disable_host_authDisable Host-Based Authentication
file_permissions_sshd_private_keyVerify Permissions on SSH Server Private *_key Key Files
file_permissions_sshd_pub_keyVerify Permissions on SSH Server Public *.pub Key Files
harden_ssh_client_crypto_policyHarden SSH client Crypto Policy
sshd_allow_only_protocol2Allow Only SSH Protocol 2
sshd_disable_compressionDisable Compression Or Set Compression to delayed
sshd_disable_empty_passwordsDisable SSH Access via Empty Passwords
sshd_disable_gssapi_authDisable GSSAPI Authentication
sshd_disable_kerb_authDisable Kerberos Authentication
sshd_disable_rhostsDisable SSH Support for .rhosts Files
sshd_disable_rhosts_rsaDisable SSH Support for Rhosts RSA Authentication
sshd_disable_root_loginDisable SSH Root Login
sshd_disable_user_known_hostsDisable SSH Support for User Known Hosts
sshd_do_not_permit_user_envDo Not Allow SSH Environment Options
sshd_enable_strictmodesEnable Use of Strict Mode Checking
sshd_enable_warning_bannerEnable SSH Warning Banner
sshd_enable_warning_banner_netEnable SSH Warning Banner
sshd_enable_x11_forwardingEnable Encrypted X11 Forwarding
sshd_print_last_logEnable SSH Print Last Log
sshd_set_idle_timeoutSet SSH Idle Timeout Interval
sshd_set_keepaliveSet SSH Client Alive Count Max
sshd_set_keepalive_0Set SSH Client Alive Count Max to zero
sshd_set_loglevel_infoSet LogLevel to INFO
sshd_set_loglevel_verboseSet SSH Daemon LogLevel to VERBOSE
sshd_use_priv_separationEnable Use of Privilege Separation
accounts_umask_etc_login_defsEnsure the Default Umask is Set Correctly in login.defs
accounts_umask_etc_profileEnsure the Default Umask is Set Correctly in /etc/profile
dir_perms_world_writable_sticky_bitsVerify that All World-Writable Directories Have Sticky Bits Set
directory_permissions_var_log_auditSystem Audit Logs Must Have Mode 0750 or Less Permissive
file_groupowner_etc_groupVerify Group Who Owns group File
file_groupowner_etc_gshadowVerify Group Who Owns gshadow File
file_groupowner_etc_passwdVerify Group Who Owns passwd File
file_groupowner_etc_shadowVerify Group Who Owns shadow File
file_owner_etc_groupVerify User Who Owns group File
file_owner_etc_gshadowVerify User Who Owns gshadow File
file_owner_etc_passwdVerify User Who Owns passwd File
file_owner_etc_shadowVerify User Who Owns shadow File
file_ownership_binary_dirsVerify that System Executables Have Root Ownership
file_ownership_library_dirsVerify that Shared Library Files Have Root Ownership
file_ownership_var_log_auditSystem Audit Logs Must Be Owned By Root
file_permissions_binary_dirsVerify that System Executables Have Restrictive Permissions
file_permissions_etc_groupVerify Permissions on group File
file_permissions_etc_gshadowVerify Permissions on gshadow File
file_permissions_etc_passwdVerify Permissions on passwd File
file_permissions_etc_shadowVerify Permissions on shadow File
file_permissions_home_dirsEnsure that User Home Directories are not Group-Writable or World-Readable
file_permissions_library_dirsVerify that Shared Library Files Have Restrictive Permissions
file_permissions_sshd_private_keyVerify Permissions on SSH Server Private *_key Key Files
file_permissions_sshd_pub_keyVerify Permissions on SSH Server Public *.pub Key Files
file_permissions_unauthorized_world_writableEnsure No World-Writable Files Exist
mount_option_dev_shm_nodevAdd nodev Option to /dev/shm
mount_option_dev_shm_nosuidAdd nosuid Option to /dev/shm
rsyslog_files_groupownershipEnsure Log Files Are Owned By Appropriate Group
rsyslog_files_ownershipEnsure Log Files Are Owned By Appropriate User
rsyslog_files_permissionsEnsure System Log Files Have Correct Permissions
sysctl_fs_protected_hardlinksEnable Kernel Parameter to Enforce DAC on Hardlinks
sysctl_fs_protected_symlinksEnable Kernel Parameter to Enforce DAC on Symlinks
audit_rules_dac_modification_chmodRecord Events that Modify the System's Discretionary Access Controls - chmod
audit_rules_dac_modification_chownRecord Events that Modify the System's Discretionary Access Controls - chown
audit_rules_dac_modification_fchmodRecord Events that Modify the System's Discretionary Access Controls - fchmod
audit_rules_dac_modification_fchmodatRecord Events that Modify the System's Discretionary Access Controls - fchmodat
audit_rules_dac_modification_fchownRecord Events that Modify the System's Discretionary Access Controls - fchown
audit_rules_dac_modification_fchownatRecord Events that Modify the System's Discretionary Access Controls - fchownat
audit_rules_dac_modification_fremovexattrRecord Events that Modify the System's Discretionary Access Controls - fremovexattr
audit_rules_dac_modification_fsetxattrRecord Events that Modify the System's Discretionary Access Controls - fsetxattr
audit_rules_dac_modification_lchownRecord Events that Modify the System's Discretionary Access Controls - lchown
audit_rules_dac_modification_lremovexattrRecord Events that Modify the System's Discretionary Access Controls - lremovexattr
audit_rules_dac_modification_lsetxattrRecord Events that Modify the System's Discretionary Access Controls - lsetxattr
audit_rules_dac_modification_removexattrRecord Events that Modify the System's Discretionary Access Controls - removexattr
audit_rules_dac_modification_setxattrRecord Events that Modify the System's Discretionary Access Controls - setxattr
audit_rules_file_deletion_events_renameEnsure auditd Collects File Deletion Events by User - rename
audit_rules_file_deletion_events_renameatEnsure auditd Collects File Deletion Events by User - renameat
audit_rules_file_deletion_events_rmdirEnsure auditd Collects File Deletion Events by User - rmdir
audit_rules_file_deletion_events_unlinkEnsure auditd Collects File Deletion Events by User - unlink
audit_rules_file_deletion_events_unlinkatEnsure auditd Collects File Deletion Events by User - unlinkat
audit_rules_mac_modificationRecord Events that Modify the System's Mandatory Access Controls
audit_rules_media_exportEnsure auditd Collects Information on Exporting to Media (successful)
audit_rules_networkconfig_modificationRecord Events that Modify the System's Network Environment
audit_rules_privileged_commandsEnsure auditd Collects Information on the Use of Privileged Commands
audit_rules_session_eventsRecord Attempts to Alter Process and Session Initiation Information
audit_rules_sysadmin_actionsEnsure auditd Collects System Administrator Actions
audit_rules_time_adjtimexRecord attempts to alter time through adjtimex
audit_rules_time_clock_settimeRecord Attempts to Alter Time Through clock_settime
audit_rules_time_settimeofdayRecord attempts to alter time through settimeofday
audit_rules_time_stimeRecord Attempts to Alter Time Through stime
audit_rules_time_watch_localtimeRecord Attempts to Alter the localtime File
audit_rules_usergroup_modificationRecord Events that Modify User/Group Information
directory_access_var_log_auditRecord Access Events to Audit Log Directory
service_auditd_enabledEnable auditd Service
audit_rules_dac_modification_chmodRecord Events that Modify the System's Discretionary Access Controls - chmod
audit_rules_dac_modification_chownRecord Events that Modify the System's Discretionary Access Controls - chown
audit_rules_dac_modification_fchmodRecord Events that Modify the System's Discretionary Access Controls - fchmod
audit_rules_dac_modification_fchmodatRecord Events that Modify the System's Discretionary Access Controls - fchmodat
audit_rules_dac_modification_fchownRecord Events that Modify the System's Discretionary Access Controls - fchown
audit_rules_dac_modification_fchownatRecord Events that Modify the System's Discretionary Access Controls - fchownat
audit_rules_dac_modification_fremovexattrRecord Events that Modify the System's Discretionary Access Controls - fremovexattr
audit_rules_dac_modification_fsetxattrRecord Events that Modify the System's Discretionary Access Controls - fsetxattr
audit_rules_dac_modification_lchownRecord Events that Modify the System's Discretionary Access Controls - lchown
audit_rules_dac_modification_lremovexattrRecord Events that Modify the System's Discretionary Access Controls - lremovexattr
audit_rules_dac_modification_lsetxattrRecord Events that Modify the System's Discretionary Access Controls - lsetxattr
audit_rules_dac_modification_removexattrRecord Events that Modify the System's Discretionary Access Controls - removexattr
audit_rules_dac_modification_setxattrRecord Events that Modify the System's Discretionary Access Controls - setxattr
audit_rules_file_deletion_events_renameEnsure auditd Collects File Deletion Events by User - rename
audit_rules_file_deletion_events_renameatEnsure auditd Collects File Deletion Events by User - renameat
audit_rules_file_deletion_events_rmdirEnsure auditd Collects File Deletion Events by User - rmdir
audit_rules_file_deletion_events_unlinkEnsure auditd Collects File Deletion Events by User - unlink
audit_rules_file_deletion_events_unlinkatEnsure auditd Collects File Deletion Events by User - unlinkat
audit_rules_mac_modificationRecord Events that Modify the System's Mandatory Access Controls
audit_rules_media_exportEnsure auditd Collects Information on Exporting to Media (successful)
audit_rules_networkconfig_modificationRecord Events that Modify the System's Network Environment
audit_rules_privileged_commandsEnsure auditd Collects Information on the Use of Privileged Commands
audit_rules_session_eventsRecord Attempts to Alter Process and Session Initiation Information
audit_rules_sysadmin_actionsEnsure auditd Collects System Administrator Actions
audit_rules_time_adjtimexRecord attempts to alter time through adjtimex
audit_rules_time_clock_settimeRecord Attempts to Alter Time Through clock_settime
audit_rules_time_settimeofdayRecord attempts to alter time through settimeofday
audit_rules_time_stimeRecord Attempts to Alter Time Through stime
audit_rules_time_watch_localtimeRecord Attempts to Alter the localtime File
audit_rules_usergroup_modificationRecord Events that Modify User/Group Information
directory_access_var_log_auditRecord Access Events to Audit Log Directory
service_auditd_enabledEnable auditd Service
accounts_logon_fail_delayEnsure the Logon Failure Delay is Set Correctly in login.defs
accounts_max_concurrent_login_sessionsLimit the Number of Concurrent Login Sessions Allowed Per User
accounts_maximum_age_login_defsSet Password Maximum Age
accounts_minimum_age_login_defsSet Password Minimum Age
accounts_password_all_shadowedVerify All Account Password Hashes are Shadowed
accounts_password_minlen_login_defsSet Password Minimum Length in login.defs
accounts_password_warn_age_login_defsSet Password Warning Age
accounts_root_path_dirs_no_writeEnsure that Root's Path Does Not Include World or Group-Writable Directories
accounts_umask_etc_login_defsEnsure the Default Umask is Set Correctly in login.defs
accounts_umask_etc_profileEnsure the Default Umask is Set Correctly in /etc/profile
audit_rules_dac_modification_chmodRecord Events that Modify the System's Discretionary Access Controls - chmod
audit_rules_dac_modification_chownRecord Events that Modify the System's Discretionary Access Controls - chown
audit_rules_dac_modification_fchmodRecord Events that Modify the System's Discretionary Access Controls - fchmod
audit_rules_dac_modification_fchmodatRecord Events that Modify the System's Discretionary Access Controls - fchmodat
audit_rules_dac_modification_fchownRecord Events that Modify the System's Discretionary Access Controls - fchown
audit_rules_dac_modification_fchownatRecord Events that Modify the System's Discretionary Access Controls - fchownat
audit_rules_dac_modification_fremovexattrRecord Events that Modify the System's Discretionary Access Controls - fremovexattr
audit_rules_dac_modification_fsetxattrRecord Events that Modify the System's Discretionary Access Controls - fsetxattr
audit_rules_dac_modification_lchownRecord Events that Modify the System's Discretionary Access Controls - lchown
audit_rules_dac_modification_lremovexattrRecord Events that Modify the System's Discretionary Access Controls - lremovexattr
audit_rules_dac_modification_lsetxattrRecord Events that Modify the System's Discretionary Access Controls - lsetxattr
audit_rules_dac_modification_removexattrRecord Events that Modify the System's Discretionary Access Controls - removexattr
audit_rules_dac_modification_setxattrRecord Events that Modify the System's Discretionary Access Controls - setxattr
audit_rules_file_deletion_events_renameEnsure auditd Collects File Deletion Events by User - rename
audit_rules_file_deletion_events_renameatEnsure auditd Collects File Deletion Events by User - renameat
audit_rules_file_deletion_events_rmdirEnsure auditd Collects File Deletion Events by User - rmdir
audit_rules_file_deletion_events_unlinkEnsure auditd Collects File Deletion Events by User - unlink
audit_rules_file_deletion_events_unlinkatEnsure auditd Collects File Deletion Events by User - unlinkat
audit_rules_immutableMake the auditd Configuration Immutable
audit_rules_mac_modificationRecord Events that Modify the System's Mandatory Access Controls
audit_rules_media_exportEnsure auditd Collects Information on Exporting to Media (successful)
audit_rules_networkconfig_modificationRecord Events that Modify the System's Network Environment
audit_rules_privileged_commandsEnsure auditd Collects Information on the Use of Privileged Commands
audit_rules_session_eventsRecord Attempts to Alter Process and Session Initiation Information
audit_rules_sysadmin_actionsEnsure auditd Collects System Administrator Actions
audit_rules_time_adjtimexRecord attempts to alter time through adjtimex
audit_rules_time_clock_settimeRecord Attempts to Alter Time Through clock_settime
audit_rules_time_settimeofdayRecord attempts to alter time through settimeofday
audit_rules_time_stimeRecord Attempts to Alter Time Through stime
audit_rules_time_watch_localtimeRecord Attempts to Alter the localtime File
audit_rules_usergroup_modificationRecord Events that Modify User/Group Information
auditd_audispd_syslog_plugin_activatedConfigure auditd to use audispd's syslog plugin
auditd_data_disk_error_actionConfigure auditd Disk Error Action on Disk Error
auditd_data_disk_full_actionConfigure auditd Disk Full Action when Disk Space Is Full
auditd_data_retention_action_mail_acctConfigure auditd mail_acct Action on Low Disk Space
auditd_data_retention_admin_space_left_actionConfigure auditd admin_space_left Action on Low Disk Space
auditd_data_retention_max_log_fileConfigure auditd Max Log File Size
auditd_data_retention_max_log_file_actionConfigure auditd max_log_file_action Upon Reaching Maximum Log Size
auditd_data_retention_num_logsConfigure auditd Number of Logs Retained
auditd_data_retention_space_left_actionConfigure auditd space_left Action on Low Disk Space
avahi_disable_publishingDisable Avahi Publishing
chronyd_specify_remote_serverA remote time server for Chrony is configured
dhcp_server_minimize_served_infoMinimize Served Information
dir_perms_world_writable_sticky_bitsVerify that All World-Writable Directories Have Sticky Bits Set
directory_access_var_log_auditRecord Access Events to Audit Log Directory
directory_permissions_var_log_auditSystem Audit Logs Must Have Mode 0750 or Less Permissive
disable_host_authDisable Host-Based Authentication
display_login_attemptsEnsure PAM Displays Last Logon/Access Notification
ensure_logrotate_activatedEnsure Logrotate Runs Periodically
file_groupowner_etc_groupVerify Group Who Owns group File
file_groupowner_etc_gshadowVerify Group Who Owns gshadow File
file_groupowner_etc_passwdVerify Group Who Owns passwd File
file_groupowner_etc_shadowVerify Group Who Owns shadow File
file_owner_etc_groupVerify User Who Owns group File
file_owner_etc_gshadowVerify User Who Owns gshadow File
file_owner_etc_passwdVerify User Who Owns passwd File
file_owner_etc_shadowVerify User Who Owns shadow File
file_ownership_binary_dirsVerify that System Executables Have Root Ownership
file_ownership_library_dirsVerify that Shared Library Files Have Root Ownership
file_ownership_var_log_auditSystem Audit Logs Must Be Owned By Root
file_permissions_binary_dirsVerify that System Executables Have Restrictive Permissions
file_permissions_etc_groupVerify Permissions on group File
file_permissions_etc_gshadowVerify Permissions on gshadow File
file_permissions_etc_passwdVerify Permissions on passwd File
file_permissions_etc_shadowVerify Permissions on shadow File
file_permissions_home_dirsEnsure that User Home Directories are not Group-Writable or World-Readable
file_permissions_library_dirsVerify that Shared Library Files Have Restrictive Permissions
file_permissions_sshd_private_keyVerify Permissions on SSH Server Private *_key Key Files
file_permissions_sshd_pub_keyVerify Permissions on SSH Server Public *.pub Key Files
file_permissions_unauthorized_world_writableEnsure No World-Writable Files Exist
gid_passwd_group_sameAll GIDs referenced in /etc/passwd must be defined in /etc/group
harden_ssh_client_crypto_policyHarden SSH client Crypto Policy
kernel_module_ipv6_option_disabledDisable IPv6 Networking Support Automatic Loading
kernel_module_rds_disabledDisable RDS Support
kernel_module_tipc_disabledDisable TIPC Support
mount_option_dev_shm_nodevAdd nodev Option to /dev/shm
mount_option_dev_shm_nosuidAdd nosuid Option to /dev/shm
no_direct_root_loginsDirect root Logins Not Allowed
no_empty_passwordsPrevent Login to Accounts With Empty Password
no_netrc_filesVerify No netrc Files Exist
no_password_auth_for_systemaccountsEnsure that System Accounts Are Locked
no_rsh_trust_filesRemove Rsh Trust Files
ntpd_specify_multiple_serversSpecify Additional Remote NTP Servers
ntpd_specify_remote_serverSpecify a Remote NTP Server
package_MFEhiplsm_installedInstall the Host Intrusion Prevention System (HIPS) Module
package_audit_installedEnsure the audit Subsystem is Installed
package_cron_installedInstall the cron service
package_inetutils-telnetd_removedUninstall the inet-based telnet server
package_ntp_installedInstall the ntp service
package_openssh-server_installedInstall the OpenSSH Server Package
package_openssh_installedInstall the OpenSSH Client and Server Package
package_rsyslog_installedEnsure rsyslog is Installed
package_syslogng_installedEnsure syslog-ng is Installed
package_telnetd-ssl_removedUninstall the ssl compliant telnet server
package_telnetd_removedUninstall the telnet server
partition_for_homeEnsure /home Located On Separate Partition
partition_for_tmpEnsure /tmp Located On Separate Partition
partition_for_varEnsure /var Located On Separate Partition
partition_for_var_logEnsure /var/log Located On Separate Partition
partition_for_var_log_auditEnsure /var/log/audit Located On Separate Partition
postfix_client_configure_mail_aliasConfigure System to Forward All Mail For The Root Account
restrict_serial_port_loginsRestrict Serial Port Root Logins
root_path_no_dotEnsure that Root's Path Does Not Include Relative Paths or Null Directories
rsyslog_accept_remote_messages_tcpEnable rsyslog to Accept Messages via TCP, if Acting As Log Server
rsyslog_accept_remote_messages_udpEnable rsyslog to Accept Messages via UDP, if Acting As Log Server
rsyslog_files_groupownershipEnsure Log Files Are Owned By Appropriate Group
rsyslog_files_ownershipEnsure Log Files Are Owned By Appropriate User
rsyslog_files_permissionsEnsure System Log Files Have Correct Permissions
rsyslog_remote_loghostEnsure Logs Sent To Remote Host
securetty_root_login_console_onlyRestrict Virtual Console Root Logins
service_auditd_enabledEnable auditd Service
service_cron_enabledEnable cron Service
service_ip6tables_enabledVerify ip6tables Enabled if Using IPv6
service_iptables_enabledVerify iptables Enabled
service_ntp_enabledEnable the NTP Daemon
service_ntpd_enabledEnable the NTP Daemon
service_rsyslog_enabledEnable rsyslog Service
service_syslogng_enabledEnable syslog-ng Service
set_ip6tables_default_ruleSet Default ip6tables Policy for Incoming Packets
set_iptables_default_ruleSet Default iptables Policy for Incoming Packets
set_iptables_default_rule_forwardSet Default iptables Policy for Forwarded Packets
sshd_allow_only_protocol2Allow Only SSH Protocol 2
sshd_disable_compressionDisable Compression Or Set Compression to delayed
sshd_disable_empty_passwordsDisable SSH Access via Empty Passwords
sshd_disable_gssapi_authDisable GSSAPI Authentication
sshd_disable_kerb_authDisable Kerberos Authentication
sshd_disable_rhostsDisable SSH Support for .rhosts Files
sshd_disable_rhosts_rsaDisable SSH Support for Rhosts RSA Authentication
sshd_disable_root_loginDisable SSH Root Login
sshd_disable_user_known_hostsDisable SSH Support for User Known Hosts
sshd_do_not_permit_user_envDo Not Allow SSH Environment Options
sshd_enable_strictmodesEnable Use of Strict Mode Checking
sshd_enable_warning_bannerEnable SSH Warning Banner
sshd_enable_warning_banner_netEnable SSH Warning Banner
sshd_enable_x11_forwardingEnable Encrypted X11 Forwarding
sshd_limit_user_accessLimit Users' SSH Access
sshd_print_last_logEnable SSH Print Last Log
sshd_set_idle_timeoutSet SSH Idle Timeout Interval
sshd_set_keepaliveSet SSH Client Alive Count Max
sshd_set_keepalive_0Set SSH Client Alive Count Max to zero
sshd_set_loglevel_infoSet LogLevel to INFO
sshd_set_loglevel_verboseSet SSH Daemon LogLevel to VERBOSE
sshd_use_priv_separationEnable Use of Privilege Separation
sudo_remove_no_authenticateEnsure Users Re-Authenticate for Privilege Escalation - sudo !authenticate
sudo_remove_nopasswdEnsure Users Re-Authenticate for Privilege Escalation - sudo NOPASSWD
sudo_require_authenticationEnsure Users Re-Authenticate for Privilege Escalation - sudo
sysctl_fs_protected_hardlinksEnable Kernel Parameter to Enforce DAC on Hardlinks
sysctl_fs_protected_symlinksEnable Kernel Parameter to Enforce DAC on Symlinks
sysctl_kernel_kptr_restrictRestrict Exposed Kernel Pointer Addresses Access
sysctl_kernel_randomize_va_spaceEnable Randomized Layout of Virtual Address Space
sysctl_net_ipv6_conf_all_disable_ipv6Disable IPv6 Addressing on All IPv6 Interfaces
sysctl_net_ipv6_conf_default_disable_ipv6Disable IPv6 Addressing on IPv6 Interfaces by Default
avahi_disable_publishingDisable Avahi Publishing
dhcp_server_minimize_served_infoMinimize Served Information
disable_host_authDisable Host-Based Authentication
kernel_module_ipv6_option_disabledDisable IPv6 Networking Support Automatic Loading
kernel_module_rds_disabledDisable RDS Support
kernel_module_tipc_disabledDisable TIPC Support
mount_option_dev_shm_nodevAdd nodev Option to /dev/shm
mount_option_dev_shm_nosuidAdd nosuid Option to /dev/shm
no_rsh_trust_filesRemove Rsh Trust Files
package_inetutils-telnetd_removedUninstall the inet-based telnet server
package_telnetd-ssl_removedUninstall the ssl compliant telnet server
package_telnetd_removedUninstall the telnet server
sshd_disable_compressionDisable Compression Or Set Compression to delayed
sshd_disable_empty_passwordsDisable SSH Access via Empty Passwords
sshd_disable_gssapi_authDisable GSSAPI Authentication
sshd_disable_kerb_authDisable Kerberos Authentication
sshd_disable_rhostsDisable SSH Support for .rhosts Files
sshd_disable_rhosts_rsaDisable SSH Support for Rhosts RSA Authentication
sshd_disable_root_loginDisable SSH Root Login
sshd_disable_user_known_hostsDisable SSH Support for User Known Hosts
sshd_do_not_permit_user_envDo Not Allow SSH Environment Options
sysctl_net_ipv6_conf_all_disable_ipv6Disable IPv6 Addressing on All IPv6 Interfaces
sysctl_net_ipv6_conf_default_disable_ipv6Disable IPv6 Addressing on IPv6 Interfaces by Default
avahi_disable_publishingDisable Avahi Publishing
dhcp_server_minimize_served_infoMinimize Served Information
disable_host_authDisable Host-Based Authentication
kernel_module_ipv6_option_disabledDisable IPv6 Networking Support Automatic Loading
kernel_module_rds_disabledDisable RDS Support
kernel_module_tipc_disabledDisable TIPC Support
mount_option_dev_shm_nodevAdd nodev Option to /dev/shm
mount_option_dev_shm_nosuidAdd nosuid Option to /dev/shm
no_rsh_trust_filesRemove Rsh Trust Files
package_inetutils-telnetd_removedUninstall the inet-based telnet server
package_telnetd-ssl_removedUninstall the ssl compliant telnet server
package_telnetd_removedUninstall the telnet server
service_ip6tables_enabledVerify ip6tables Enabled if Using IPv6
service_iptables_enabledVerify iptables Enabled
set_ip6tables_default_ruleSet Default ip6tables Policy for Incoming Packets
set_iptables_default_ruleSet Default iptables Policy for Incoming Packets
set_iptables_default_rule_forwardSet Default iptables Policy for Forwarded Packets
sshd_disable_compressionDisable Compression Or Set Compression to delayed
sshd_disable_empty_passwordsDisable SSH Access via Empty Passwords
sshd_disable_gssapi_authDisable GSSAPI Authentication
sshd_disable_kerb_authDisable Kerberos Authentication
sshd_disable_rhostsDisable SSH Support for .rhosts Files
sshd_disable_rhosts_rsaDisable SSH Support for Rhosts RSA Authentication
sshd_disable_root_loginDisable SSH Root Login
sshd_disable_user_known_hostsDisable SSH Support for User Known Hosts
sshd_do_not_permit_user_envDo Not Allow SSH Environment Options
sysctl_net_ipv6_conf_all_disable_ipv6Disable IPv6 Addressing on All IPv6 Interfaces
sysctl_net_ipv6_conf_default_disable_ipv6Disable IPv6 Addressing on IPv6 Interfaces by Default