![]() Requires the creation of other accounts for authentication or the use of non-SSH connections, such as Virtual Network Computing (VNC) connections.ĥ.2.18 Ensure SSH access is limited (Scored) Requires the modification of a large number of files, which imposes potential security risks.ĥ.2.10 Ensure SSH root login is disabled (Scored) Requires the configuration of rsyslog to send log data to a remote log host.Ĥ.2.3 Ensure permissions on all logfiles are configured (Scored) ![]() Requires the configuration of IPv6 loopback rules.Ĥ.2.1.4 Ensure rsyslog is configured to send logs to a remote log host (Scored) Requires the configuration of IPv6 firewall policies.ģ.5.2.2 Ensure IPv6 loopback traffic is configured (Scored) Requires the configuration of firewall rules for open ports.ģ.5.2.1 Ensure IPv6 default deny firewall policy (Scored) ![]() Requires the configuration of loopback rules.ģ.5.1.4 Ensure firewall rules exist for all open ports (Scored) Requires the configuration of firewall policies.ģ.5.1.2 Ensure loopback traffic is configured (Scored) Requires the deletion of the link to the user guide in the Message of the Day (MOTD) of Alibaba Cloud Linux 2 operating system.ģ.1.1 Ensure IP forwarding is disabled (Scored)ģ.5.1.1 Ensure default deny firewall policy (Scored) Reason why the item is not covered by CIS reinforcementġ.1.18 Ensure sticky bit is set on all world-writable directories (Scored)ġ.7.1.1 Ensure message of the day is configured properly (Scored) CIS Level 1 Scored items that are not covered by CIS reinforcement Based on analysis and testing of these items, ACK provides CIS reinforcement for 128 out of the 145 items. CIS then released CIS Alibaba Cloud Linux 3 Benchmark v1.0.0.ĬIS Alibaba Cloud Linux 2 Benchmark version 1.0.0 contains 145 Level 1 Scored items. Alibaba Cloud Linux 3 Benchmark passed the certification procedure of CIS on February 6, 2022. Alibaba Cloud Linux is the first CIS certified operating system in China.Īlibaba Cloud Linux 3 is an OS image released by Alibaba Cloud and supported by ACK clusters. CIS then released CIS Alibaba Cloud Linux 2 Benchmark version 1.0.0. Alibaba Cloud Linux 2 Benchmark passed the certification procedure of CIS on August 16, 2019. For more information, see CIS WorkBench.Īlibaba Cloud Linux 2 is an OS image released by Alibaba Cloud and is used as the default OS image by ACK clusters. CIS Benchmarks have become an important criterion for assessing OS security for Alibaba Cloud customers. CIS provides CIS Benchmarks for the Linux-based operating systems released by industry-leading companies, such as Alibaba Cloud Linux 2, Alibaba Cloud Linux 3, CentOS, and Ubuntu. CIS is a third-party security organization that is committed to leading a global community of enterprises, public service sectors, and academia to develop security best practices.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |