2025 at 12:11 AM
Profile Applicability: • Level 1 Description: The noexec mount option prevents execution of binaries on the mounted filesystem. Applying this option to /...
Thu, 22 May, 2025 at 12:16 AM