diff --git a/.github/workflows/module-test-run.yml b/.github/workflows/module-test-run.yml index f700682d4..406699eed 100644 --- a/.github/workflows/module-test-run.yml +++ b/.github/workflows/module-test-run.yml @@ -49,9 +49,12 @@ jobs: sudo chmod +x ./moduletest result=0 - recipes=$(ls -d ../../src/tests/e2e-test-recipes/*.json) + recipes=$(ls -d ../../src/modules/test/recipes/*.json) for recipe in $recipes; do + if [ ! -f ../../src/tests/e2e-test-recipes/$(basename $recipe) ]; then + continue + fi name=$(basename $recipe | tr '[:upper:]' '[:lower:]' | sed 's/\.[^.]*$//' | sed 's/\(test\|tests\)$//') echo -n "testing $name ... " diff --git a/.github/workflows/package-build.yml b/.github/workflows/package-build.yml index c96f74afc..d162f333d 100644 --- a/.github/workflows/package-build.yml +++ b/.github/workflows/package-build.yml @@ -140,7 +140,7 @@ jobs: working-directory: ${{ env.MOUNT }} cmd: | mkdir -p build/modules/test/recipes - cp -r src/tests/e2e-test-recipes/*.json build/modules/test/recipes/ + cp -r src/modules/test/recipes/*.json build/modules/test/recipes/ cp src/adapters/pnp/daemon/osconfig.json build/modules/test/osconfig.json diff --git a/src/adapters/mc/asb/AzureLinuxBaseline.mof b/src/adapters/mc/asb/AzureLinuxBaseline.mof index 038ccc931..1a76e4337 100644 --- a/src/adapters/mc/asb/AzureLinuxBaseline.mof +++ b/src/adapters/mc/asb/AzureLinuxBaseline.mof @@ -635,6 +635,7 @@ instance of OsConfigResource as $OsConfigResource38ref RuleId = "1d498679-5780-6db3-14cc-6433011e0310"; PayloadKey = "EnsurePermissionsOnEtcHostsAllow"; ComponentName = "SecurityBaseline"; + InitObjectName = "initEnsurePermissionsOnEtcHostsAllow"; ReportedObjectName = "auditEnsurePermissionsOnEtcHostsAllow"; ExpectedObjectValue = "PASS"; DesiredObjectName = "remediateEnsurePermissionsOnEtcHostsAllow"; @@ -651,6 +652,7 @@ instance of OsConfigResource as $OsConfigResource39ref RuleId = "71d554b5-1436-9676-1966-939ded8d0a37"; PayloadKey = "EnsurePermissionsOnEtcHostsDeny"; ComponentName = "SecurityBaseline"; + InitObjectName = "initEnsurePermissionsOnEtcHostsDeny"; ReportedObjectName = "auditEnsurePermissionsOnEtcHostsDeny"; ExpectedObjectValue = "PASS"; DesiredObjectName = "remediateEnsurePermissionsOnEtcHostsDeny"; diff --git a/src/common/asb/Asb.c b/src/common/asb/Asb.c index 2534a1cfb..7d3add4a2 100644 --- a/src/common/asb/Asb.c +++ b/src/common/asb/Asb.c @@ -910,6 +910,11 @@ void AsbInitialize(void* log) FREE_MEMORY(prettyName); FREE_MEMORY(kernelVersion); + if (DetectSelinux(log)) + { + OsConfigLogInfo(log, "AsbInitialize: SELinux present; keeping file contexts"); + } + if (IsCommodore(log)) { OsConfigLogInfo(log, "AsbInitialize: running on product '%s'", PRODUCT_NAME_AZURE_COMMODORE); diff --git a/src/common/commonutils/CommonUtils.h b/src/common/commonutils/CommonUtils.h index 436943b07..7ef47889a 100644 --- a/src/common/commonutils/CommonUtils.h +++ b/src/common/commonutils/CommonUtils.h @@ -171,6 +171,7 @@ int SetPassWarnAge(long days, void* log); bool IsCurrentOs(const char* name, void* log); bool IsRedHatBased(void* log); bool IsCommodore(void* log); +bool DetectSelinux(void* log); void RemovePrefix(char* target, char marker); void RemovePrefixBlanks(char* target); @@ -238,4 +239,4 @@ char* GetGitBranchFromJsonConfig(const char* jsonString, void* log); } #endif -#endif // COMMONUTILS_H \ No newline at end of file +#endif // COMMONUTILS_H diff --git a/src/common/commonutils/DeviceInfoUtils.c b/src/common/commonutils/DeviceInfoUtils.c index db2fdbff6..643563c91 100644 --- a/src/common/commonutils/DeviceInfoUtils.c +++ b/src/common/commonutils/DeviceInfoUtils.c @@ -947,4 +947,22 @@ bool IsCommodore(void* log) FREE_MEMORY(textResult); return status; -} \ No newline at end of file +} + +enum SelinuxState { + SelinuxUnknown = 0, + SelinuxFound, + SelinuxNotFound, +}; +static enum SelinuxState g_selinuxState = SelinuxUnknown; + +bool DetectSelinux(void* log) +{ + if (g_selinuxState != SelinuxUnknown) + { + return g_selinuxState == SelinuxFound; + } + + g_selinuxState = (0 == CheckTextIsFoundInFile("/sys/kernel/security/lsm", "selinux", NULL, log)) ? SelinuxFound : SelinuxNotFound; + return g_selinuxState == SelinuxFound; +} diff --git a/src/common/commonutils/FileUtils.c b/src/common/commonutils/FileUtils.c index e083f29e1..4162bd3e0 100644 --- a/src/common/commonutils/FileUtils.c +++ b/src/common/commonutils/FileUtils.c @@ -872,6 +872,29 @@ int GetDirectoryAccess(const char* name, unsigned int* ownerId, unsigned int* gr return GetAccess(true, name, ownerId, groupId, mode, log); } +static int RestoreSelinuxContext(const char* target, void* log) +{ + char* restoreCommand = NULL; + char* textResult = NULL; + int status = 0; + + if (NULL == (restoreCommand = FormatAllocateString("restorecon -F '%s'", target))) + { + OsConfigLogError(log, "RestoreSelinuxContext: out of memory"); + return ENOMEM; + } + + if (0 != (status = ExecuteCommand(NULL, restoreCommand, false, false, 0, 0, &textResult, NULL, log))) + { + OsConfigLogError(log, "RestoreSelinuxContext: restorecon failed %d: %s", status, textResult); + } + + FREE_MEMORY(textResult); + FREE_MEMORY(restoreCommand); + + return status; +} + int RenameFile(const char* original, const char* target, void* log) { int status = 0; @@ -893,6 +916,11 @@ int RenameFile(const char* original, const char* target, void* log) status = (0 == errno) ? ENOENT : errno; } + if (DetectSelinux(log)) + { + RestoreSelinuxContext(target, log); + } + return status; } @@ -946,6 +974,11 @@ int RenameFileWithOwnerAndAccess(const char* original, const char* target, void* status = (0 == errno) ? ENOENT : errno; } + if (DetectSelinux(log)) + { + RestoreSelinuxContext(target, log); + } + return status; } diff --git a/src/common/commonutils/PackageUtils.c b/src/common/commonutils/PackageUtils.c index b0e665a21..8bc1f36d9 100644 --- a/src/common/commonutils/PackageUtils.c +++ b/src/common/commonutils/PackageUtils.c @@ -17,6 +17,7 @@ static bool g_tdnfIsPresent = false; static bool g_dnfIsPresent = false; static bool g_yumIsPresent = false; static bool g_zypperIsPresent = false; +static bool g_aptGetUpdateExecuted = false; int IsPresent(const char* what, void* log) { @@ -178,6 +179,27 @@ int CheckPackageNotInstalled(const char* packageName, char** reason, void* log) return result; } +void AptGetUpdateOnce(void* log) +{ + const char* command = "apt-get update"; + int status = 0; + if (g_aptGetUpdateExecuted) + { + return; + } + + if (0 == (status = ExecuteCommand(NULL, command, false, false, 0, 0, NULL, NULL, log))) + { + OsConfigLogInfo(log, "AptGetUpdateOnce: apt-get update was successful"); + g_aptGetUpdateExecuted = true; + } + else + { + OsConfigLogError(log, "AptGetUpdateOnce: apt-get update failed with %d", status); + } + +} + int InstallOrUpdatePackage(const char* packageName, void* log) { const char* commandTemplate = "%s install -y %s"; @@ -187,6 +209,7 @@ int InstallOrUpdatePackage(const char* packageName, void* log) if (g_aptGetIsPresent) { + AptGetUpdateOnce(log); status = CheckOrInstallPackage(commandTemplate, g_aptGet, packageName, log); } else if (g_tdnfIsPresent) diff --git a/src/modules/test/CMakeLists.txt b/src/modules/test/CMakeLists.txt index c25ef8101..9ed8b1d4c 100644 --- a/src/modules/test/CMakeLists.txt +++ b/src/modules/test/CMakeLists.txt @@ -23,4 +23,19 @@ target_include_directories(moduletest PRIVATE ${MODULES_INC_DIR} ${CMAKE_CURRENT add_custom_command(TARGET moduletest POST_BUILD COMMAND ${CMAKE_COMMAND} -E create_symlink $ ${CMAKE_BINARY_DIR}/moduletest DEPENDS $ -) \ No newline at end of file +) + + +set(SRC ${moduletest_SOURCE_DIR}/recipes) +set(MOF1 ${OsConfigResourceSsh_SOURCE_DIR}/LinuxSshServerSecurityBaseline.mof) +set(MOF2 ${OsConfigResourceAsb_SOURCE_DIR}/AzureLinuxBaseline.mof) + +add_custom_command( + OUTPUT ${SRC}/SecurityBaselineTests.json + DEPENDS ${SRC}/create-asb-json.sh ${SRC}/mof-to-json.awk ${SRC}/SecurityBaselineTests.json-header ${SRC}/SecurityBaselineTests.json-mid ${SRC}/SecurityBaselineTests.json-footer ${MOF1} ${MOF2} + COMMAND ./create-asb-json.sh ${MOF1} ${MOF2} >${SRC}/SecurityBaselineTests.json + WORKING_DIRECTORY ${SRC} +) +add_custom_target(generate-asb-test-json + DEPENDS ${SRC}/SecurityBaselineTests.json +) diff --git a/src/modules/test/recipes/SecurityBaselineTests.json b/src/modules/test/recipes/SecurityBaselineTests.json index 69d8db0b9..66e38eeed 100644 --- a/src/modules/test/recipes/SecurityBaselineTests.json +++ b/src/modules/test/recipes/SecurityBaselineTests.json @@ -27,6 +27,18 @@ "ObjectName": "remediateEnsurePermissionsOnEtcHostsAllow", "ExpectedResult": 22 }, + { + "ObjectType": "Desired", + "ComponentName": "DoesNotExist", + "ObjectName": "remediateEnsurePermissionsOnEtcCronWeekly", + "ExpectedResult": 22 + }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsurePermissionsOnEtcSshSshdConfig", + "Payload": "600" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", @@ -36,8 +48,8 @@ { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshPortIsConfigured", - "Payload": "22" + "ObjectName": "initEnsureSshBestPracticeProtocol", + "Payload": "2" }, { "ObjectType": "Desired", @@ -45,90 +57,180 @@ "ObjectName": "remediateEnsureSshBestPracticeProtocol", "Payload": "2" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureSshBestPracticeIgnoreRhosts", + "Payload": "yes" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureSshBestPracticeIgnoreRhosts", "Payload": "yes" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureSshLogLevelIsSet", + "Payload": "INFO" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureSshLogLevelIsSet", "Payload": "INFO" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureSshMaxAuthTriesIsSet", + "Payload": "6" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureSshMaxAuthTriesIsSet", "Payload": "6" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureAllowUsersIsConfigured", + "Payload": "*@*" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureAllowUsersIsConfigured", "Payload": "*@*" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureDenyUsersIsConfigured", + "Payload": "root" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureDenyUsersIsConfigured", "Payload": "root" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureAllowGroupsIsConfigured", + "Payload": "*" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureAllowGroupsIsConfigured", "Payload": "*" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureDenyGroupsConfigured", + "Payload": "root" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureDenyGroupsConfigured", "Payload": "root" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureSshHostbasedAuthenticationIsDisabled", + "Payload": "no" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureSshHostbasedAuthenticationIsDisabled", "Payload": "no" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureSshPermitRootLoginIsDisabled", + "Payload": "no" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureSshPermitRootLoginIsDisabled", "Payload": "no" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureSshPermitEmptyPasswordsIsDisabled", + "Payload": "no" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureSshPermitEmptyPasswordsIsDisabled", "Payload": "no" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureSshClientIntervalCountMaxIsConfigured", + "Payload": "0" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureSshClientIntervalCountMaxIsConfigured", "Payload": "0" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureSshClientAliveIntervalIsConfigured", + "Payload": "3600" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureSshClientAliveIntervalIsConfigured", "Payload": "3600" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureSshLoginGraceTimeIsSet", + "Payload": "60" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureSshLoginGraceTimeIsSet", "Payload": "60" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureOnlyApprovedMacAlgorithmsAreUsed", + "Payload": "hmac-sha2-256,hmac-sha2-256-etm@openssh.com,hmac-sha2-512,hmac-sha2-512-etm@openssh.com" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", "ObjectName": "remediateEnsureOnlyApprovedMacAlgorithmsAreUsed", "Payload": "hmac-sha2-256,hmac-sha2-256-etm@openssh.com,hmac-sha2-512,hmac-sha2-512-etm@openssh.com" }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureSshWarningBannerIsEnabled", + "Payload": "#######################################################################\n\nAuthorized access only!\n\nIf you are not authorized to access or use this system, disconnect now!\n\n#######################################################################\n" + }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", @@ -138,2141 +240,2190 @@ { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureUsersCannotSetSshEnvironmentOptions", + "ObjectName": "initEnsureUsersCannotSetSshEnvironmentOptions", "Payload": "no" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAppropriateCiphersForSsh", - "Payload": "aes128-ctr,aes192-ctr,aes256-ctr" + "ObjectName": "remediateEnsureUsersCannotSetSshEnvironmentOptions", + "Payload": "no" }, { - "Action": "UnloadModule" + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "initEnsureAppropriateCiphersForSsh", + "Payload": "aes128-ctr,aes192-ctr,aes256-ctr" }, { - "Action": "LoadModule", - "Module": "securitybaseline.so", - "WaitSeconds": 5 + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "remediateEnsureAppropriateCiphersForSsh", + "Payload": "aes128-ctr,aes192-ctr,aes256-ctr" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcSshSshdConfig", - "Payload": "600" + "ObjectName": "initEnsureSshPortIsConfigured", + "Payload": "22" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshPortIsConfigured", + "ObjectName": "remediateEnsureSshPortIsConfigured", "Payload": "22" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshBestPracticeProtocol", - "Payload": "2" + "ObjectName": "remediateEnsureNodevOptionOnHomePartition" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshBestPracticeIgnoreRhosts", - "Payload": "yes" + "ObjectName": "remediateEnsureNodevOptionOnTmpPartition" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshLogLevelIsSet", - "Payload": "INFO" + "ObjectName": "remediateEnsureNodevOptionOnVarTmpPartition" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshMaxAuthTriesIsSet", - "Payload": "6" + "ObjectName": "remediateEnsureNosuidOptionOnTmpPartition" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureAllowUsersIsConfigured", - "Payload": "*@*" + "ObjectName": "remediateEnsureNosuidOptionOnVarTmpPartition" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureDenyUsersIsConfigured", - "Payload": "root" + "ObjectName": "remediateEnsureNoexecOptionOnVarTmpPartition" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureAllowGroupsIsConfigured", - "Payload": "*" + "ObjectName": "remediateEnsureNoexecOptionOnDevShmPartition" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureDenyGroupsConfigured", - "Payload": "root" + "ObjectName": "remediateEnsureAutomountingDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshHostbasedAuthenticationIsDisabled", - "Payload": "no" + "ObjectName": "remediateEnsureMountingOfUsbStorageDevicesIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshPermitRootLoginIsDisabled", - "Payload": "no" + "ObjectName": "remediateEnsureCoreDumpsAreRestricted" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshPermitEmptyPasswordsIsDisabled", - "Payload": "no" + "ObjectName": "remediateEnsurePrelinkIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshClientIntervalCountMaxIsConfigured", - "Payload": "0" + "ObjectName": "initEnsurePermissionsOnEtcMotd", + "Payload": "644" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshClientAliveIntervalIsConfigured", - "Payload": "3600" + "ObjectName": "remediateEnsurePermissionsOnEtcMotd", + "Payload": "644" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshLoginGraceTimeIsSet", - "Payload": "60" + "ObjectName": "initEnsurePermissionsOnEtcIssue", + "Payload": "644" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureOnlyApprovedMacAlgorithmsAreUsed", - "Payload": "hmac-sha2-256,hmac-sha2-256-etm@openssh.com,hmac-sha2-512,hmac-sha2-512-etm@openssh.com" + "ObjectName": "remediateEnsurePermissionsOnEtcIssue", + "Payload": "644" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshWarningBannerIsEnabled", - "Payload": "#######################################################################\n\nAuthorized access only!\n\nIf you are not authorized to access or use this system, disconnect now!\n\n#######################################################################\n" + "ObjectName": "initEnsurePermissionsOnEtcIssueNet", + "Payload": "644" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureUsersCannotSetSshEnvironmentOptions", - "Payload": "no" + "ObjectName": "remediateEnsurePermissionsOnEtcIssueNet", + "Payload": "644" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureAppropriateCiphersForSsh", - "Payload": "aes128-ctr,aes192-ctr,aes256-ctr" + "ObjectName": "remediateEnsureNodevOptionEnabledForAllRemovableMedia" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcIssue", - "Payload": "644" + "ObjectName": "remediateEnsureNoexecOptionEnabledForAllRemovableMedia" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcIssueNet", - "Payload": "644" + "ObjectName": "remediateEnsureNosuidOptionEnabledForAllRemovableMedia" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcHostsAllow", - "Payload": "644" + "ObjectName": "remediateEnsureTalkClientIsNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcHostsDeny", + "ObjectName": "initEnsurePermissionsOnEtcHostsAllow", "Payload": "644" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcShadow", - "Payload": "400" + "ObjectName": "remediateEnsurePermissionsOnEtcHostsAllow", + "Payload": "644" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcShadowDash", - "Payload": "400" + "ObjectName": "initEnsurePermissionsOnEtcHostsDeny", + "Payload": "644" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcGShadow", - "Payload": "400" + "ObjectName": "remediateEnsurePermissionsOnEtcHostsDeny", + "Payload": "644" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcGShadowDash", - "Payload": "400" + "ObjectName": "initEnsureDefaultDenyFirewallPolicyIsSet", + "Payload": "0" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcPasswd", - "Payload": "644" + "ObjectName": "remediateEnsureDefaultDenyFirewallPolicyIsSet", + "Payload": "0" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcPasswdDash", - "Payload": "644" + "ObjectName": "remediateEnsureNoexecNosuidOptionsEnabledForAllNfsMounts" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcGroup", - "Payload": "644" + "ObjectName": "initEnsurePasswordCreationRequirements", + "Payload": "3,14,4,-1,-1,-1,-1" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcGroupDash", - "Payload": "644" + "ObjectName": "remediateEnsurePasswordCreationRequirements", + "Payload": "3,14,4,-1,-1,-1,-1" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcAnacronTab", - "Payload": "600" + "ObjectName": "remediateEnsureLockoutForFailedPasswordAttempts" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcCronD", - "Payload": "700" + "ObjectName": "remediateEnsureDisabledInstallationOfCramfsFileSystem" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcCronDaily", - "Payload": "700" + "ObjectName": "remediateEnsureDisabledInstallationOfFreevxfsFileSystem" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcCronHourly", - "Payload": "700" + "ObjectName": "remediateEnsureAllUsersHomeDirectoriesExist" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcCronMonthly", - "Payload": "700" + "ObjectName": "remediateEnsureUsersOwnTheirHomeDirectories" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcCronWeekly", - "Payload": "700" + "ObjectName": "initEnsureUsersDotFilesArentGroupOrWorldWritable", + "Payload": "600,644,664,700,744" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcMotd", - "Payload": "644" + "ObjectName": "remediateEnsureUsersDotFilesArentGroupOrWorldWritable", + "Payload": "600,644,664,700,744" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureRestrictedUserHomeDirectories", - "Payload": "700,750" + "ObjectName": "remediateEnsureNoUsersHaveDotForwardFiles" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePasswordHashingAlgorithm", - "Payload": "6" + "ObjectName": "remediateEnsureNoUsersHaveDotNetrcFiles" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureMinDaysBetweenPasswordChanges", - "Payload": "7" + "ObjectName": "remediateEnsureNoUsersHaveDotRhostsFiles" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureInactivePasswordLockPeriod", - "Payload": "30" + "ObjectName": "remediateEnsureAllEtcPasswdGroupsExistInEtcGroup" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureMaxDaysBetweenPasswordChanges", - "Payload": "365" + "ObjectName": "remediateEnsureNoDuplicateUidsExist" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePasswordExpiration", - "Payload": "365" + "ObjectName": "remediateEnsureNoDuplicateGidsExist" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePasswordExpirationWarning", - "Payload": "7" + "ObjectName": "remediateEnsureNoDuplicateUserNamesExist" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureDefaultUmaskForAllUsers", - "Payload": "077" + "ObjectName": "remediateEnsureNoDuplicateGroupsExist" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnBootloaderConfig", - "Payload": "400" + "ObjectName": "remediateEnsureShadowGroupIsEmpty" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePasswordReuseIsLimited", - "Payload": "5" + "ObjectName": "remediateEnsureDisabledInstallationOfHfsFileSystem" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePasswordCreationRequirements", - "Payload": "3,14,4,-1,-1,-1,-1" + "ObjectName": "remediateEnsureDisabledInstallationOfHfsplusFileSystem" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureFilePermissionsForAllRsyslogLogFiles", - "Payload": "600,640" + "ObjectName": "remediateEnsureDisabledInstallationOfJffs2FileSystem" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureUsersDotFilesArentGroupOrWorldWritable", - "Payload": "600,644,664,700,744" + "ObjectName": "remediateEnsureKernelCompiledFromApprovedSources" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureUnnecessaryAccountsAreRemoved", - "Payload": "games,osconfig" + "ObjectName": "initEnsurePermissionsOnEtcShadow", + "Payload": "400" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcSshSshdConfig" + "ObjectName": "remediateEnsurePermissionsOnEtcShadow", + "Payload": "400" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshPortIsConfigured" + "ObjectName": "initEnsurePermissionsOnEtcShadowDash", + "Payload": "400" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshBestPracticeProtocol" + "ObjectName": "remediateEnsurePermissionsOnEtcShadowDash", + "Payload": "400" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshBestPracticeIgnoreRhosts" + "ObjectName": "initEnsurePermissionsOnEtcGShadow", + "Payload": "400" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshLogLevelIsSet" + "ObjectName": "remediateEnsurePermissionsOnEtcGShadow", + "Payload": "400" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshMaxAuthTriesIsSet" + "ObjectName": "initEnsurePermissionsOnEtcGShadowDash", + "Payload": "400" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllowUsersIsConfigured" + "ObjectName": "remediateEnsurePermissionsOnEtcGShadowDash", + "Payload": "400" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDenyUsersIsConfigured" + "ObjectName": "initEnsurePermissionsOnEtcPasswd", + "Payload": "644" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllowGroupsIsConfigured" + "ObjectName": "remediateEnsurePermissionsOnEtcPasswd", + "Payload": "644" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDenyGroupsConfigured" + "ObjectName": "initEnsurePermissionsOnEtcGroup", + "Payload": "644" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshHostbasedAuthenticationIsDisabled" + "ObjectName": "remediateEnsurePermissionsOnEtcGroup", + "Payload": "644" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshPermitRootLoginIsDisabled" + "ObjectName": "initEnsurePermissionsOnEtcPasswdDash", + "Payload": "644" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshPermitEmptyPasswordsIsDisabled" + "ObjectName": "remediateEnsurePermissionsOnEtcPasswdDash", + "Payload": "644" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshClientIntervalCountMaxIsConfigured" + "ObjectName": "initEnsurePermissionsOnEtcGroupDash", + "Payload": "644" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshLoginGraceTimeIsSet" + "ObjectName": "remediateEnsurePermissionsOnEtcGroupDash", + "Payload": "644" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureOnlyApprovedMacAlgorithmsAreUsed" + "ObjectName": "remediateEnsureSuRestrictedToRootGroup" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshWarningBannerIsEnabled" + "ObjectName": "remediateEnsureRootGroupExists" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureUsersCannotSetSshEnvironmentOptions" + "ObjectName": "remediateEnsureAllAccountsHavePasswords" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAppropriateCiphersForSsh" + "ObjectName": "remediateEnsureNonRootAccountsHaveUniqueUidsGreaterThanZero" }, { "ObjectType": "Desired", - "ComponentName": "DoesNotExist", - "ObjectName": "remediateEnsurePermissionsOnEtcCronWeekly", - "ExpectedResult": 22 + "ComponentName": "SecurityBaseline", + "ObjectName": "remediateEnsureVirtualMemoryRandomizationIsEnabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcIssue", - "Payload": "644" + "ObjectName": "remediateEnsureKernelSupportForCpuNx" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcIssueNet", - "Payload": "644" + "ObjectName": "remediateEnsureDotDoesNotAppearInRootsPath" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcHostsAllow", - "Payload": "644" + "ObjectName": "initEnsureRestrictedUserHomeDirectories", + "Payload": "700,750" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcHostsDeny", - "Payload": "644" + "ObjectName": "remediateEnsureRestrictedUserHomeDirectories", + "Payload": "700,750" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcSshSshdConfig" + "ObjectName": "initEnsureDefaultUmaskForAllUsers", + "Payload": "077" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcShadow", - "Payload": "400" + "ObjectName": "remediateEnsureDefaultUmaskForAllUsers", + "Payload": "077" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcShadowDash", - "Payload": "400" + "ObjectName": "remediateEnsureAllBootloadersHavePasswordProtectionEnabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcGShadow", + "ObjectName": "initEnsurePermissionsOnBootloaderConfig", "Payload": "400" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcGShadowDash", + "ObjectName": "remediateEnsurePermissionsOnBootloaderConfig", "Payload": "400" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcPasswd", - "Payload": "644" + "ObjectName": "remediateEnsureAuthenticationRequiredForSingleUserMode" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcPasswdDash", - "Payload": "644" + "ObjectName": "remediateEnsurePacketRedirectSendingIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcGroup", - "Payload": "644" + "ObjectName": "remediateEnsureIcmpRedirectsIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcGroupDash", - "Payload": "644" + "ObjectName": "remediateEnsureSourceRoutedPacketsIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcAnacronTab", - "Payload": "600" + "ObjectName": "remediateEnsureAcceptingSourceRoutedPacketsIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcCronD", - "Payload": "700" + "ObjectName": "remediateEnsureIgnoringBogusIcmpBroadcastResponses" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcCronDaily", - "Payload": "700" + "ObjectName": "remediateEnsureIgnoringIcmpEchoPingsToMulticast" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcCronHourly", - "Payload": "700" + "ObjectName": "remediateEnsureMartianPacketLoggingIsEnabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcCronMonthly", - "Payload": "700" + "ObjectName": "remediateEnsureReversePathSourceValidationIsEnabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcCronWeekly", - "Payload": "700" + "ObjectName": "remediateEnsureTcpSynCookiesAreEnabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcMotd", - "Payload": "644" + "ObjectName": "remediateEnsureSystemNotActingAsNetworkSniffer" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureInetdNotInstalled" + "ObjectName": "remediateEnsureAllWirelessInterfacesAreDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureXinetdNotInstalled" + "ObjectName": "remediateEnsureIpv6ProtocolIsEnabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRshServerNotInstalled" + "ObjectName": "remediateEnsureDccpIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNisNotInstalled" + "ObjectName": "remediateEnsureSctpIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureTftpdNotInstalled" + "ObjectName": "remediateEnsureDisabledSupportForRds" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureReadaheadFedoraNotInstalled" + "ObjectName": "remediateEnsureTipcIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureBluetoothHiddNotInstalled" + "ObjectName": "remediateEnsureLoggingIsConfigured" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIsdnUtilsBaseNotInstalled" + "ObjectName": "remediateEnsureSyslogPackageIsInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIsdnUtilsKdumpToolsNotInstalled" + "ObjectName": "remediateEnsureSystemdJournaldServicePersistsLogMessages" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIscDhcpdServerNotInstalled" + "ObjectName": "remediateEnsureALoggingServiceIsEnabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSendmailNotInstalled" + "ObjectName": "initEnsureFilePermissionsForAllRsyslogLogFiles", + "Payload": "600,640" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSldapdNotInstalled" + "ObjectName": "remediateEnsureFilePermissionsForAllRsyslogLogFiles", + "Payload": "600,640" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureBind9NotInstalled" + "ObjectName": "remediateEnsureLoggerConfigurationFilesAreRestricted" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDovecotCoreNotInstalled" + "ObjectName": "remediateEnsureAllRsyslogLogFilesAreOwnedByAdmGroup" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAuditdInstalled" + "ObjectName": "remediateEnsureAllRsyslogLogFilesAreOwnedBySyslogUser" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePrelinkIsDisabled" + "ObjectName": "remediateEnsureRsyslogNotAcceptingRemoteMessages" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureTalkClientIsNotInstalled" + "ObjectName": "remediateEnsureSyslogRotaterServiceIsEnabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureCronServiceIsEnabled" + "ObjectName": "remediateEnsureRloginServiceIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAuditdServiceIsRunning" + "ObjectName": "remediateEnsureInetdNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureKernelSupportForCpuNx" + "ObjectName": "remediateEnsureXinetdNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllTelnetdPackagesUninstalled" + "ObjectName": "remediateEnsureTelnetServiceIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNodevOptionOnHomePartition" + "ObjectName": "remediateEnsureAllTelnetdPackagesUninstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNodevOptionOnTmpPartition" + "ObjectName": "remediateEnsureRcprshServiceIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNodevOptionOnVarTmpPartition" + "ObjectName": "remediateEnsureRshServerNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNosuidOptionOnTmpPartition" + "ObjectName": "remediateEnsureNisNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNosuidOptionOnVarTmpPartition" + "ObjectName": "remediateEnsureTftpServiceisDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoexecOptionOnVarTmpPartition" + "ObjectName": "remediateEnsureTftpdNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoexecOptionOnDevShmPartition" + "ObjectName": "remediateEnsureReadaheadFedoraNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNodevOptionEnabledForAllRemovableMedia" + "ObjectName": "remediateEnsureBluetoothHiddNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoexecOptionEnabledForAllRemovableMedia" + "ObjectName": "remediateEnsureIsdnUtilsBaseNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNosuidOptionEnabledForAllRemovableMedia" + "ObjectName": "remediateEnsureIsdnUtilsKdumpToolsNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoexecNosuidOptionsEnabledForAllNfsMounts" + "ObjectName": "remediateEnsureZeroconfNetworkingIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllEtcPasswdGroupsExistInEtcGroup" + "ObjectName": "remediateEnsureCronServiceIsEnabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoDuplicateUidsExist" + "ObjectName": "initEnsurePermissionsOnEtcAnacronTab", + "Payload": "600" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoDuplicateGidsExist" + "ObjectName": "remediateEnsurePermissionsOnEtcAnacronTab", + "Payload": "600" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoDuplicateUserNamesExist" + "ObjectName": "initEnsurePermissionsOnEtcCronD", + "Payload": "700" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoDuplicateGroupsExist" + "ObjectName": "remediateEnsurePermissionsOnEtcCronD", + "Payload": "700" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureShadowGroupIsEmpty" + "ObjectName": "initEnsurePermissionsOnEtcCronDaily", + "Payload": "700" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRootGroupExists" + "ObjectName": "remediateEnsurePermissionsOnEtcCronDaily", + "Payload": "700" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllAccountsHavePasswords" + "ObjectName": "initEnsurePermissionsOnEtcCronHourly", + "Payload": "700" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNonRootAccountsHaveUniqueUidsGreaterThanZero" + "ObjectName": "remediateEnsurePermissionsOnEtcCronHourly", + "Payload": "700" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoLegacyPlusEntriesInEtcPasswd" + "ObjectName": "initEnsurePermissionsOnEtcCronMonthly", + "Payload": "700" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoLegacyPlusEntriesInEtcShadow" + "ObjectName": "remediateEnsurePermissionsOnEtcCronMonthly", + "Payload": "700" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoLegacyPlusEntriesInEtcGroup" + "ObjectName": "initEnsurePermissionsOnEtcCronWeekly", + "Payload": "700" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDefaultRootAccountGroupIsGidZero" + "ObjectName": "remediateEnsurePermissionsOnEtcCronWeekly", + "Payload": "700" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRootIsOnlyUidZeroAccount" + "ObjectName": "remediateEnsureAtCronIsRestrictedToAuthorizedUsers" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllUsersHomeDirectoriesExist" + "ObjectName": "remediateEnsureRemoteLoginWarningBannerIsConfigured" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureUsersOwnTheirHomeDirectories" + "ObjectName": "remediateEnsureLocalLoginWarningBannerIsConfigured" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRestrictedUserHomeDirectories", - "Payload": "700,750" + "ObjectName": "remediateEnsureAvahiDaemonServiceIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePasswordHashingAlgorithm", - "Payload": "6" + "ObjectName": "remediateEnsureCupsServiceisDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureMinDaysBetweenPasswordChanges", - "Payload": "7" + "ObjectName": "remediateEnsureIscDhcpdServerNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureInactivePasswordLockPeriod", - "Payload": "30" + "ObjectName": "remediateEnsureSendmailNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureMaxDaysBetweenPasswordChanges", - "Payload": "365" + "ObjectName": "remediateEnsurePostfixPackageIsUninstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePasswordExpiration", - "Payload": "365" + "ObjectName": "remediateEnsurePostfixNetworkListeningIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePasswordExpirationWarning", - "Payload": "7" + "ObjectName": "remediateEnsureSldapdNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSystemAccountsAreNonLogin" + "ObjectName": "remediateEnsureRpcgssdServiceIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAuthenticationRequiredForSingleUserMode" + "ObjectName": "remediateEnsureRpcidmapdServiceIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDotDoesNotAppearInRootsPath" + "ObjectName": "remediateEnsurePortmapServiceIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRemoteLoginWarningBannerIsConfigured" + "ObjectName": "remediateEnsureNetworkFileSystemServiceIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureLocalLoginWarningBannerIsConfigured" + "ObjectName": "remediateEnsureRpcsvcgssdServiceIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSuRestrictedToRootGroup" + "ObjectName": "remediateEnsureBind9NotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDefaultUmaskForAllUsers", - "Payload": "077" + "ObjectName": "remediateEnsureDovecotCoreNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAutomountingDisabled" + "ObjectName": "remediateEnsureNoLegacyPlusEntriesInEtcPasswd" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureKernelCompiledFromApprovedSources" + "ObjectName": "remediateEnsureNoLegacyPlusEntriesInEtcShadow" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDefaultDenyFirewallPolicyIsSet" + "ObjectName": "remediateEnsureNoLegacyPlusEntriesInEtcGroup" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePacketRedirectSendingIsDisabled" + "ObjectName": "initEnsurePasswordExpiration", + "Payload": "365" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIcmpRedirectsIsDisabled" + "ObjectName": "remediateEnsurePasswordExpiration", + "Payload": "365" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSourceRoutedPacketsIsDisabled" + "ObjectName": "initEnsurePasswordExpirationWarning", + "Payload": "7" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAcceptingSourceRoutedPacketsIsDisabled" + "ObjectName": "remediateEnsurePasswordExpirationWarning", + "Payload": "7" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIgnoringBogusIcmpBroadcastResponses" + "ObjectName": "initEnsurePasswordReuseIsLimited", + "Payload": "5" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIgnoringIcmpEchoPingsToMulticast" + "ObjectName": "remediateEnsurePasswordReuseIsLimited", + "Payload": "5" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureMartianPacketLoggingIsEnabled" + "ObjectName": "initEnsurePasswordHashingAlgorithm", + "Payload": "6" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureReversePathSourceValidationIsEnabled" + "ObjectName": "remediateEnsurePasswordHashingAlgorithm", + "Payload": "6" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureTcpSynCookiesAreEnabled" + "ObjectName": "initEnsureMinDaysBetweenPasswordChanges", + "Payload": "7" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSystemNotActingAsNetworkSniffer" + "ObjectName": "remediateEnsureMinDaysBetweenPasswordChanges", + "Payload": "7" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllWirelessInterfacesAreDisabled" + "ObjectName": "initEnsureMaxDaysBetweenPasswordChanges", + "Payload": "365" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIpv6ProtocolIsEnabled" + "ObjectName": "remediateEnsureMaxDaysBetweenPasswordChanges", + "Payload": "365" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDccpIsDisabled" + "ObjectName": "initEnsureInactivePasswordLockPeriod", + "Payload": "30" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSctpIsDisabled" + "ObjectName": "remediateEnsureInactivePasswordLockPeriod", + "Payload": "30" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDisabledSupportForRds" + "ObjectName": "remediateEnsureSystemAccountsAreNonLogin" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureTipcIsDisabled" + "ObjectName": "remediateEnsureDefaultRootAccountGroupIsGidZero" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureZeroconfNetworkingIsDisabled" + "ObjectName": "remediateEnsureRootIsOnlyUidZeroAccount" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnBootloaderConfig", - "Payload": "400" + "ObjectName": "initEnsureUnnecessaryAccountsAreRemoved", + "Payload": "games,test" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePasswordReuseIsLimited", - "Payload": "5" + "ObjectName": "remediateEnsureUnnecessaryAccountsAreRemoved", + "Payload": "games,test" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureMountingOfUsbStorageDevicesIsDisabled" + "ObjectName": "remediateEnsureAuditdInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureCoreDumpsAreRestricted" + "ObjectName": "remediateEnsureAuditdServiceIsRunning" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePasswordCreationRequirements", - "Payload": "3,14,4,-1,-1,-1,-1" + "ObjectName": "remediateEnsureSnmpServerIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureLockoutForFailedPasswordAttempts" + "ObjectName": "remediateEnsureRsynServiceIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDisabledInstallationOfCramfsFileSystem" + "ObjectName": "remediateEnsureNisServerIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDisabledInstallationOfFreevxfsFileSystem" + "ObjectName": "remediateEnsureRshClientNotInstalled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDisabledInstallationOfHfsFileSystem" + "ObjectName": "remediateEnsureSmbWithSambaIsDisabled" + }, + { + "Action": "UnloadModule" + }, + { + "Action": "LoadModule", + "Module": "securitybaseline.so", + "WaitSeconds": 5 }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDisabledInstallationOfHfsplusFileSystem" + "ObjectName": "initEnsurePermissionsOnEtcSshSshdConfig", + "Payload": "600" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDisabledInstallationOfJffs2FileSystem" + "ObjectName": "auditEnsurePermissionsOnEtcSshSshdConfig" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureVirtualMemoryRandomizationIsEnabled" + "ObjectName": "initEnsureSshBestPracticeProtocol", + "Payload": "2" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllBootloadersHavePasswordProtectionEnabled" + "ObjectName": "auditEnsureSshBestPracticeProtocol" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureLoggingIsConfigured" + "ObjectName": "initEnsureSshBestPracticeIgnoreRhosts", + "Payload": "yes" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSyslogPackageIsInstalled" + "ObjectName": "auditEnsureSshBestPracticeIgnoreRhosts" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSystemdJournaldServicePersistsLogMessages" + "ObjectName": "initEnsureSshLogLevelIsSet", + "Payload": "INFO" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureALoggingServiceIsEnabled" + "ObjectName": "auditEnsureSshLogLevelIsSet" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureFilePermissionsForAllRsyslogLogFiles", - "Payload": "600,640" + "ObjectName": "initEnsureSshMaxAuthTriesIsSet", + "Payload": "6" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureLoggerConfigurationFilesAreRestricted" + "ObjectName": "auditEnsureSshMaxAuthTriesIsSet" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllRsyslogLogFilesAreOwnedByAdmGroup" + "ObjectName": "initEnsureAllowUsersIsConfigured", + "Payload": "*@*" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllRsyslogLogFilesAreOwnedBySyslogUser" + "ObjectName": "auditEnsureAllowUsersIsConfigured" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRsyslogNotAcceptingRemoteMessages" + "ObjectName": "initEnsureDenyUsersIsConfigured", + "Payload": "root" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSyslogRotaterServiceIsEnabled" + "ObjectName": "auditEnsureDenyUsersIsConfigured" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureTelnetServiceIsDisabled" + "ObjectName": "initEnsureAllowGroupsIsConfigured", + "Payload": "*" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRcprshServiceIsDisabled" + "ObjectName": "auditEnsureAllowGroupsIsConfigured" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureTftpServiceisDisabled" + "ObjectName": "initEnsureDenyGroupsConfigured", + "Payload": "root" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAtCronIsRestrictedToAuthorizedUsers" + "ObjectName": "auditEnsureDenyGroupsConfigured" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshPortIsConfigured" + "ObjectName": "initEnsureSshHostbasedAuthenticationIsDisabled", + "Payload": "no" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshBestPracticeProtocol" + "ObjectName": "auditEnsureSshHostbasedAuthenticationIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshBestPracticeIgnoreRhosts" + "ObjectName": "initEnsureSshPermitRootLoginIsDisabled", + "Payload": "no" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshLogLevelIsSet" + "ObjectName": "auditEnsureSshPermitRootLoginIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshMaxAuthTriesIsSet" + "ObjectName": "initEnsureSshPermitEmptyPasswordsIsDisabled", + "Payload": "no" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllowUsersIsConfigured" + "ObjectName": "auditEnsureSshPermitEmptyPasswordsIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDenyUsersIsConfigured" + "ObjectName": "initEnsureSshClientIntervalCountMaxIsConfigured", + "Payload": "0" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllowGroupsIsConfigured" + "ObjectName": "auditEnsureSshClientIntervalCountMaxIsConfigured" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDenyGroupsConfigured" + "ObjectName": "initEnsureSshClientAliveIntervalIsConfigured", + "Payload": "3600" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshHostbasedAuthenticationIsDisabled" + "ObjectName": "auditEnsureSshClientAliveIntervalIsConfigured" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshPermitRootLoginIsDisabled" + "ObjectName": "initEnsureSshLoginGraceTimeIsSet", + "Payload": "60" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshPermitEmptyPasswordsIsDisabled" + "ObjectName": "auditEnsureSshLoginGraceTimeIsSet" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshClientIntervalCountMaxIsConfigured" + "ObjectName": "initEnsureOnlyApprovedMacAlgorithmsAreUsed", + "Payload": "hmac-sha2-256,hmac-sha2-256-etm@openssh.com,hmac-sha2-512,hmac-sha2-512-etm@openssh.com" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshLoginGraceTimeIsSet" + "ObjectName": "auditEnsureOnlyApprovedMacAlgorithmsAreUsed" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureOnlyApprovedMacAlgorithmsAreUsed" + "ObjectName": "initEnsureSshWarningBannerIsEnabled", + "Payload": "#######################################################################\n\nAuthorized access only!\n\nIf you are not authorized to access or use this system, disconnect now!\n\n#######################################################################\n" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshWarningBannerIsEnabled" + "ObjectName": "auditEnsureSshWarningBannerIsEnabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureUsersCannotSetSshEnvironmentOptions" + "ObjectName": "initEnsureUsersCannotSetSshEnvironmentOptions", + "Payload": "no" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAppropriateCiphersForSsh" + "ObjectName": "auditEnsureUsersCannotSetSshEnvironmentOptions" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAvahiDaemonServiceIsDisabled" + "ObjectName": "initEnsureAppropriateCiphersForSsh", + "Payload": "aes128-ctr,aes192-ctr,aes256-ctr" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureCupsServiceisDisabled" + "ObjectName": "auditEnsureAppropriateCiphersForSsh" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePostfixPackageIsUninstalled" + "ObjectName": "initEnsureSshPortIsConfigured", + "Payload": "22" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePostfixNetworkListeningIsDisabled" + "ObjectName": "auditEnsureSshPortIsConfigured" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRpcgssdServiceIsDisabled" + "ObjectName": "auditEnsureNodevOptionOnHomePartition" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRpcidmapdServiceIsDisabled" + "ObjectName": "auditEnsureNodevOptionOnTmpPartition" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePortmapServiceIsDisabled" + "ObjectName": "auditEnsureNodevOptionOnVarTmpPartition" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNetworkFileSystemServiceIsDisabled" + "ObjectName": "auditEnsureNosuidOptionOnTmpPartition" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRpcsvcgssdServiceIsDisabled" + "ObjectName": "auditEnsureNosuidOptionOnVarTmpPartition" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSnmpServerIsDisabled" + "ObjectName": "auditEnsureNoexecOptionOnVarTmpPartition" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRsynServiceIsDisabled" + "ObjectName": "auditEnsureNoexecOptionOnDevShmPartition" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNisServerIsDisabled" + "ObjectName": "auditEnsureAutomountingDisabled" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRshClientNotInstalled" + "ObjectName": "auditEnsureMountingOfUsbStorageDevicesIsDisabled" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSmbWithSambaIsDisabled" + "ObjectName": "auditEnsureCoreDumpsAreRestricted" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureUsersDotFilesArentGroupOrWorldWritable", - "Payload": "600,644,664,700,744" + "ObjectName": "auditEnsurePrelinkIsDisabled" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoUsersHaveDotForwardFiles" + "ObjectName": "initEnsurePermissionsOnEtcMotd", + "Payload": "644" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoUsersHaveDotNetrcFiles" + "ObjectName": "auditEnsurePermissionsOnEtcMotd" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoUsersHaveDotRhostsFiles" + "ObjectName": "initEnsurePermissionsOnEtcIssue", + "Payload": "644" }, { - "ObjectType": "Desired", + "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRloginServiceIsDisabled" + "ObjectName": "auditEnsurePermissionsOnEtcIssue" }, { "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureUnnecessaryAccountsAreRemoved", - "Payload": "games,osconfig" + "ObjectName": "initEnsurePermissionsOnEtcIssueNet", + "Payload": "644" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcIssue" + "ObjectName": "auditEnsurePermissionsOnEtcIssueNet" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcIssueNet" + "ObjectName": "auditEnsureNodevOptionEnabledForAllRemovableMedia" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcHostsAllow" + "ObjectName": "auditEnsureNoexecOptionEnabledForAllRemovableMedia" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcHostsDeny" + "ObjectName": "auditEnsureNosuidOptionEnabledForAllRemovableMedia" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcSshSshdConfig" + "ObjectName": "auditEnsureTalkClientIsNotInstalled" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcShadow" + "ObjectName": "initEnsurePermissionsOnEtcHostsAllow", + "Payload": "644" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcShadowDash" + "ObjectName": "auditEnsurePermissionsOnEtcHostsAllow" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcGShadow" + "ObjectName": "initEnsurePermissionsOnEtcHostsDeny", + "Payload": "644" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcGShadowDash" + "ObjectName": "auditEnsurePermissionsOnEtcHostsDeny" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcPasswd" + "ObjectName": "initEnsureDefaultDenyFirewallPolicyIsSet", + "Payload": "0" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcPasswdDash" + "ObjectName": "auditEnsureDefaultDenyFirewallPolicyIsSet" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcGroup" + "ObjectName": "auditEnsureNoexecNosuidOptionsEnabledForAllNfsMounts" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcGroupDash" + "ObjectName": "initEnsurePasswordCreationRequirements", + "Payload": "3,14,4,-1,-1,-1,-1" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcAnacronTab" + "ObjectName": "auditEnsurePasswordCreationRequirements" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcCronD" + "ObjectName": "auditEnsureLockoutForFailedPasswordAttempts" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcCronDaily" + "ObjectName": "auditEnsureDisabledInstallationOfCramfsFileSystem" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcCronHourly" + "ObjectName": "auditEnsureDisabledInstallationOfFreevxfsFileSystem" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcCronMonthly" + "ObjectName": "auditEnsureAllUsersHomeDirectoriesExist" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcCronWeekly" + "ObjectName": "auditEnsureUsersOwnTheirHomeDirectories" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcMotd" + "ObjectName": "initEnsureUsersDotFilesArentGroupOrWorldWritable", + "Payload": "600,644,664,700,744" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureKernelSupportForCpuNx" + "ObjectName": "auditEnsureUsersDotFilesArentGroupOrWorldWritable" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNodevOptionOnHomePartition" + "ObjectName": "auditEnsureNoUsersHaveDotForwardFiles" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNodevOptionOnTmpPartition" + "ObjectName": "auditEnsureNoUsersHaveDotNetrcFiles" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNodevOptionOnVarTmpPartition" + "ObjectName": "auditEnsureNoUsersHaveDotRhostsFiles" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNosuidOptionOnTmpPartition" + "ObjectName": "auditEnsureAllEtcPasswdGroupsExistInEtcGroup" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNosuidOptionOnVarTmpPartition" + "ObjectName": "auditEnsureNoDuplicateUidsExist" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoexecOptionOnVarTmpPartition" + "ObjectName": "auditEnsureNoDuplicateGidsExist" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoexecOptionOnDevShmPartition" + "ObjectName": "auditEnsureNoDuplicateUserNamesExist" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNodevOptionEnabledForAllRemovableMedia" + "ObjectName": "auditEnsureNoDuplicateGroupsExist" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoexecOptionEnabledForAllRemovableMedia" + "ObjectName": "auditEnsureShadowGroupIsEmpty" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNosuidOptionEnabledForAllRemovableMedia" + "ObjectName": "auditEnsureDisabledInstallationOfHfsFileSystem" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoexecNosuidOptionsEnabledForAllNfsMounts" + "ObjectName": "auditEnsureDisabledInstallationOfHfsplusFileSystem" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureInetdNotInstalled" + "ObjectName": "auditEnsureDisabledInstallationOfJffs2FileSystem" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureXinetdNotInstalled" + "ObjectName": "auditEnsureKernelCompiledFromApprovedSources" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllTelnetdPackagesUninstalled" + "ObjectName": "initEnsurePermissionsOnEtcShadow", + "Payload": "400" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRshServerNotInstalled" + "ObjectName": "auditEnsurePermissionsOnEtcShadow" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNisNotInstalled" + "ObjectName": "initEnsurePermissionsOnEtcShadowDash", + "Payload": "400" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureTftpdNotInstalled" + "ObjectName": "auditEnsurePermissionsOnEtcShadowDash" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureReadaheadFedoraNotInstalled" + "ObjectName": "initEnsurePermissionsOnEtcGShadow", + "Payload": "400" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureBluetoothHiddNotInstalled" + "ObjectName": "auditEnsurePermissionsOnEtcGShadow" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIsdnUtilsBaseNotInstalled" + "ObjectName": "initEnsurePermissionsOnEtcGShadowDash", + "Payload": "400" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIsdnUtilsKdumpToolsNotInstalled" + "ObjectName": "auditEnsurePermissionsOnEtcGShadowDash" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIscDhcpdServerNotInstalled" + "ObjectName": "initEnsurePermissionsOnEtcPasswd", + "Payload": "644" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSendmailNotInstalled" + "ObjectName": "auditEnsurePermissionsOnEtcPasswd" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSldapdNotInstalled" + "ObjectName": "initEnsurePermissionsOnEtcGroup", + "Payload": "644" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureBind9NotInstalled" + "ObjectName": "auditEnsurePermissionsOnEtcGroup" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDovecotCoreNotInstalled" + "ObjectName": "initEnsurePermissionsOnEtcPasswdDash", + "Payload": "644" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAuditdInstalled" + "ObjectName": "auditEnsurePermissionsOnEtcPasswdDash" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllEtcPasswdGroupsExistInEtcGroup" + "ObjectName": "initEnsurePermissionsOnEtcGroupDash", + "Payload": "644" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoDuplicateUidsExist" + "ObjectName": "auditEnsurePermissionsOnEtcGroupDash" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoDuplicateGidsExist" + "ObjectName": "auditEnsureSuRestrictedToRootGroup" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoDuplicateUserNamesExist" + "ObjectName": "auditEnsureRootGroupExists" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoDuplicateGroupsExist" + "ObjectName": "auditEnsureAllAccountsHavePasswords" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureShadowGroupIsEmpty" + "ObjectName": "auditEnsureNonRootAccountsHaveUniqueUidsGreaterThanZero" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRootGroupExists" + "ObjectName": "auditEnsureVirtualMemoryRandomizationIsEnabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllAccountsHavePasswords" + "ObjectName": "auditEnsureKernelSupportForCpuNx" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNonRootAccountsHaveUniqueUidsGreaterThanZero" + "ObjectName": "auditEnsureDotDoesNotAppearInRootsPath" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoLegacyPlusEntriesInEtcPasswd" + "ObjectName": "initEnsureRestrictedUserHomeDirectories", + "Payload": "700,750" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoLegacyPlusEntriesInEtcShadow" + "ObjectName": "auditEnsureRestrictedUserHomeDirectories" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoLegacyPlusEntriesInEtcGroup" + "ObjectName": "initEnsureDefaultUmaskForAllUsers", + "Payload": "077" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDefaultRootAccountGroupIsGidZero" + "ObjectName": "auditEnsureDefaultUmaskForAllUsers" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRootIsOnlyUidZeroAccount" + "ObjectName": "auditEnsureAllBootloadersHavePasswordProtectionEnabled" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllUsersHomeDirectoriesExist" + "ObjectName": "initEnsurePermissionsOnBootloaderConfig", + "Payload": "400" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureUsersOwnTheirHomeDirectories" + "ObjectName": "auditEnsurePermissionsOnBootloaderConfig" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRestrictedUserHomeDirectories" + "ObjectName": "auditEnsureAuthenticationRequiredForSingleUserMode" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePasswordHashingAlgorithm" + "ObjectName": "auditEnsurePacketRedirectSendingIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureMinDaysBetweenPasswordChanges" + "ObjectName": "auditEnsureIcmpRedirectsIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureInactivePasswordLockPeriod" + "ObjectName": "auditEnsureSourceRoutedPacketsIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePasswordExpiration" + "ObjectName": "auditEnsureAcceptingSourceRoutedPacketsIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePasswordExpirationWarning" + "ObjectName": "auditEnsureIgnoringBogusIcmpBroadcastResponses" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSystemAccountsAreNonLogin" + "ObjectName": "auditEnsureIgnoringIcmpEchoPingsToMulticast" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAuthenticationRequiredForSingleUserMode" + "ObjectName": "auditEnsureMartianPacketLoggingIsEnabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePrelinkIsDisabled" + "ObjectName": "auditEnsureReversePathSourceValidationIsEnabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureTalkClientIsNotInstalled" + "ObjectName": "auditEnsureTcpSynCookiesAreEnabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDotDoesNotAppearInRootsPath" + "ObjectName": "auditEnsureSystemNotActingAsNetworkSniffer" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureCronServiceIsEnabled" + "ObjectName": "auditEnsureAllWirelessInterfacesAreDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRemoteLoginWarningBannerIsConfigured" + "ObjectName": "auditEnsureIpv6ProtocolIsEnabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureLocalLoginWarningBannerIsConfigured" + "ObjectName": "auditEnsureDccpIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAuditdServiceIsRunning" + "ObjectName": "auditEnsureSctpIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSuRestrictedToRootGroup" + "ObjectName": "auditEnsureDisabledSupportForRds" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDefaultUmaskForAllUsers" + "ObjectName": "auditEnsureTipcIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAutomountingDisabled" + "ObjectName": "auditEnsureLoggingIsConfigured" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureKernelCompiledFromApprovedSources" + "ObjectName": "auditEnsureSyslogPackageIsInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDefaultDenyFirewallPolicyIsSet" + "ObjectName": "auditEnsureSystemdJournaldServicePersistsLogMessages" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePacketRedirectSendingIsDisabled" + "ObjectName": "auditEnsureALoggingServiceIsEnabled" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIcmpRedirectsIsDisabled" + "ObjectName": "initEnsureFilePermissionsForAllRsyslogLogFiles", + "Payload": "600,640" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSourceRoutedPacketsIsDisabled" + "ObjectName": "auditEnsureFilePermissionsForAllRsyslogLogFiles" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAcceptingSourceRoutedPacketsIsDisabled" + "ObjectName": "auditEnsureLoggerConfigurationFilesAreRestricted" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIgnoringBogusIcmpBroadcastResponses" + "ObjectName": "auditEnsureAllRsyslogLogFilesAreOwnedByAdmGroup" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIgnoringIcmpEchoPingsToMulticast" + "ObjectName": "auditEnsureAllRsyslogLogFilesAreOwnedBySyslogUser" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureMartianPacketLoggingIsEnabled" + "ObjectName": "auditEnsureRsyslogNotAcceptingRemoteMessages" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureReversePathSourceValidationIsEnabled" + "ObjectName": "auditEnsureSyslogRotaterServiceIsEnabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureTcpSynCookiesAreEnabled" + "ObjectName": "auditEnsureRloginServiceIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSystemNotActingAsNetworkSniffer" + "ObjectName": "auditEnsureInetdNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllWirelessInterfacesAreDisabled" + "ObjectName": "auditEnsureXinetdNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIpv6ProtocolIsEnabled" + "ObjectName": "auditEnsureTelnetServiceIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDccpIsDisabled" + "ObjectName": "auditEnsureAllTelnetdPackagesUninstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSctpIsDisabled" + "ObjectName": "auditEnsureRcprshServiceIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDisabledSupportForRds" + "ObjectName": "auditEnsureRshServerNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureTipcIsDisabled" + "ObjectName": "auditEnsureNisNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureZeroconfNetworkingIsDisabled" + "ObjectName": "auditEnsureTftpServiceisDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnBootloaderConfig" + "ObjectName": "auditEnsureTftpdNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePasswordReuseIsLimited" + "ObjectName": "auditEnsureReadaheadFedoraNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureMountingOfUsbStorageDevicesIsDisabled" + "ObjectName": "auditEnsureBluetoothHiddNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureCoreDumpsAreRestricted" + "ObjectName": "auditEnsureIsdnUtilsBaseNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePasswordCreationRequirements" + "ObjectName": "auditEnsureIsdnUtilsKdumpToolsNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureLockoutForFailedPasswordAttempts" + "ObjectName": "auditEnsureZeroconfNetworkingIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDisabledInstallationOfCramfsFileSystem" + "ObjectName": "auditEnsureCronServiceIsEnabled" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDisabledInstallationOfFreevxfsFileSystem" + "ObjectName": "initEnsurePermissionsOnEtcAnacronTab", + "Payload": "600" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDisabledInstallationOfHfsFileSystem" + "ObjectName": "auditEnsurePermissionsOnEtcAnacronTab" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDisabledInstallationOfHfsplusFileSystem" + "ObjectName": "initEnsurePermissionsOnEtcCronD", + "Payload": "700" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDisabledInstallationOfJffs2FileSystem" + "ObjectName": "auditEnsurePermissionsOnEtcCronD" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureVirtualMemoryRandomizationIsEnabled" + "ObjectName": "initEnsurePermissionsOnEtcCronDaily", + "Payload": "700" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllBootloadersHavePasswordProtectionEnabled" + "ObjectName": "auditEnsurePermissionsOnEtcCronDaily" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureLoggingIsConfigured" + "ObjectName": "initEnsurePermissionsOnEtcCronHourly", + "Payload": "700" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSyslogPackageIsInstalled" + "ObjectName": "auditEnsurePermissionsOnEtcCronHourly" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSystemdJournaldServicePersistsLogMessages" + "ObjectName": "initEnsurePermissionsOnEtcCronMonthly", + "Payload": "700" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureALoggingServiceIsEnabled" + "ObjectName": "auditEnsurePermissionsOnEtcCronMonthly" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureFilePermissionsForAllRsyslogLogFiles" + "ObjectName": "initEnsurePermissionsOnEtcCronWeekly", + "Payload": "700" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureLoggerConfigurationFilesAreRestricted" + "ObjectName": "auditEnsurePermissionsOnEtcCronWeekly" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllRsyslogLogFilesAreOwnedByAdmGroup" + "ObjectName": "auditEnsureAtCronIsRestrictedToAuthorizedUsers" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllRsyslogLogFilesAreOwnedBySyslogUser" + "ObjectName": "auditEnsureRemoteLoginWarningBannerIsConfigured" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRsyslogNotAcceptingRemoteMessages" + "ObjectName": "auditEnsureLocalLoginWarningBannerIsConfigured" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSyslogRotaterServiceIsEnabled" + "ObjectName": "auditEnsureAvahiDaemonServiceIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureTelnetServiceIsDisabled" + "ObjectName": "auditEnsureCupsServiceisDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRcprshServiceIsDisabled" + "ObjectName": "auditEnsureIscDhcpdServerNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureTftpServiceisDisabled" + "ObjectName": "auditEnsureSendmailNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAtCronIsRestrictedToAuthorizedUsers" + "ObjectName": "auditEnsurePostfixPackageIsUninstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshPortIsConfigured" + "ObjectName": "auditEnsurePostfixNetworkListeningIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshBestPracticeProtocol" + "ObjectName": "auditEnsureSldapdNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshBestPracticeIgnoreRhosts" + "ObjectName": "auditEnsureRpcgssdServiceIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshLogLevelIsSet" + "ObjectName": "auditEnsureRpcidmapdServiceIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshMaxAuthTriesIsSet" + "ObjectName": "auditEnsurePortmapServiceIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllowUsersIsConfigured" + "ObjectName": "auditEnsureNetworkFileSystemServiceIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDenyUsersIsConfigured" + "ObjectName": "auditEnsureRpcsvcgssdServiceIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllowGroupsIsConfigured" + "ObjectName": "auditEnsureBind9NotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDenyGroupsConfigured" + "ObjectName": "auditEnsureDovecotCoreNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshHostbasedAuthenticationIsDisabled" + "ObjectName": "auditEnsureNoLegacyPlusEntriesInEtcPasswd" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshPermitRootLoginIsDisabled" + "ObjectName": "auditEnsureNoLegacyPlusEntriesInEtcShadow" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshPermitEmptyPasswordsIsDisabled" + "ObjectName": "auditEnsureNoLegacyPlusEntriesInEtcGroup" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshClientIntervalCountMaxIsConfigured" + "ObjectName": "initEnsurePasswordExpiration", + "Payload": "365" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshLoginGraceTimeIsSet" + "ObjectName": "auditEnsurePasswordExpiration" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureOnlyApprovedMacAlgorithmsAreUsed" + "ObjectName": "initEnsurePasswordExpirationWarning", + "Payload": "7" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshWarningBannerIsEnabled" + "ObjectName": "auditEnsurePasswordExpirationWarning" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureUsersCannotSetSshEnvironmentOptions" + "ObjectName": "initEnsurePasswordReuseIsLimited", + "Payload": "5" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAppropriateCiphersForSsh" + "ObjectName": "auditEnsurePasswordReuseIsLimited" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAvahiDaemonServiceIsDisabled" + "ObjectName": "initEnsurePasswordHashingAlgorithm", + "Payload": "6" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureCupsServiceisDisabled" + "ObjectName": "auditEnsurePasswordHashingAlgorithm" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePostfixPackageIsUninstalled" + "ObjectName": "initEnsureMinDaysBetweenPasswordChanges", + "Payload": "7" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePostfixNetworkListeningIsDisabled" + "ObjectName": "auditEnsureMinDaysBetweenPasswordChanges" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRpcgssdServiceIsDisabled" + "ObjectName": "initEnsureMaxDaysBetweenPasswordChanges", + "Payload": "365" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRpcidmapdServiceIsDisabled" + "ObjectName": "auditEnsureMaxDaysBetweenPasswordChanges" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePortmapServiceIsDisabled" + "ObjectName": "initEnsureInactivePasswordLockPeriod", + "Payload": "30" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNetworkFileSystemServiceIsDisabled" + "ObjectName": "auditEnsureInactivePasswordLockPeriod" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRpcsvcgssdServiceIsDisabled" + "ObjectName": "auditEnsureSystemAccountsAreNonLogin" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSnmpServerIsDisabled" + "ObjectName": "auditEnsureDefaultRootAccountGroupIsGidZero" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRsynServiceIsDisabled" + "ObjectName": "auditEnsureRootIsOnlyUidZeroAccount" }, { - "ObjectType": "Reported", + "ObjectType": "Desired", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNisServerIsDisabled" + "ObjectName": "initEnsureUnnecessaryAccountsAreRemoved", + "Payload": "games,test" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRshClientNotInstalled" + "ObjectName": "auditEnsureUnnecessaryAccountsAreRemoved" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSmbWithSambaIsDisabled" + "ObjectName": "auditEnsureAuditdInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureUsersDotFilesArentGroupOrWorldWritable" + "ObjectName": "auditEnsureAuditdServiceIsRunning" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoUsersHaveDotForwardFiles" + "ObjectName": "auditEnsureSnmpServerIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoUsersHaveDotNetrcFiles" + "ObjectName": "auditEnsureRsynServiceIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoUsersHaveDotRhostsFiles" + "ObjectName": "auditEnsureNisServerIsDisabled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRloginServiceIsDisabled" + "ObjectName": "auditEnsureRshClientNotInstalled" }, { "ObjectType": "Reported", "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureUnnecessaryAccountsAreRemoved" + "ObjectName": "auditEnsureSmbWithSambaIsDisabled" }, { "Action": "UnloadModule" } -] \ No newline at end of file +] diff --git a/src/modules/test/recipes/SecurityBaselineTests.json-footer b/src/modules/test/recipes/SecurityBaselineTests.json-footer new file mode 100644 index 000000000..517bf08b7 --- /dev/null +++ b/src/modules/test/recipes/SecurityBaselineTests.json-footer @@ -0,0 +1,4 @@ + { + "Action": "UnloadModule" + } +] diff --git a/src/modules/test/recipes/SecurityBaselineTests.json-header b/src/modules/test/recipes/SecurityBaselineTests.json-header new file mode 100644 index 000000000..30a99882b --- /dev/null +++ b/src/modules/test/recipes/SecurityBaselineTests.json-header @@ -0,0 +1,35 @@ +[ + { + "Action": "LoadModule", + "Module": "securitybaseline.so" + }, + { + "ObjectType": "Reported", + "ComponentName": "SecurityBaseline", + "ObjectName": "DoesNotExist", + "ExpectedResult": 22 + }, + { + "ObjectType": "Reported", + "ComponentName": "DoesNotExist", + "ObjectName": "auditEnsurePermissionsOnEtcCronWeekly", + "ExpectedResult": 22 + }, + { + "ObjectType": "Desired", + "ComponentName": "SecurityBaseline", + "ObjectName": "auditEnsurePermissionsOnEtcCronWeekly", + "ExpectedResult": 22 + }, + { + "ObjectType": "Reported", + "ComponentName": "SecurityBaseline", + "ObjectName": "remediateEnsurePermissionsOnEtcHostsAllow", + "ExpectedResult": 22 + }, + { + "ObjectType": "Desired", + "ComponentName": "DoesNotExist", + "ObjectName": "remediateEnsurePermissionsOnEtcCronWeekly", + "ExpectedResult": 22 + }, diff --git a/src/modules/test/recipes/SecurityBaselineTests.json-mid b/src/modules/test/recipes/SecurityBaselineTests.json-mid new file mode 100644 index 000000000..f658027f0 --- /dev/null +++ b/src/modules/test/recipes/SecurityBaselineTests.json-mid @@ -0,0 +1,8 @@ + { + "Action": "UnloadModule" + }, + { + "Action": "LoadModule", + "Module": "securitybaseline.so", + "WaitSeconds": 5 + }, diff --git a/src/modules/test/recipes/create-asb-json.sh b/src/modules/test/recipes/create-asb-json.sh new file mode 100755 index 000000000..34f12ef51 --- /dev/null +++ b/src/modules/test/recipes/create-asb-json.sh @@ -0,0 +1,11 @@ +#!/bin/bash + +template=SecurityBaselineTests.json + +( + cat "${template}-header"; + ./mof-to-json.awk -v remediate=1 "${@}" + cat "${template}-mid"; + ./mof-to-json.awk -v remediate=0 "${@}" + cat "${template}-footer"; +) \ No newline at end of file diff --git a/src/modules/test/recipes/mof-to-json.awk b/src/modules/test/recipes/mof-to-json.awk new file mode 100755 index 000000000..86069c3fd --- /dev/null +++ b/src/modules/test/recipes/mof-to-json.awk @@ -0,0 +1,105 @@ +#!/usr/bin/awk -f + +# Initialize variables to hold values +BEGIN { + # Set the output format + output = ""; +} + +# Process each line of input +{ + if ($1 == "ComponentName") { + componentName = $3; + gsub(/;/, "", componentName); # Remove semicolon + gsub(/"/, "", componentName); # Remove quotes + } + if ($1 == "InitObjectName") { + initObjectName = $3; + gsub(/;/, "", initObjectName); # Remove semicolon + gsub(/"/, "", initObjectName); # Remove quotes + } + if ($1 == "DesiredObjectName") { + desiredObjectName = $3; + gsub(/;/, "", desiredObjectName); # Remove semicolon + gsub(/"/, "", desiredObjectName); # Remove quotes + } + if ($1 == "ReportedObjectName") { + reportedObjectName = $3; + gsub(/;/, "", reportedObjectName); # Remove semicolon + gsub(/"/, "", reportedObjectName); # Remove quotes + } + if ($1 == "DesiredObjectValue") { + payload = $0; + gsub(/.*= /, "", payload); # Remove everything before the equals sign + gsub(/;/, "", payload); # Remove semicolon + gsub(/"/, "", payload); # Remove quotes + } + + # Check for the end of an object + if ($1 == "};") { + if (componentName == "") { + next; + } + key = componentName"."desiredObjectName; + if (map[key] == 1) { + # Reset variables for the next object + componentName = ""; + initObjectName = ""; + desiredObjectName = ""; + reportedObjectName = ""; + payload = ""; + next; + } + # Append the output for the current object + if (remediate == "1") { + if (initObjectName != "") { + output = output " {\n"; + output = output " \"ObjectType\": \"Desired\",\n"; + output = output " \"ComponentName\": \"" componentName "\",\n"; + output = output " \"ObjectName\": \"" initObjectName "\",\n"; + output = output " \"Payload\": \"" payload "\"\n"; + output = output " },\n"; + } + output = output " {\n"; + output = output " \"ObjectType\": \"Desired\",\n"; + output = output " \"ComponentName\": \"" componentName "\",\n"; + output = output " \"ObjectName\": \"" desiredObjectName "\""; + if (initObjectName != "") { + output = output ",\n \"Payload\": \"" payload "\"\n"; + } else { + output = output "\n" + } + output = output " },\n"; + } else { + if (initObjectName != "") { + output = output " {\n"; + output = output " \"ObjectType\": \"Desired\",\n"; + output = output " \"ComponentName\": \"" componentName "\",\n"; + output = output " \"ObjectName\": \"" initObjectName "\",\n"; + output = output " \"Payload\": \"" payload "\"\n"; + output = output " },\n"; + } + output = output " {\n"; + output = output " \"ObjectType\": \"Reported\",\n"; + output = output " \"ComponentName\": \"" componentName "\",\n"; + output = output " \"ObjectName\": \"" reportedObjectName "\"\n"; + output = output " },\n"; + } + + # Reset variables for the next object + componentName = ""; + initObjectName = ""; + desiredObjectName = ""; + reportedObjectName = ""; + payload = ""; + map[key] = 1; + } +} + +# Print the final output +END { + # Remove the last comma for valid JSON format + sub(/,$/, "", output); + printf output; +} + diff --git a/src/tests/e2e-test-recipes/CommandRunnerTests.json b/src/tests/e2e-test-recipes/CommandRunnerTests.json index 7055e4915..e69de29bb 100644 --- a/src/tests/e2e-test-recipes/CommandRunnerTests.json +++ b/src/tests/e2e-test-recipes/CommandRunnerTests.json @@ -1,164 +0,0 @@ -[ - { - "RunCommand": "cat /dev/null > /etc/osconfig/osconfig_commandrunner.cache && cp /etc/osconfig/osconfig_commandrunner.cache /tmp/commandrunner-cache.cache.bak && rm -f /etc/osconfig/osconfig_commandrunner.cache" - }, - { - "Action": "LoadModule", - "Module": "commandrunner.so" - }, - { - "ObjectType": "Reported", - "ComponentName": "CommandRunner", - "ObjectName": "commandStatus", - "ExpectedResult": 0, - "Payload": { - "commandId": "", - "resultCode": 0, - "textResult": "", - "currentState": 0 - } - }, - { - "ObjectType": "Desired", - "ComponentName": "CommandRunner", - "ObjectName": "commandArguments", - "Payload": { - "commandId": "test_1", - "arguments": "echo -n test", - "timeout": 0, - "singleLineTextResult": true, - "action": 3 - } - }, - { - "ObjectType": "Reported", - "ComponentName": "CommandRunner", - "ObjectName": "commandStatus", - "WaitSeconds": 1, - "ExpectedResult": 0, - "Payload": { - "commandId": "test_1", - "resultCode": 0, - "textResult": "test", - "currentState": 2 - } - }, - { - "ObjectType": "Desired", - "ComponentName": "CommandRunner", - "ObjectName": "commandArguments", - "Payload": { - "commandId": "test_2", - "arguments": "sleep 10s && echo -n test", - "timeout": 0, - "singleLineTextResult": true, - "action": 3 - } - }, - { - "ObjectType": "Desired", - "ComponentName": "CommandRunner", - "ObjectName": "commandArguments", - "Payload": { - "commandId": "test_2", - "action": 5 - } - }, - { - "ObjectType": "Reported", - "ComponentName": "CommandRunner", - "ObjectName": "commandStatus", - "WaitSeconds": 1, - "ExpectedResult": 0, - "Payload": { - "commandId": "test_2", - "resultCode": 125, - "textResult": "", - "currentState": 5 - } - }, - { - "ObjectType": "Desired", - "ComponentName": "CommandRunner", - "ObjectName": "commandArguments", - "WaitSeconds": 2, - "Payload": { - "commandId": "test_3", - "arguments": "sleep 100s", - "timeout": 1, - "singleLineTextResult": true, - "action": 3 - } - }, - { - "ObjectType": "Desired", - "ComponentName": "CommandRunner", - "ObjectName": "commandArguments", - "WaitSeconds": 5, - "Payload": { - "commandId": "test_3", - "action": 4 - } - }, - { - "ObjectType": "Reported", - "ComponentName": "CommandRunner", - "ObjectName": "commandStatus", - "WaitSeconds": 1, - "ExpectedResult": 0, - "Payload": { - "commandId": "test_3", - "resultCode": 62, - "textResult": "", - "currentState": 4 - } - }, - { - "ObjectType": "Desired", - "ComponentName": "CommandRunner", - "ObjectName": "commandArguments", - "Payload": { - "commandId": "test_2", - "action": 4 - } - }, - { - "ObjectType": "Reported", - "ComponentName": "CommandRunner", - "ObjectName": "commandStatus", - "ExpectedResult": 0, - "Payload": { - "commandId": "test_2", - "resultCode": 125, - "textResult": "", - "currentState": 5 - } - }, - { - "ObjectType": "Desired", - "ComponentName": "CommandRunner", - "ObjectName": "commandArguments", - "Payload": { - "commandId": "test_1", - "action": 4 - } - }, - { - "ObjectType": "Reported", - "ComponentName": "CommandRunner", - "ObjectName": "commandStatus", - "ExpectedResult": 0, - "Payload": { - "commandId": "test_1", - "resultCode": 0, - "textResult": "test", - "currentState": 2 - } - }, - { - "Action": "UnloadModule" - }, - { - "RunCommand": "cat /dev/null > /tmp/commandrunner-cache.cache.bak && cp /tmp/commandrunner-cache.cache.bak /etc/osconfig/osconfig_commandrunner.cache && rm -f /tmp/commandrunner-cache.cache.bak" - } -] \ No newline at end of file diff --git a/src/tests/e2e-test-recipes/ConfigurationTests.json b/src/tests/e2e-test-recipes/ConfigurationTests.json index fc06f0802..e69de29bb 100644 --- a/src/tests/e2e-test-recipes/ConfigurationTests.json +++ b/src/tests/e2e-test-recipes/ConfigurationTests.json @@ -1,223 +0,0 @@ -[ - { - "RunCommand": "[ -e /etc/osconfig/osconfig.json ] && cp /etc/osconfig/osconfig.json /etc/osconfig/osconfig.json.bak" - }, - { - "Action": "LoadModule", - "Module": "configuration.so" - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "notImplemented", - "ExpectedResult": 22 - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "notImplemented", - "ExpectedResult": 22 - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredRefreshInterval", - "Payload": 5 - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "refreshInterval", - "Payload": 5 - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredRefreshInterval", - "Payload": 30 - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "refreshInterval", - "Payload": 30 - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredLocalManagementEnabled", - "Payload": "invalid", - "ExpectedResult": 22 - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredLocalManagementEnabled", - "Payload": true - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "localManagementEnabled", - "Payload": true - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredLocalManagementEnabled", - "Payload": false - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "localManagementEnabled", - "Payload": false - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredFullLoggingEnabled", - "Payload": "invalid", - "ExpectedResult": 22 - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredFullLoggingEnabled", - "Payload": true - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "fullLoggingEnabled", - "Payload": true - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredFullLoggingEnabled", - "Payload": false - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "fullLoggingEnabled", - "Payload": false - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredCommandLoggingEnabled", - "Payload": "invalid", - "ExpectedResult": 22 - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredCommandLoggingEnabled", - "Payload": true - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "commandLoggingEnabled", - "Payload": true - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredCommandLoggingEnabled", - "Payload": false - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "commandLoggingEnabled", - "Payload": false - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredIotHubProtocol", - "Payload": "invalid", - "ExpectedResult": 22 - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredIotHubProtocol", - "Payload": "auto" - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "iotHubProtocol", - "Payload": "auto" - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredIotHubProtocol", - "Payload": "mqtt" - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "iotHubProtocol", - "Payload": "mqtt" - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredIotHubProtocol", - "Payload": "mqttWebSocket" - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "iotHubProtocol", - "Payload": "mqttWebSocket" - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredGitManagementEnabled", - "Payload": true - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "gitManagementEnabled", - "Payload": true - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredGitBranch", - "Payload": "foo/test" - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "gitBranch", - "Payload": "foo/test" - }, - { - "ObjectType": "Desired", - "ComponentName": "Configuration", - "ObjectName": "desiredGitManagementEnabled", - "Payload": false - }, - { - "ObjectType": "Reported", - "ComponentName": "Configuration", - "ObjectName": "gitManagementEnabled", - "Payload": false - }, - { - "Action": "UnloadModule" - }, - { - "RunCommand": "[ -e /etc/osconfig/osconfig.json.bak ] && cp /etc/osconfig/osconfig.json.bak /etc/osconfig/osconfig.json" - } -] \ No newline at end of file diff --git a/src/tests/e2e-test-recipes/DeviceInfoTests.json b/src/tests/e2e-test-recipes/DeviceInfoTests.json index 7f9204c25..e69de29bb 100644 --- a/src/tests/e2e-test-recipes/DeviceInfoTests.json +++ b/src/tests/e2e-test-recipes/DeviceInfoTests.json @@ -1,102 +0,0 @@ -[ - { - "Action": "LoadModule", - "Module": "deviceinfo.so" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "osName" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "osVersion" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "cpuType" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "cpuVendorId" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "cpuModel" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "totalMemory" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "freeMemory" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "kernelName" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "kernelRelease" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "kernelVersion" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "productVendor" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "productName" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "productVersion" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "systemCapabilities" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "systemConfiguration" - }, - { - "ObjectType": "Reported", - "ComponentName": "DeviceInfo", - "ObjectName": "osConfigVersion" - }, - { - "ObjectType": "Reported", - "ComponentName": "OsInfo", - "ObjectName": "osName", - "ExpectedResult": 22 - }, - { - "ObjectType": "Desired", - "ComponentName": "DeviceInfo", - "ObjectName": "osName", - "Payload": "type", - "ExpectedResult": 1 - }, - { - "Action": "UnloadModule" - } -] \ No newline at end of file diff --git a/src/tests/e2e-test-recipes/SecurityBaselineTests.json b/src/tests/e2e-test-recipes/SecurityBaselineTests.json index 69d8db0b9..e69de29bb 100644 --- a/src/tests/e2e-test-recipes/SecurityBaselineTests.json +++ b/src/tests/e2e-test-recipes/SecurityBaselineTests.json @@ -1,2278 +0,0 @@ -[ - { - "Action": "LoadModule", - "Module": "securitybaseline.so" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "DoesNotExist", - "ExpectedResult": 22 - }, - { - "ObjectType": "Reported", - "ComponentName": "DoesNotExist", - "ObjectName": "auditEnsurePermissionsOnEtcCronWeekly", - "ExpectedResult": 22 - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcCronWeekly", - "ExpectedResult": 22 - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcHostsAllow", - "ExpectedResult": 22 - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcSshSshdConfig", - "Payload": "600" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshPortIsConfigured", - "Payload": "22" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshBestPracticeProtocol", - "Payload": "2" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshBestPracticeIgnoreRhosts", - "Payload": "yes" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshLogLevelIsSet", - "Payload": "INFO" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshMaxAuthTriesIsSet", - "Payload": "6" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllowUsersIsConfigured", - "Payload": "*@*" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDenyUsersIsConfigured", - "Payload": "root" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllowGroupsIsConfigured", - "Payload": "*" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDenyGroupsConfigured", - "Payload": "root" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshHostbasedAuthenticationIsDisabled", - "Payload": "no" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshPermitRootLoginIsDisabled", - "Payload": "no" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshPermitEmptyPasswordsIsDisabled", - "Payload": "no" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshClientIntervalCountMaxIsConfigured", - "Payload": "0" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshClientAliveIntervalIsConfigured", - "Payload": "3600" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshLoginGraceTimeIsSet", - "Payload": "60" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureOnlyApprovedMacAlgorithmsAreUsed", - "Payload": "hmac-sha2-256,hmac-sha2-256-etm@openssh.com,hmac-sha2-512,hmac-sha2-512-etm@openssh.com" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshWarningBannerIsEnabled", - "Payload": "#######################################################################\n\nAuthorized access only!\n\nIf you are not authorized to access or use this system, disconnect now!\n\n#######################################################################\n" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureUsersCannotSetSshEnvironmentOptions", - "Payload": "no" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAppropriateCiphersForSsh", - "Payload": "aes128-ctr,aes192-ctr,aes256-ctr" - }, - { - "Action": "UnloadModule" - }, - { - "Action": "LoadModule", - "Module": "securitybaseline.so", - "WaitSeconds": 5 - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcSshSshdConfig", - "Payload": "600" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshPortIsConfigured", - "Payload": "22" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshBestPracticeProtocol", - "Payload": "2" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshBestPracticeIgnoreRhosts", - "Payload": "yes" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshLogLevelIsSet", - "Payload": "INFO" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshMaxAuthTriesIsSet", - "Payload": "6" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureAllowUsersIsConfigured", - "Payload": "*@*" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureDenyUsersIsConfigured", - "Payload": "root" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureAllowGroupsIsConfigured", - "Payload": "*" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureDenyGroupsConfigured", - "Payload": "root" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshHostbasedAuthenticationIsDisabled", - "Payload": "no" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshPermitRootLoginIsDisabled", - "Payload": "no" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshPermitEmptyPasswordsIsDisabled", - "Payload": "no" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshClientIntervalCountMaxIsConfigured", - "Payload": "0" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshClientAliveIntervalIsConfigured", - "Payload": "3600" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshLoginGraceTimeIsSet", - "Payload": "60" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureOnlyApprovedMacAlgorithmsAreUsed", - "Payload": "hmac-sha2-256,hmac-sha2-256-etm@openssh.com,hmac-sha2-512,hmac-sha2-512-etm@openssh.com" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureSshWarningBannerIsEnabled", - "Payload": "#######################################################################\n\nAuthorized access only!\n\nIf you are not authorized to access or use this system, disconnect now!\n\n#######################################################################\n" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureUsersCannotSetSshEnvironmentOptions", - "Payload": "no" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureAppropriateCiphersForSsh", - "Payload": "aes128-ctr,aes192-ctr,aes256-ctr" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcIssue", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcIssueNet", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcHostsAllow", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcHostsDeny", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcShadow", - "Payload": "400" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcShadowDash", - "Payload": "400" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcGShadow", - "Payload": "400" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcGShadowDash", - "Payload": "400" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcPasswd", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcPasswdDash", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcGroup", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcGroupDash", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcAnacronTab", - "Payload": "600" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcCronD", - "Payload": "700" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcCronDaily", - "Payload": "700" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcCronHourly", - "Payload": "700" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcCronMonthly", - "Payload": "700" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcCronWeekly", - "Payload": "700" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnEtcMotd", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureRestrictedUserHomeDirectories", - "Payload": "700,750" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePasswordHashingAlgorithm", - "Payload": "6" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureMinDaysBetweenPasswordChanges", - "Payload": "7" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureInactivePasswordLockPeriod", - "Payload": "30" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureMaxDaysBetweenPasswordChanges", - "Payload": "365" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePasswordExpiration", - "Payload": "365" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePasswordExpirationWarning", - "Payload": "7" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureDefaultUmaskForAllUsers", - "Payload": "077" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePermissionsOnBootloaderConfig", - "Payload": "400" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePasswordReuseIsLimited", - "Payload": "5" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsurePasswordCreationRequirements", - "Payload": "3,14,4,-1,-1,-1,-1" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureFilePermissionsForAllRsyslogLogFiles", - "Payload": "600,640" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureUsersDotFilesArentGroupOrWorldWritable", - "Payload": "600,644,664,700,744" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "initEnsureUnnecessaryAccountsAreRemoved", - "Payload": "games,osconfig" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcSshSshdConfig" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshPortIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshBestPracticeProtocol" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshBestPracticeIgnoreRhosts" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshLogLevelIsSet" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshMaxAuthTriesIsSet" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllowUsersIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDenyUsersIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllowGroupsIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDenyGroupsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshHostbasedAuthenticationIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshPermitRootLoginIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshPermitEmptyPasswordsIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshClientIntervalCountMaxIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshLoginGraceTimeIsSet" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureOnlyApprovedMacAlgorithmsAreUsed" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshWarningBannerIsEnabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureUsersCannotSetSshEnvironmentOptions" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAppropriateCiphersForSsh" - }, - { - "ObjectType": "Desired", - "ComponentName": "DoesNotExist", - "ObjectName": "remediateEnsurePermissionsOnEtcCronWeekly", - "ExpectedResult": 22 - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcIssue", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcIssueNet", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcHostsAllow", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcHostsDeny", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcSshSshdConfig" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcShadow", - "Payload": "400" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcShadowDash", - "Payload": "400" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcGShadow", - "Payload": "400" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcGShadowDash", - "Payload": "400" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcPasswd", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcPasswdDash", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcGroup", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcGroupDash", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcAnacronTab", - "Payload": "600" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcCronD", - "Payload": "700" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcCronDaily", - "Payload": "700" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcCronHourly", - "Payload": "700" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcCronMonthly", - "Payload": "700" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcCronWeekly", - "Payload": "700" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnEtcMotd", - "Payload": "644" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureInetdNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureXinetdNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRshServerNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNisNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureTftpdNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureReadaheadFedoraNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureBluetoothHiddNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIsdnUtilsBaseNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIsdnUtilsKdumpToolsNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIscDhcpdServerNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSendmailNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSldapdNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureBind9NotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDovecotCoreNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAuditdInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePrelinkIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureTalkClientIsNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureCronServiceIsEnabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAuditdServiceIsRunning" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureKernelSupportForCpuNx" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllTelnetdPackagesUninstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNodevOptionOnHomePartition" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNodevOptionOnTmpPartition" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNodevOptionOnVarTmpPartition" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNosuidOptionOnTmpPartition" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNosuidOptionOnVarTmpPartition" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoexecOptionOnVarTmpPartition" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoexecOptionOnDevShmPartition" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNodevOptionEnabledForAllRemovableMedia" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoexecOptionEnabledForAllRemovableMedia" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNosuidOptionEnabledForAllRemovableMedia" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoexecNosuidOptionsEnabledForAllNfsMounts" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllEtcPasswdGroupsExistInEtcGroup" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoDuplicateUidsExist" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoDuplicateGidsExist" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoDuplicateUserNamesExist" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoDuplicateGroupsExist" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureShadowGroupIsEmpty" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRootGroupExists" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllAccountsHavePasswords" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNonRootAccountsHaveUniqueUidsGreaterThanZero" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoLegacyPlusEntriesInEtcPasswd" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoLegacyPlusEntriesInEtcShadow" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoLegacyPlusEntriesInEtcGroup" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDefaultRootAccountGroupIsGidZero" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRootIsOnlyUidZeroAccount" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllUsersHomeDirectoriesExist" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureUsersOwnTheirHomeDirectories" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRestrictedUserHomeDirectories", - "Payload": "700,750" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePasswordHashingAlgorithm", - "Payload": "6" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureMinDaysBetweenPasswordChanges", - "Payload": "7" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureInactivePasswordLockPeriod", - "Payload": "30" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureMaxDaysBetweenPasswordChanges", - "Payload": "365" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePasswordExpiration", - "Payload": "365" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePasswordExpirationWarning", - "Payload": "7" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSystemAccountsAreNonLogin" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAuthenticationRequiredForSingleUserMode" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDotDoesNotAppearInRootsPath" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRemoteLoginWarningBannerIsConfigured" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureLocalLoginWarningBannerIsConfigured" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSuRestrictedToRootGroup" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDefaultUmaskForAllUsers", - "Payload": "077" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAutomountingDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureKernelCompiledFromApprovedSources" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDefaultDenyFirewallPolicyIsSet" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePacketRedirectSendingIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIcmpRedirectsIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSourceRoutedPacketsIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAcceptingSourceRoutedPacketsIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIgnoringBogusIcmpBroadcastResponses" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIgnoringIcmpEchoPingsToMulticast" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureMartianPacketLoggingIsEnabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureReversePathSourceValidationIsEnabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureTcpSynCookiesAreEnabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSystemNotActingAsNetworkSniffer" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllWirelessInterfacesAreDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureIpv6ProtocolIsEnabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDccpIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSctpIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDisabledSupportForRds" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureTipcIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureZeroconfNetworkingIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePermissionsOnBootloaderConfig", - "Payload": "400" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePasswordReuseIsLimited", - "Payload": "5" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureMountingOfUsbStorageDevicesIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureCoreDumpsAreRestricted" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePasswordCreationRequirements", - "Payload": "3,14,4,-1,-1,-1,-1" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureLockoutForFailedPasswordAttempts" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDisabledInstallationOfCramfsFileSystem" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDisabledInstallationOfFreevxfsFileSystem" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDisabledInstallationOfHfsFileSystem" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDisabledInstallationOfHfsplusFileSystem" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDisabledInstallationOfJffs2FileSystem" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureVirtualMemoryRandomizationIsEnabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllBootloadersHavePasswordProtectionEnabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureLoggingIsConfigured" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSyslogPackageIsInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSystemdJournaldServicePersistsLogMessages" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureALoggingServiceIsEnabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureFilePermissionsForAllRsyslogLogFiles", - "Payload": "600,640" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureLoggerConfigurationFilesAreRestricted" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllRsyslogLogFilesAreOwnedByAdmGroup" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllRsyslogLogFilesAreOwnedBySyslogUser" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRsyslogNotAcceptingRemoteMessages" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSyslogRotaterServiceIsEnabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureTelnetServiceIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRcprshServiceIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureTftpServiceisDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAtCronIsRestrictedToAuthorizedUsers" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshPortIsConfigured" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshBestPracticeProtocol" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshBestPracticeIgnoreRhosts" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshLogLevelIsSet" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshMaxAuthTriesIsSet" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllowUsersIsConfigured" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDenyUsersIsConfigured" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAllowGroupsIsConfigured" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureDenyGroupsConfigured" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshHostbasedAuthenticationIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshPermitRootLoginIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshPermitEmptyPasswordsIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshClientIntervalCountMaxIsConfigured" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshLoginGraceTimeIsSet" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureOnlyApprovedMacAlgorithmsAreUsed" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSshWarningBannerIsEnabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureUsersCannotSetSshEnvironmentOptions" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAppropriateCiphersForSsh" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureAvahiDaemonServiceIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureCupsServiceisDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePostfixPackageIsUninstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePostfixNetworkListeningIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRpcgssdServiceIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRpcidmapdServiceIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsurePortmapServiceIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNetworkFileSystemServiceIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRpcsvcgssdServiceIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSnmpServerIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRsynServiceIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNisServerIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRshClientNotInstalled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureSmbWithSambaIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureUsersDotFilesArentGroupOrWorldWritable", - "Payload": "600,644,664,700,744" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoUsersHaveDotForwardFiles" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoUsersHaveDotNetrcFiles" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureNoUsersHaveDotRhostsFiles" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureRloginServiceIsDisabled" - }, - { - "ObjectType": "Desired", - "ComponentName": "SecurityBaseline", - "ObjectName": "remediateEnsureUnnecessaryAccountsAreRemoved", - "Payload": "games,osconfig" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcIssue" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcIssueNet" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcHostsAllow" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcHostsDeny" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcSshSshdConfig" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcShadow" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcShadowDash" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcGShadow" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcGShadowDash" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcPasswd" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcPasswdDash" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcGroup" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcGroupDash" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcAnacronTab" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcCronD" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcCronDaily" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcCronHourly" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcCronMonthly" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcCronWeekly" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnEtcMotd" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureKernelSupportForCpuNx" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNodevOptionOnHomePartition" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNodevOptionOnTmpPartition" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNodevOptionOnVarTmpPartition" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNosuidOptionOnTmpPartition" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNosuidOptionOnVarTmpPartition" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoexecOptionOnVarTmpPartition" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoexecOptionOnDevShmPartition" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNodevOptionEnabledForAllRemovableMedia" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoexecOptionEnabledForAllRemovableMedia" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNosuidOptionEnabledForAllRemovableMedia" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoexecNosuidOptionsEnabledForAllNfsMounts" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureInetdNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureXinetdNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllTelnetdPackagesUninstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRshServerNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNisNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureTftpdNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureReadaheadFedoraNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureBluetoothHiddNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIsdnUtilsBaseNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIsdnUtilsKdumpToolsNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIscDhcpdServerNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSendmailNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSldapdNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureBind9NotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDovecotCoreNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAuditdInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllEtcPasswdGroupsExistInEtcGroup" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoDuplicateUidsExist" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoDuplicateGidsExist" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoDuplicateUserNamesExist" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoDuplicateGroupsExist" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureShadowGroupIsEmpty" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRootGroupExists" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllAccountsHavePasswords" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNonRootAccountsHaveUniqueUidsGreaterThanZero" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoLegacyPlusEntriesInEtcPasswd" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoLegacyPlusEntriesInEtcShadow" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoLegacyPlusEntriesInEtcGroup" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDefaultRootAccountGroupIsGidZero" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRootIsOnlyUidZeroAccount" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllUsersHomeDirectoriesExist" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureUsersOwnTheirHomeDirectories" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRestrictedUserHomeDirectories" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePasswordHashingAlgorithm" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureMinDaysBetweenPasswordChanges" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureInactivePasswordLockPeriod" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePasswordExpiration" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePasswordExpirationWarning" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSystemAccountsAreNonLogin" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAuthenticationRequiredForSingleUserMode" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePrelinkIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureTalkClientIsNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDotDoesNotAppearInRootsPath" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureCronServiceIsEnabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRemoteLoginWarningBannerIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureLocalLoginWarningBannerIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAuditdServiceIsRunning" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSuRestrictedToRootGroup" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDefaultUmaskForAllUsers" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAutomountingDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureKernelCompiledFromApprovedSources" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDefaultDenyFirewallPolicyIsSet" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePacketRedirectSendingIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIcmpRedirectsIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSourceRoutedPacketsIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAcceptingSourceRoutedPacketsIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIgnoringBogusIcmpBroadcastResponses" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIgnoringIcmpEchoPingsToMulticast" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureMartianPacketLoggingIsEnabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureReversePathSourceValidationIsEnabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureTcpSynCookiesAreEnabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSystemNotActingAsNetworkSniffer" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllWirelessInterfacesAreDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureIpv6ProtocolIsEnabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDccpIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSctpIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDisabledSupportForRds" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureTipcIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureZeroconfNetworkingIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePermissionsOnBootloaderConfig" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePasswordReuseIsLimited" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureMountingOfUsbStorageDevicesIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureCoreDumpsAreRestricted" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePasswordCreationRequirements" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureLockoutForFailedPasswordAttempts" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDisabledInstallationOfCramfsFileSystem" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDisabledInstallationOfFreevxfsFileSystem" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDisabledInstallationOfHfsFileSystem" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDisabledInstallationOfHfsplusFileSystem" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDisabledInstallationOfJffs2FileSystem" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureVirtualMemoryRandomizationIsEnabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllBootloadersHavePasswordProtectionEnabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureLoggingIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSyslogPackageIsInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSystemdJournaldServicePersistsLogMessages" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureALoggingServiceIsEnabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureFilePermissionsForAllRsyslogLogFiles" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureLoggerConfigurationFilesAreRestricted" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllRsyslogLogFilesAreOwnedByAdmGroup" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllRsyslogLogFilesAreOwnedBySyslogUser" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRsyslogNotAcceptingRemoteMessages" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSyslogRotaterServiceIsEnabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureTelnetServiceIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRcprshServiceIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureTftpServiceisDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAtCronIsRestrictedToAuthorizedUsers" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshPortIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshBestPracticeProtocol" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshBestPracticeIgnoreRhosts" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshLogLevelIsSet" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshMaxAuthTriesIsSet" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllowUsersIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDenyUsersIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAllowGroupsIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureDenyGroupsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshHostbasedAuthenticationIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshPermitRootLoginIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshPermitEmptyPasswordsIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshClientIntervalCountMaxIsConfigured" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshLoginGraceTimeIsSet" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureOnlyApprovedMacAlgorithmsAreUsed" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSshWarningBannerIsEnabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureUsersCannotSetSshEnvironmentOptions" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAppropriateCiphersForSsh" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureAvahiDaemonServiceIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureCupsServiceisDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePostfixPackageIsUninstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePostfixNetworkListeningIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRpcgssdServiceIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRpcidmapdServiceIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsurePortmapServiceIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNetworkFileSystemServiceIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRpcsvcgssdServiceIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSnmpServerIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRsynServiceIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNisServerIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRshClientNotInstalled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureSmbWithSambaIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureUsersDotFilesArentGroupOrWorldWritable" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoUsersHaveDotForwardFiles" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoUsersHaveDotNetrcFiles" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureNoUsersHaveDotRhostsFiles" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureRloginServiceIsDisabled" - }, - { - "ObjectType": "Reported", - "ComponentName": "SecurityBaseline", - "ObjectName": "auditEnsureUnnecessaryAccountsAreRemoved" - }, - { - "Action": "UnloadModule" - } -] \ No newline at end of file