API tools faq
paste
Advertisement
PalmaSolutions

PCI-DSS Compliance=TODO

PalmaSolutions
Nov 10th, 2018
332
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 19.79 KB | None | 0 0
raw download clone embed print report
  1. 2.1_tmp_partition [ KO ] /tmp is not a partition
  2. 2.1_tmp_partition [ KO ] Check Failed
  3. 2.2_tmp_nodev [ KO ] /tmp is not a partition
  4. 2.2_tmp_nodev [ KO ] Check Failed
  5. 2.3_tmp_nosuid [ KO ] /tmp is not a partition
  6. 2.3_tmp_nosuid [ KO ] Check Failed
  7. 2.4_tmp_noexec [ KO ] /tmp is not a partition
  8. 2.4_tmp_noexec [ KO ] Check Failed
  9. 2.5_var_partition [ KO ] /var is not a partition
  10. 2.5_var_partition [ KO ] Check Failed
  11. 2.6.1_var_tmp_partition [ KO ] /var/tmp is not a partition
  12. 2.6.1_var_tmp_partition [ KO ] Check Failed
  13. 2.6.2_var_tmp_nodev [ KO ] /var/tmp is not a partition
  14. 2.6.2_var_tmp_nodev [ KO ] Check Failed
  15. 2.6.3_var_tmp_nosuid [ KO ] /var/tmp is not a partition
  16. 2.6.3_var_tmp_nosuid [ KO ] Check Failed
  17. 2.6.4_var_tmp_noexec [ KO ] /var/tmp is not a partition
  18. 2.6.4_var_tmp_noexec [ KO ] Check Failed
  19. 2.7_var_log_partition [ KO ] /var/log is not a partition
  20. 2.7_var_log_partition [ KO ] Check Failed
  21. 2.8_var_log_audit_partiti [ KO ] /var/log/audit is not a partition
  22. 2.8_var_log_audit_partiti [ KO ] Check Failed
  23. 2.9_home_partition [ KO ] /home is not a partition
  24. 2.9_home_partition [ KO ] Check Failed
  25. 2.10_home_nodev [ KO ] /home is not a partition
  26. 2.10_home_nodev [ KO ] Check Failed
  27. 2.11_removable_device_nod [ KO ] /media\S* has no option nodev in fstab!
  28. 2.11_removable_device_nod [ KO ] Check Failed
  29. 2.12_removable_device_noe [ KO ] /media\S* has no option noexec in fstab!
  30. 2.12_removable_device_noe [ KO ] Check Failed
  31. 2.13_removable_device_nos [ KO ] /media\S* has no option nosuid in fstab!
  32. 2.13_removable_device_nos [ KO ] Check Failed
  33. 2.14_run_shm_nodev [ KO ] /run/shm is not a partition
  34. 2.14_run_shm_nodev [ KO ] Check Failed
  35. 2.15_run_shm_nosuid [ KO ] /run/shm is not a partition
  36. 2.15_run_shm_nosuid [ KO ] Check Failed
  37. 2.16_run_shm_noexec [ KO ] /run/shm is not a partition
  38. 2.16_run_shm_noexec [ KO ] Check Failed
  39. 2.19_disable_freevxfs [ KO ] CONFIG_VXFS_FS is enabled!
  40. 2.19_disable_freevxfs [ KO ] Check Failed
  41. 2.20_disable_jffs2 [ KO ] CONFIG_JFFS2_FS is enabled!
  42. 2.20_disable_jffs2 [ KO ] Check Failed
  43. 2.21_disable_hfs [ KO ] CONFIG_HFS_FS is enabled!
  44. 2.21_disable_hfs [ KO ] Check Failed
  45. 2.22_disable_hfsplus [ KO ] CONFIG_HFSPLUS_FS is enabled!
  46. 2.22_disable_hfsplus [ KO ] Check Failed
  47. 2.23_disable_squashfs [ KO ] CONFIG_SQUASHFS is enabled!
  48. 2.23_disable_squashfs [ KO ] Check Failed
  49. 2.24_disable_udf [ KO ] CONFIG_UDF_FS is enabled!
  50. 2.24_disable_udf [ KO ] Check Failed
  51. 3.2_bootloader_permission [ KO ] /boot/grub/grub.cfg permissions were not set to 400
  52. 3.2_bootloader_permission [ KO ] Check Failed
  53. 3.3_bootloader_password [ KO ] ^set superusers not present in /boot/grub/grub.cfg
  54. 3.3_bootloader_password [ KO ] ^password_pbkdf2 not present in /boot/grub/grub.cfg
  55. 3.3_bootloader_password [ KO ] Check Failed
  56. 4.1_restrict_core_dumps [ KO ] ^\*[[:space:]]*hard[[:space:]]*core[[:space:]]*0$ not present in /etc/security/limits.conf
  57. 4.1_restrict_core_dumps [ KO ] Check Failed
  58. 4.5_enable_apparmor [ KO ] apparmor is absent!
  59. 4.5_enable_apparmor [ KO ] Check Failed
  60. 6.2_disable_avahi_server [ KO ] libavahi-common-data is installed!
  61. 6.2_disable_avahi_server [ KO ] libavahi-common3 is installed!
  62. 6.2_disable_avahi_server [ KO ] Check Failed
  63. 6.3_disable_print_server [ KO ] libcups2 is installed!
  64. 6.3_disable_print_server [ KO ] libcupsimage2 is installed!
  65. 6.3_disable_print_server [ KO ] libcupsfilters1 is installed!
  66. 6.3_disable_print_server [ KO ] Check Failed
  67. 6.5_configure_ntp [ KO ] ntp is not installed!
  68. 6.5_configure_ntp [ KO ] Check Failed
  69. 7.1.2_disable_send_packet [ KO ] net.ipv4.conf.all.send_redirects was not set to 0
  70. 7.1.2_disable_send_packet [ KO ] net.ipv4.conf.default.send_redirects was not set to 0
  71. 7.1.2_disable_send_packet [ KO ] Check Failed
  72. 7.2.3_disable_secure_icmp [ KO ] net.ipv4.conf.all.secure_redirects was not set to 0
  73. 7.2.3_disable_secure_icmp [ KO ] net.ipv4.conf.default.secure_redirects was not set to 0
  74. 7.2.3_disable_secure_icmp [ KO ] Check Failed
  75. 7.2.4_log_martian_packets [ KO ] net.ipv4.conf.all.log_martians was not set to 1
  76. 7.2.4_log_martian_packets [ KO ] net.ipv4.conf.default.log_martians was not set to 1
  77. 7.2.4_log_martian_packets [ KO ] Check Failed
  78. 7.3.1_disable_ipv6_router [ KO ] net.ipv6.conf.all.accept_ra was not set to 0
  79. 7.3.1_disable_ipv6_router [ KO ] net.ipv6.conf.default.accept_ra was not set to 0
  80. 7.3.1_disable_ipv6_router [ KO ] Check Failed
  81. 7.3.3_disable_ipv6 [ KO ] net.ipv6.conf.all.disable_ipv6 was not set to 1
  82. 7.3.3_disable_ipv6 [ KO ] net.ipv6.conf.default.disable_ipv6 was not set to 1
  83. 7.3.3_disable_ipv6 [ KO ] net.ipv6.conf.lo.disable_ipv6 was not set to 1
  84. 7.3.3_disable_ipv6 [ KO ] Check Failed
  85. 7.4.4_hosts_deny [ KO ] ALL: ALL is not present in /etc/hosts.deny, we have to deny everything
  86. 7.4.4_hosts_deny [ KO ] Check Failed
  87. 8.0_enable_auditd_kernel [ KO ] CONFIG_AUDIT is disabled, auditd will not work
  88. 8.0_enable_auditd_kernel [ KO ] Check Failed
  89. 8.1.1.1_audit_log_storage [ KO ] /etc/audit/auditd.conf does not exist
  90. 8.1.1.1_audit_log_storage [ KO ] Check Failed
  91. 8.1.1.2_halt_when_audit_l [ KO ] /etc/audit/auditd.conf does not exist
  92. 8.1.1.2_halt_when_audit_l [ KO ] Check Failed
  93. 8.1.1.3_keep_all_audit_lo [ KO ] /etc/audit/auditd.conf does not exist
  94. 8.1.1.3_keep_all_audit_lo [ KO ] Check Failed
  95. 8.1.2_enable_auditd [ KO ] auditd is not installed!
  96. 8.1.2_enable_auditd [ KO ] Check Failed
  97. 8.1.3_audit_bootloader [ KO ] ^GRUB_CMDLINE_LINUX="audit=1" is not present in /etc/default/grub
  98. 8.1.3_audit_bootloader [ KO ] Check Failed
  99. 8.1.4_record_date_time_ed [ KO ] -a always,exit -F arch=b64 -S adjtimex -S settimeofday -k time-change is not in file /etc/audit/audit.rules
  100. 8.1.4_record_date_time_ed [ KO ] -a always,exit -F arch=b32 -S adjtimex -S settimeofday -S stime -k time-change is not in file /etc/audit/audit.rules
  101. 8.1.4_record_date_time_ed [ KO ] -a always,exit -F arch=b64 -S clock_settime -k time-change is not in file /etc/audit/audit.rules
  102. 8.1.4_record_date_time_ed [ KO ] -a always,exit -F arch=b32 -S clock_settime -k time-change is not in file /etc/audit/audit.rules
  103. 8.1.4_record_date_time_ed [ KO ] -w /etc/localtime -p wa -k time-change is not in file /etc/audit/audit.rules
  104. 8.1.4_record_date_time_ed [ KO ] Check Failed
  105. 8.1.5_record_user_group_e [ KO ] -w /etc/group -p wa -k identity is not in file /etc/audit/audit.rules
  106. 8.1.5_record_user_group_e [ KO ] -w /etc/passwd -p wa -k identity is not in file /etc/audit/audit.rules
  107. 8.1.5_record_user_group_e [ KO ] -w /etc/gshadow -p wa -k identity is not in file /etc/audit/audit.rules
  108. 8.1.5_record_user_group_e [ KO ] -w /etc/shadow -p wa -k identity is not in file /etc/audit/audit.rules
  109. 8.1.5_record_user_group_e [ KO ] -w /etc/security/opasswd -p wa -k identity is not in file /etc/audit/audit.rules
  110. 8.1.5_record_user_group_e [ KO ] Check Failed
  111. 8.1.6_record_network_edit [ KO ] -a exit,always -F arch=b64 -S sethostname -S setdomainname -k system-locale is not in file /etc/audit/audit.rules
  112. 8.1.6_record_network_edit [ KO ] -a exit,always -F arch=b32 -S sethostname -S setdomainname -k system-locale is not in file /etc/audit/audit.rules
  113. 8.1.6_record_network_edit [ KO ] -w /etc/issue -p wa -k system-locale is not in file /etc/audit/audit.rules
  114. 8.1.6_record_network_edit [ KO ] -w /etc/issue.net -p wa -k system-locale is not in file /etc/audit/audit.rules
  115. 8.1.6_record_network_edit [ KO ] -w /etc/hosts -p wa -k system-locale is not in file /etc/audit/audit.rules
  116. 8.1.6_record_network_edit [ KO ] -w /etc/network -p wa -k system-locale is not in file /etc/audit/audit.rules
  117. 8.1.6_record_network_edit [ KO ] Check Failed
  118. 8.1.7_record_mac_edit [ KO ] -w /etc/selinux/ -p wa -k MAC-policy is not in file /etc/audit/audit.rules
  119. 8.1.7_record_mac_edit [ KO ] Check Failed
  120. 8.1.8_record_login_logout [ KO ] -w /var/log/faillog -p wa -k logins is not in file /etc/audit/audit.rules
  121. 8.1.8_record_login_logout [ KO ] -w /var/log/lastlog -p wa -k logins is not in file /etc/audit/audit.rules
  122. 8.1.8_record_login_logout [ KO ] -w /var/log/tallylog -p wa -k logins is not in file /etc/audit/audit.rules
  123. 8.1.8_record_login_logout [ KO ] Check Failed
  124. 8.1.9_record_session_init [ KO ] -w /var/run/utmp -p wa -k session is not in file /etc/audit/audit.rules
  125. 8.1.9_record_session_init [ KO ] -w /var/log/wtmp -p wa -k session is not in file /etc/audit/audit.rules
  126. 8.1.9_record_session_init [ KO ] -w /var/log/btmp -p wa -k session is not in file /etc/audit/audit.rules
  127. 8.1.9_record_session_init [ KO ] Check Failed
  128. 8.1.10_record_dac_edit [ KO ] -a always,exit -F arch=b64 -S chmod -S fchmod -S fchmodat -F auid>=1000 -F auid!=4294967295 -k perm_mod is not in file /etc/audit/audit.rules
  129. 8.1.10_record_dac_edit [ KO ] -a always,exit -F arch=b32 -S chmod -S fchmod -S fchmodat -F auid>=1000 -F auid!=4294967295 -k perm_mod is not in file /etc/audit/audit.rules
  130. 8.1.10_record_dac_edit [ KO ] -a always,exit -F arch=b64 -S chown -S fchown -S fchownat -S lchown -F auid>=1000 -F auid!=4294967295 -k perm_mod is not in file /etc/audit/audit.rules
  131. 8.1.10_record_dac_edit [ KO ] -a always,exit -F arch=b32 -S chown -S fchown -S fchownat -S lchown -F auid>=1000 -F auid!=4294967295 -k perm_mod is not in file /etc/audit/audit.rules
  132. 8.1.10_record_dac_edit [ KO ] -a always,exit -F arch=b64 -S setxattr -S lsetxattr -S fsetxattr -S removexattr -S lremovexattr -S fremovexattr -F auid>=1000 -F auid!=4294967295 -k perm_mod is not in file /etc/audit/audit.rules
  133. 8.1.10_record_dac_edit [ KO ] -a always,exit -F arch=b32 -S setxattr -S lsetxattr -S fsetxattr -S removexattr -S lremovexattr -S fremovexattr -F auid>=1000 -F auid!=4294967295 -k perm_mod is not in file /etc/audit/audit.rules
  134. 8.1.10_record_dac_edit [ KO ] Check Failed
  135. 8.1.11_record_failed_acce [ KO ] -a always,exit -F arch=b64 -S creat -S open -S openat -S truncate -S ftruncate -F exit=-EACCES -F auid>=1000 -F auid!=4294967295 -k access is not in file /etc/audit/audit.rules
  136. 8.1.11_record_failed_acce [ KO ] -a always,exit -F arch=b32 -S creat -S open -S openat -S truncate -S ftruncate -F exit=-EACCES -F auid>=1000 -F auid!=4294967295 -k access is not in file /etc/audit/audit.rules
  137. 8.1.11_record_failed_acce [ KO ] -a always,exit -F arch=b64 -S creat -S open -S openat -S truncate -S ftruncate -F exit=-EPERM -F auid>=1000 -F auid!=4294967295 -k access is not in file /etc/audit/audit.rules
  138. 8.1.11_record_failed_acce [ KO ] -a always,exit -F arch=b32 -S creat -S open -S openat -S truncate -S ftruncate -F exit=-EPERM -F auid>=1000 -F auid!=4294967295 -k access is not in file /etc/audit/audit.rules
  139. 8.1.11_record_failed_acce [ KO ] Check Failed
  140. /home/malin/debian-cis/bin/hardening/8.1.12_record_privileged_commands.sh: line 20: sudo: command not found
  141. 8.1.13_record_successful_ [ KO ] -a always,exit -F arch=b64 -S mount -F auid>=1000 -F auid!=4294967295 -k mounts is not in file /etc/audit/audit.rules
  142. 8.1.13_record_successful_ [ KO ] -a always,exit -F arch=b32 -S mount -F auid>=1000 -F auid!=4294967295 -k mounts is not in file /etc/audit/audit.rules
  143. 8.1.13_record_successful_ [ KO ] Check Failed
  144. 8.1.14_record_file_deleti [ KO ] -a always,exit -F arch=b64 -S unlink -S unlinkat -S rename -S renameat -F auid>=1000 -F auid!=4294967295 -k delete is not in file /etc/audit/audit.rules
  145. 8.1.14_record_file_deleti [ KO ] -a always,exit -F arch=b32 -S unlink -S unlinkat -S rename -S renameat -F auid>=1000 -F auid!=4294967295 -k delete is not in file /etc/audit/audit.rules
  146. 8.1.14_record_file_deleti [ KO ] Check Failed
  147. 8.1.15_record_sudoers_edi [ KO ] -w /etc/sudoers -p wa -k sudoers is not in file /etc/audit/audit.rules
  148. 8.1.15_record_sudoers_edi [ KO ] -w /etc/sudoers.d/ -p wa -k sudoers is not in file /etc/audit/audit.rules
  149. 8.1.15_record_sudoers_edi [ KO ] Check Failed
  150. 8.1.16_record_sudo_usage [ KO ] -w /var/log/auth.log -p wa -k sudoaction is not in file /etc/audit/audit.rules
  151. 8.1.16_record_sudo_usage [ KO ] Check Failed
  152. 8.1.17_record_kernel_modu [ KO ] -w /sbin/insmod -p x -k modules is not in file /etc/audit/audit.rules
  153. 8.1.17_record_kernel_modu [ KO ] -w /sbin/rmmod -p x -k modules is not in file /etc/audit/audit.rules
  154. 8.1.17_record_kernel_modu [ KO ] -w /sbin/modprobe -p x -k modules is not in file /etc/audit/audit.rules
  155. 8.1.17_record_kernel_modu [ KO ] -a always,exit -F arch=b64 -S init_module -S delete_module -k modules is not in file /etc/audit/audit.rules
  156. 8.1.17_record_kernel_modu [ KO ] Check Failed
  157. 8.1.18_freeze_auditd_conf [ KO ] -e 2 is not in file /etc/audit/audit.rules
  158. 8.1.18_freeze_auditd_conf [ KO ] Check Failed
  159. 8.2.1_install_syslog-ng [ KO ] syslog-ng is not installed!
  160. 8.2.1_install_syslog-ng [ KO ] Check Failed
  161. 8.2.2_enable_syslog-ng [ KO ] syslog-ng is disabled
  162. 8.2.2_enable_syslog-ng [ KO ] Check Failed
  163. grep: /etc/syslog-ng/syslog-ng.conf: No such file or directory
  164. 8.2.5_syslog-ng_remote_ho [ KO ] ^destination.*(tcp|udp)[[:space:]]*\([[:space:]]*\".*\"[[:space:]]*\) is not present in /etc/syslog-ng/syslog-ng.conf /etc/syslog-ng/conf.d/*
  165. 8.2.5_syslog-ng_remote_ho [ KO ] Check Failed
  166. 8.3.1_install_tripwire [ KO ] tripwire is not installed!
  167. 8.3.1_install_tripwire [ KO ] Check Failed
  168. 8.3.2_tripwire_cron [ KO ] tripwire --check is not present in /etc/crontab /etc/cron.d/*
  169. 8.3.2_tripwire_cron [ KO ] Check Failed
  170. 9.1.2_crontab_perm_owners [ KO ] /etc/crontab permissions were not set to 600
  171. 9.1.2_crontab_perm_owners [ KO ] Check Failed
  172. 9.1.3_cron_hourly_perm_ow [ KO ] /etc/cron.hourly permissions were not set to 700
  173. 9.1.3_cron_hourly_perm_ow [ KO ] Check Failed
  174. 9.1.4_cron_daily_perm_own [ KO ] /etc/cron.daily permissions were not set to 700
  175. 9.1.4_cron_daily_perm_own [ KO ] Check Failed
  176. 9.1.5_cron_weekly_perm_ow [ KO ] /etc/cron.weekly permissions were not set to 700
  177. 9.1.5_cron_weekly_perm_ow [ KO ] Check Failed
  178. 9.1.6_cron_monthly_perm_o [ KO ] /etc/cron.monthly permissions were not set to 700
  179. 9.1.6_cron_monthly_perm_o [ KO ] Check Failed
  180. 9.1.7_cron_d_perm_ownersh [ KO ] /etc/cron.d permissions were not set to 700
  181. 9.1.7_cron_d_perm_ownersh [ KO ] Check Failed
  182. 9.1.8_cron_users [ KO ] /etc/cron.allow is absent
  183. 9.1.8_cron_users [ KO ] /etc/at.allow is absent
  184. 9.1.8_cron_users [ KO ] Check Failed
  185. 9.2.1_enable_cracklib [ KO ] libpam-cracklib is not installed!
  186. 9.2.1_enable_cracklib [ KO ] Check Failed
  187. 9.2.2_enable_lockout_fail [ KO ] ^auth[[:space:]]*required[[:space:]]*pam_tally[2]?.so is not present in /etc/pam.d/login
  188. 9.2.2_enable_lockout_fail [ KO ] Check Failed
  189. 9.2.3_limit_password_reus [ KO ] ^password.*remember is not present in /etc/pam.d/common-password
  190. 9.2.3_limit_password_reus [ KO ] Check Failed
  191. 9.3.1_sshd_protocol [ KO ] ^Protocol[[:space:]]*2 is not present in /etc/ssh/sshd_config
  192. 9.3.1_sshd_protocol [ KO ] Check Failed
  193. 9.3.2_sshd_loglevel [ KO ] ^LogLevel[[:space:]]*INFO is not present in /etc/ssh/sshd_config
  194. 9.3.2_sshd_loglevel [ KO ] Check Failed
  195. 9.3.3_sshd_conf_perm_owne [ KO ] /etc/ssh/sshd_config permissions were not set to 600
  196. 9.3.3_sshd_conf_perm_owne [ KO ] Check Failed
  197. 9.3.4_disable_x11_forward [ KO ] ^X11Forwarding[[:space:]]*no is not present in /etc/ssh/sshd_config
  198. 9.3.4_disable_x11_forward [ KO ] Check Failed
  199. 9.3.5_sshd_maxauthtries [ KO ] ^MaxAuthTries[[:space:]]*4 is not present in /etc/ssh/sshd_config
  200. 9.3.5_sshd_maxauthtries [ KO ] Check Failed
  201. 9.3.6_enable_sshd_ignorer [ KO ] ^IgnoreRhosts[[:space:]]*yes is not present in /etc/ssh/sshd_config
  202. 9.3.6_enable_sshd_ignorer [ KO ] Check Failed
  203. 9.3.7_disable_sshd_hostba [ KO ] ^HostbasedAuthentication[[:space:]]*no is not present in /etc/ssh/sshd_config
  204. 9.3.7_disable_sshd_hostba [ KO ] Check Failed
  205. 9.3.8_disable_root_login [ KO ] ^PermitRootLogin[[:space:]]*no is not present in /etc/ssh/sshd_config
  206. 9.3.8_disable_root_login [ KO ] Check Failed
  207. 9.3.9_disable_sshd_permit [ KO ] ^PermitEmptyPasswords[[:space:]]*no is not present in /etc/ssh/sshd_config
  208. 9.3.9_disable_sshd_permit [ KO ] Check Failed
  209. 9.3.10_disable_sshd_seten [ KO ] ^PermitUserEnvironment[[:space:]]*no is not present in /etc/ssh/sshd_config
  210. 9.3.10_disable_sshd_seten [ KO ] Check Failed
  211. 9.3.11_sshd_ciphers [ KO ] ^Ciphers[[:space:]]*chacha20-poly1305@openssh\.com,aes256-gcm@openssh\.com,aes128-gcm@openssh\.com,aes256-ctr,aes192-ctr,aes128-ctr is not present in /etc/ssh/sshd_config
  212. 9.3.11_sshd_ciphers [ KO ] Check Failed
  213. 9.3.12_sshd_idle_timeout [ KO ] ^ClientAliveInterval[[:space:]]*900 is not present in /etc/ssh/sshd_config
  214. 9.3.12_sshd_idle_timeout [ KO ] ^ClientAliveCountMax[[:space:]]*0 is not present in /etc/ssh/sshd_config
  215. 9.3.12_sshd_idle_timeout [ KO ] Check Failed
  216. 9.3.13_sshd_limit_access [ KO ] ^AllowUsers[[:space:]]** is not present in /etc/ssh/sshd_config
  217. 9.3.13_sshd_limit_access [ KO ] ^AllowGroups[[:space:]]** is not present in /etc/ssh/sshd_config
  218. 9.3.13_sshd_limit_access [ KO ] ^DenyUsers[[:space:]]*nobody is not present in /etc/ssh/sshd_config
  219. 9.3.13_sshd_limit_access [ KO ] ^DenyGroups[[:space:]]*nobody is not present in /etc/ssh/sshd_config
  220. 9.3.13_sshd_limit_access [ KO ] Check Failed
  221. 9.3.14_ssh_banner [ KO ] ^Banner[[:space:]]* is not present in /etc/ssh/sshd_config
  222. 9.3.14_ssh_banner [ KO ] Check Failed
  223. 9.5_restrict_su [ KO ] ^auth[[:space:]]*required[[:space:]]*pam_wheel.so is not present in /etc/pam.d/su
  224. 9.5_restrict_su [ KO ] Check Failed
  225. 10.1.1_set_password_exp_d [ KO ] ^PASS_MAX_DAYS[[:space:]]*90 is not present in /etc/login.defs
  226. 10.1.1_set_password_exp_d [ KO ] Check Failed
  227. 10.1.2_set_password_min_d [ KO ] ^PASS_MIN_DAYS[[:space:]]*7 is not present in /etc/login.defs
  228. 10.1.2_set_password_min_d [ KO ] Check Failed
  229. 10.2_disable_system_accou [ KO ] Some admin accounts don't have /bin/false as their login shell
  230. 10.2_disable_system_accou [ KO ] lsadm:x:999:999:lsadm:/:/sbin/nologin
  231. 10.2_disable_system_accou [ KO ] Check Failed
  232. 10.4_default_umask [ KO ] umask 077 is not present in /etc/bash.bashrc /etc/profile.d /etc/profile
  233. 10.4_default_umask [ KO ] Check Failed
  234. 12.7_find_world_writable_ [ KO ] Some world writable files are present
  235. 12.7_find_world_writable_ [ KO ] /home/dev/htdocs/wp-config.php /home/easyCut/htdocs/index-mobile.jpg /home/easyCut/htdocs/index.jpg /home/easyCut/htdocs/wp-config.php
  236. 12.7_find_world_writable_ [ KO ] Check Failed
  237. 12.10_find_suid_files [ KO ] Some suid files are present
  238. 12.10_find_suid_files [ KO ] /usr/lib/dbus-1.0/dbus-daemon-launch-helper /usr/lib/eject/dmcrypt-get-device /usr/sbin/exim4
  239. 12.10_find_suid_files [ KO ] Check Failed
  240. 12.11_find_sgid_files [ KO ] Some sgid files are present
  241. 12.11_find_sgid_files [ KO ] /usr/bin/mlock
  242. 12.11_find_sgid_files [ KO ] Check Failed
  243. 13.6_sanitize_root_path [ KO ] Group Write permission set on directory /usr/local/sbin
  244. 13.6_sanitize_root_path [ KO ] Group Write permission set on directory /usr/local/bin
  245. 13.6_sanitize_root_path [ KO ] Check Failed
  246. 13.7_check_user_dir_perm [ KO ] Other Read permission set on directory /home/malin
  247. 13.7_check_user_dir_perm [ KO ] Other Execute permission set on directory /home/malin
  248. 13.7_check_user_dir_perm [ KO ] Other Read permission set on directory /
  249. 13.7_check_user_dir_perm [ KO ] Other Execute permission set on directory /
  250. 13.7_check_user_dir_perm [ KO ] Check Failed
  251. 13.13_check_user_homedir_ [ KO ] The home directory (/) of user lsadm is owned by root.
  252. 13.13_check_user_homedir_ [ KO ] Check Failed
  253. 99.1_timeout_tty [ KO ] TMOUT= is not present in /etc/bash.bashrc /etc/profile.d /etc/profile
  254. 99.1_timeout_tty [ KO ] Check Failed
  255. 99.2_disable_usb_devices [ KO ] ACTION=="add", SUBSYSTEMS=="usb", TEST=="authorized_default", ATTR{authorized_default}="0" is not present in /etc/udev/rules.d
  256. 99.2_disable_usb_devices [ KO ] Check Failed
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!