[BESAdmin-Announcements] SCM Content UPDATE: DISA Unix Checklists ( With Remediation)
Announcements for BES Administrators
besadmin-announcements at bigmail.bigfix.com
Thu Jun 4 01:14:38 PDT 2015
IBM Endpoint Manager for Security and Compliance
Security Configuration Management (SCM)
The Security and Compliance team at IBM has updated the content in the
following sites. See details below:
Updated Sites:
| Site Name | Site Version
----+-------------------------------------------------+----------------------
1 | DISA STIG Checklist for RHEL 6 - RG03 | 12
----+-------------------------------------------------+----------------------
2 | SCM Checklist for DISA STIG on RHEL 6 - RG03 | 8
Changelist:
The DISA Red Hat 6 content was refreshed to version 1, release 7.
The following Fixlets were updated:
RHEL-06-000005: Added customer-editable parameter PARAM_VALUE
RHEL-06-000008: Now checks for particular gpg pubkeys
RHEL-06-000030: No longer looks at /etc/pam.d/system-auth-ac
RHEL-06-000045: Now only looks at regular files
RHEL-06-000047: Now only looks at regular files
RHEL-06-000061: Now looks at system-auth and password-auth instead
of system-auth-ac and password-auth-ac
RHEL-06-000062: Now looks for the setting in all files
in /etc/pam.d/ directory
RHEL-06-000133: Added EXCLUDES parameter for files to exclude
RHEL-06-000134: Added EXCLUDES parameter for files to exclude
RHEL-06-000135: Added EXCLUDES parameter for files to exclude
RHEL-06-000165: Now looks in audit.rules instead of running
auditctl
RHEL-06-000167: Now looks in audit.rules instead of running
auditctl
RHEL-06-000169: Now looks in audit.rules instead of running
auditctl
RHEL-06-000171: Now looks in audit.rules instead of running
auditctl
RHEL-06-000184: Now looks in audit.rules instead of running
auditctl
RHEL-06-000185: Now looks in audit.rules instead of running
auditctl
RHEL-06-000188: Now looks in audit.rules instead of running
auditctl
RHEL-06-000189: Now looks in audit.rules instead of running
auditctl
RHEL-06-000190: Now looks in audit.rules instead of running
auditctl
RHEL-06-000191: Now looks in audit.rules instead of running
auditctl
RHEL-06-000192: Now looks in audit.rules instead of running
auditctl
RHEL-06-000193: Now looks in audit.rules instead of running
auditctl
RHEL-06-000194: Now looks in audit.rules instead of running
auditctl
RHEL-06-000195: Now looks in audit.rules instead of running
auditctl
RHEL-06-000196: Now looks in audit.rules instead of running
auditctl
RHEL-06-000199: Now looks in audit.rules instead of running
auditctl
RHEL-06-000200: Now looks in audit.rules instead of running
auditctl
RHEL-06-000202: Now looks in audit.rules instead of running
auditctl
RHEL-06-000282: Added selinuxfs to EXCLUDEFS for globalfind
RHEL-06-000286: Now looks at /etc/init/control-alt-delete.override
RHEL-06-000308: Now also checks in /etc/security/limits.d/*.conf
RHEL-06-000356: Now looks in password-auth instead of
password-auth-ac
RHEL-06-000357: Now also checks /etc/pam.d/password-auth, and uses
900 as default if the setting does not exist
RHEL-06-000506: Removed
RHEL-06-000017: Added
RHEL-06-000018: Added
RHEL-06-000020: Added
RHEL-06-000023: Added
RHEL-06-000025: Added
RHEL-06-000163: Added
RHEL-06-000372: Added
RHEL-06-000528: Added
RHEL-06-000529: Added
*Site versions provided for air-gap customers.
We hope you find this latest release of SCM content useful and effective.
Thank you!
-- The IBM Endpoint Manager for Security and Compliance
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20150604/6f282b0e/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ecblank.gif
Type: image/gif
Size: 45 bytes
Desc: not available
URL: <http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20150604/6f282b0e/attachment.gif>
More information about the Besadmin-announcements
mailing list