Created
June 5, 2026 06:55
-
-
Save lzap/d67f5be0d17d2d65065411837da42039 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "profiles": [ | |
| { | |
| "id": "xccdf_org.ssgproject.content_profile_cis_server_l1", | |
| "base_profile_id": "xccdf_org.ssgproject.content_profile_cis_server_l1", | |
| "title": "CIS Red Hat Enterprise Linux 10 Benchmark for Level 1 - Server", | |
| "groups": {}, | |
| "rules": { | |
| "xccdf_org.ssgproject.content_rule_file_permissions_unauthorized_world_writable": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_dconf_gnome_disable_automount_open": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_pwhistory_remember_system_auth": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_tmout": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permission_user_bash_history": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_etc_security_opasswd": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_accept_redirects": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_backup_etc_gshadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_etc_shadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_backup_etc_gshadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_etc_security_opasswd_old": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_backup_etc_passwd": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_etc_passwd": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_etc_shells": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_service_autofs_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_dev_shm_nosuid": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_var_log_noexec": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_fs_suid_dumpable": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_mcstrans_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_service_avahi-daemon_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_bind_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_tftp-server_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_chronyd_specify_remote_server": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_chronyd_run_as_chrony_user": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_telnet-server_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_squid_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_directory_permissions_sshd_config_d": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_sshd_drop_in_config": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_groups_no_zero_gid_except_root": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_partition_for_tmp": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_unix_enabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_account_unique_id": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_ensure_root_password_configured": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_group_unique_id": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_group_unique_name": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_account_unique_name": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_all_shadowed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_last_change_is_in_past": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_gid_passwd_group_same": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_no_forward_files": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_no_netrc_files": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_no_rhost_files": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_root_gid_zero": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_root_path_no_dot": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_umask_root": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_grub2_password": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_ensure_journald_and_rsyslog_not_active_together": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_no_files_or_dirs_ungroupowned": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_no_files_or_dirs_unowned_by_user": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_limit_user_access": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_has_nonlocal_mta": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_aide_check_audit_tools": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sudo_custom_logfile": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_configure_custom_crypto_policy_cis": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_sudo_installed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_dconf_db_up_to_date": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_dconf_gnome_disable_user_list": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_dconf_gnome_disable_automount": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_dconf_gnome_disable_autorun": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_dconf_gnome_screensaver_idle_delay": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_dconf_gnome_screensaver_lock_delay": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_dconf_gnome_screensaver_user_locks": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_dconf_gnome_session_idle_user_locks": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sudo_remove_no_authenticate": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_logindefs": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_ensure_gpgcheck_globally_activated": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_etc_issue": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_etc_issue_net": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_banner_etc_issue_cis": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_banner_etc_issue_net_cis": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_banner_etc_motd_cis": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_pwhistory_remember_password_auth": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_etc_motd": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_etc_issue": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_etc_issue_net": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_etc_motd": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_etc_issue": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_etc_issue_net": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_etc_motd": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_dconf_gnome_banner_enabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_dconf_gnome_login_banner_text": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_modules_in_authselect_profile": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_account_password_pam_faillock_password_auth": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_account_password_pam_faillock_system_auth": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_pwhistory_enforce_for_root": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_deny": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_unlock_time_with_zero": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_dictcheck": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_difok": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_minlen": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_enforce_root": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_maxrepeat": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_maxsequence": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_minclass": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_pwquality_password_auth": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_pwquality_system_auth": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_maximum_age_login_defs": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_passwordauth": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_systemauth": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_set_max_life_existing": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_no_password_auth_for_systemaccounts": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_set_warn_age_existing": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_set_post_pw_existing": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_unix_no_remember": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_no_empty_passwords_etc_shadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_no_shelllogin_for_systemaccounts": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_use_pam_wheel_group_for_su": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_user_dot_user_ownership": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_user_interactive_home_directory_exists": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_ownership_home_directories": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permission_user_init_files": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_umask_etc_bashrc": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_umask_etc_login_defs": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_umask_etc_profile": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_boot_grub2": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_boot_grub2": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_rsyslog_files_groupownership": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_rsyslog_files_permissions": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_systemd-journal-remote_installed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_service_systemd-journal-upload_enabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_service_systemd-journald_enabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_journald_compress": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_journald_disable_forward_to_syslog": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_firewalld_loopback_traffic_trusted": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_accept_ra": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_accept_redirects": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_accept_source_route": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_forwarding": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_accept_ra": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_accept_redirects": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_accept_source_route": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_forwarding": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_secure_redirects": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_accept_source_route": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_icmp_ignore_bogus_error_responses": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_forwarding": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_log_martians": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_rp_filter": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_accept_redirects": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_accept_source_route": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_forwarding": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_log_martians": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_rp_filter": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_secure_redirects": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_icmp_echo_ignore_broadcasts": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_tcp_syncookies": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_send_redirects": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_send_redirects": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_atm_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_can_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_dccp_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_firewire-core_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_rds_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_sctp_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_tipc_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_etc_security_opasswd_old": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_service_bluetooth_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_dir_perms_world_writable_sticky_bits": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_backup_etc_group": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_backup_etc_passwd": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_backup_etc_shadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_etc_group": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_etc_gshadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_etc_passwd": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_etc_security_opasswd": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_etc_shadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_etc_shells": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_backup_etc_group": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_backup_etc_passwd": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_backup_etc_shadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_etc_group": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_etc_gshadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_etc_passwd": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_etc_security_opasswd": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_etc_shells": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_backup_etc_group": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_backup_etc_gshadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_backup_etc_shadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_etc_group": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_etc_gshadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_usb-storage_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_cramfs_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_freevxfs_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_hfs_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_hfsplus_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_kernel_module_jffs2_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_dev_shm_nodev": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_dev_shm_noexec": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_home_nodev": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_tmp_nodev": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_tmp_noexec": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_tmp_nosuid": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_var_log_audit_nodev": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_var_log_audit_noexec": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_var_log_audit_nosuid": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_var_log_nodev": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_var_log_nosuid": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_var_nodev": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_var_nosuid": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_var_tmp_nodev": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_var_tmp_noexec": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_var_tmp_nosuid": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_kernel_dmesg_restrict": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_kernel_yama_ptrace_scope": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_coredump_disable_backtraces": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_kernel_randomize_va_space": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_coredump_disable_storage": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_disable_users_coredumps": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_kernel_kptr_restrict": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_libselinux_installed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_grub2_enable_selinux": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_cron_installed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_service_crond_enabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_cron_d": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_cron_deny_not_exist": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_cron_daily": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_cron_hourly": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_cron_monthly": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_cron_yearly": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_cron_weekly": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_cron_yearly": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_crontab": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_cron_d": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_at_deny_not_exist": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_cron_daily": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_cron_hourly": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_cron_monthly": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_cron_weekly": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_crontab": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_service_dnsmasq_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_cron_d": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_cron_daily": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_cron_hourly": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_cron_allow_exists": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_cron_monthly": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_cron_weekly": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_cron_yearly": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_crontab": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_at_allow_exists": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_at_allow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_cron_allow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_at_allow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_cron_allow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_at_allow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_cron_allow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_ftp_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_vsftpd_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_httpd_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_nginx_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_cyrus-imapd_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_dovecot_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_postfix_network_listening_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_service_rpcbind_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_service_nfs_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_telnet_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_tftp_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_service_cups_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_samba_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_net-snmp_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_directory_groupowner_sshd_config_d": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupownership_sshd_private_key": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_directory_owner_sshd_config_d": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_sshd_config": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_sshd_drop_in_config": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_sshd_config": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_sshd_drop_in_config": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_ownership_sshd_private_key": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_ownership_sshd_pub_key": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_sshd_config": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_disable_host_auth": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_sshd_pub_key": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_set_keepalive": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_set_idle_timeout": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_disable_empty_passwords": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_disable_rhosts": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_disable_root_login": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_do_not_permit_user_env": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_enable_pam": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_enable_warning_banner_net": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_set_login_grace_time": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_set_loglevel_verbose": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_set_max_auth_tries": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_set_max_sessions": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sshd_set_maxstartups": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_pwhistory_use_authtok": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_mount_option_home_nosuid": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_kea_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sudo_add_use_pty": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_pam_pwquality_installed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_account_disable_post_pw_expiration": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_warn_age_login_defs": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_no_empty_passwords": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_no_uid_except_zero": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_ensure_pam_wheel_group_empty": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_user_dot_group_ownership": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_home_directories": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_root_path_dirs_no_write": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_rsyslog_files_ownership": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_journald_storage": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_socket_systemd-journal-remote_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_firewalld-backend": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_firewalld_installed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_service_firewalld_enabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_wireless_disable_interfaces": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_sysctl_fs_protected_hardlinks": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_etc_security_opasswd_old": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_setroubleshoot_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_selinux_not_disabled": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_selinux_policytype": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupownership_sshd_pub_key": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_permissions_sshd_private_key": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_no_invalid_shell_accounts_unlocked": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_partition_for_dev_shm": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_owner_etc_shadow": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_accounts_password_pam_unix_authtok": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_package_rsync_removed": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_file_groupowner_boot_grub2": { | |
| "evaluate": false | |
| }, | |
| "xccdf_org.ssgproject.content_rule_aide_build_database": { | |
| "evaluate": false | |
| } | |
| }, | |
| "variables": { | |
| "xccdf_org.ssgproject.content_value_cis_banner_text": { | |
| "value": "Authorized users only. All activity may be monitored and reported." | |
| }, | |
| "xccdf_org.ssgproject.content_value_login_banner_text": { | |
| "value": "^(Authorized[\\s\\n]+users[\\s\\n]+only\\.[\\s\\n]+All[\\s\\n]+activity[\\s\\n]+may[\\s\\n]+be[\\s\\n]+monitored[\\s\\n]+and[\\s\\n]+reported\\.|^(?!.*(\\\\|fedora|rhel|sle|ubuntu)).*)$" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_password_hashing_algorithm": { | |
| "value": "YESCRYPT|SHA512" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_password_hashing_algorithm_pam": { | |
| "value": "yescrypt|sha512" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_accounts_passwords_pam_faillock_deny": { | |
| "value": "5" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_accounts_passwords_pam_faillock_unlock_time": { | |
| "value": "900" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_password_pam_remember": { | |
| "value": "24" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_password_pam_remember_control_flag": { | |
| "value": "requisite,required" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_password_pam_dictcheck": { | |
| "value": "1" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_password_pam_difok": { | |
| "value": "2" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_password_pam_maxrepeat": { | |
| "value": "3" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_password_pam_maxsequence": { | |
| "value": "3" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_password_pam_minclass": { | |
| "value": "4" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_password_pam_minlen": { | |
| "value": "14" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_account_disable_post_pw_expiration": { | |
| "value": "45" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_accounts_maximum_age_login_defs": { | |
| "value": "365" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_accounts_password_warn_age_login_defs": { | |
| "value": "7" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_pam_wheel_group_for_su": { | |
| "value": "sugroup" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_accounts_tmout": { | |
| "value": "900" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_user_initialization_files_regex": { | |
| "value": "^\\.[\\w\\- ]+$" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_accounts_user_umask": { | |
| "value": "027" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv6_conf_all_accept_ra_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv6_conf_all_accept_redirects_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv6_conf_all_accept_source_route_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv6_conf_all_forwarding_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv6_conf_default_accept_ra_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv6_conf_default_accept_redirects_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv6_conf_default_accept_source_route_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv6_conf_default_forwarding_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_conf_all_accept_redirects_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_conf_all_accept_source_route_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_conf_all_log_martians_value": { | |
| "value": "1" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_conf_all_rp_filter_value": { | |
| "value": "1" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_conf_all_secure_redirects_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_conf_default_accept_redirects_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_conf_default_accept_source_route_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_conf_default_forwarding_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_conf_default_log_martians_value": { | |
| "value": "1" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_conf_default_rp_filter_value": { | |
| "value": "1" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_conf_default_secure_redirects_value": { | |
| "value": "0" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_icmp_echo_ignore_broadcasts_value": { | |
| "value": "1" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_icmp_ignore_bogus_error_responses_value": { | |
| "value": "1" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sysctl_net_ipv4_tcp_syncookies_value": { | |
| "value": "1" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_selinux_policy_name": { | |
| "value": "targeted" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_postfix_inet_interfaces": { | |
| "value": "loopback-only" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_multiple_time_servers": { | |
| "value": "0.rhel.pool.ntp.org,1.rhel.pool.ntp.org,2.rhel.pool.ntp.org,3.rhel.pool.ntp.org" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sshd_idle_timeout_value": { | |
| "value": "300" | |
| }, | |
| "xccdf_org.ssgproject.content_value_sshd_max_auth_tries_value": { | |
| "value": "4" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_sshd_max_sessions": { | |
| "value": "10" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_sshd_set_keepalive": { | |
| "value": "1" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_sshd_set_login_grace_time": { | |
| "value": "60" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_sshd_set_maxstartups": { | |
| "value": "10:30:60" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_authselect_profile": { | |
| "value": "local" | |
| }, | |
| "xccdf_org.ssgproject.content_value_inactivity_timeout_value": { | |
| "value": "900" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_screensaver_lock_delay": { | |
| "value": "5" | |
| }, | |
| "xccdf_org.ssgproject.content_value_var_sudo_timestamp_timeout": { | |
| "value": "15" | |
| } | |
| } | |
| } | |
| ] | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment