SRG-OS-000392-GPOS-00172 Controls

STIG ID Version Title Product
OL07-00-030560 V2R10 The Oracle Linux operating system must audit all uses of the semanage command.
OL07-00-030570 V2R10 The Oracle Linux operating system must audit all uses of the setsebool command.
OL07-00-030580 V2R10 The Oracle Linux operating system must audit all uses of the chcon command.
OL07-00-030590 V2R10 The Oracle Linux operating system must audit all uses of the setfiles command.
OL07-00-030610 V2R10 The Oracle Linux operating system must generate audit records for all unsuccessful account access events.
OL07-00-030620 V2R10 The Oracle Linux operating system must generate audit records for all successful account access events.
RHEL-09-654250 V1R2 RHEL 9 must generate audit records for all account creations, modifications, disabling, and termination events that affect /var/log/faillock.
RHEL-09-654260 V1R2 RHEL 9 must generate audit records for all account creations, modifications, disabling, and termination events that affect /var/log/tallylog.
RHEL-07-030560 V3R9 The Red Hat Enterprise Linux operating system must audit all uses of the semanage command.
RHEL-07-030570 V3R9 The Red Hat Enterprise Linux operating system must audit all uses of the setsebool command.
RHEL-07-030580 V3R9 The Red Hat Enterprise Linux operating system must audit all uses of the chcon command.
RHEL-07-030590 V3R9 The Red Hat Enterprise Linux operating system must audit all uses of the setfiles command.
RHEL-07-030610 V3R9 The Red Hat Enterprise Linux operating system must generate audit records for all unsuccessful account access events.
RHEL-07-030620 V3R9 The Red Hat Enterprise Linux operating system must generate audit records for all successful account access events.
UBTU-20-010244 V1R5 The Ubuntu operating system must generate audit records for privileged activities, nonlocal maintenance, diagnostic sessions and other system-level access.
UBTU-22-654235 V1R1 Ubuntu 22.04 LTS must generate audit records for privileged activities, nonlocal maintenance, diagnostic sessions and other system-level access.
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.