文件名称:CIS_Ubuntu_Linux_16.04_LTS_Benchmark_v1.1.0.pdf
文件大小:2.16MB
文件格式:PDF
更新时间:2022-10-01 03:28:25
CIS Ubuntu Linux Benchmark
Ubuntu 16.04 安全加固列表。 Table of Contents Terms of Use ........................................................................................................................................................... 1 Overview ............................................................................................................................................................... 12 Intended Audience ........................................................................................................................................ 12 Consensus Guidance ..................................................................................................................................... 12 Typographical Conventions ...................................................................................................................... 14 Scoring Information ..................................................................................................................................... 14 Profile Definitions ......................................................................................................................................... 15 Acknowledgements ...................................................................................................................................... 17 Recommendations ............................................................................................................................................. 19 1 Initial Setup .................................................................................................................................................. 19 1.1 Filesystem Configuration ............................................................................................................... 19 1.1.1.1 Ensure mounting of cramfs filesystems is disabled (Scored) .............................. 20 1.1.1.2 Ensure mounting of freevxfs filesystems is disabled (Scored)............................ 22 1.1.1.3 Ensure mounting of jffs2 filesystems is disabled (Scored) ................................... 23 1.1.1.4 Ensure mounting of hfs filesystems is disabled (Scored) ...................................... 24 1.1.1.5 Ensure mounting of hfsplus filesystems is disabled (Scored) ............................. 25 1.1.1.6 Ensure mounting of udf filesystems is disabled (Scored) ..................................... 26 1.1.2 Ensure separate partition exists for /tmp (Scored) .................................................... 27 1.1.3 Ensure nodev option set on /tmp partition (Scored) ................................................. 29 1.1.4 Ensure nosuid option set on /tmp partition (Scored) ................................................ 30 1.1.5 Ensure separate partition exists for /var (Scored) ..................................................... 31 1.1.6 Ensure separate partition exists for /var/tmp (Scored) ........................................... 32 1.1.7 Ensure nodev option set on /var/tmp partition (Scored) ........................................ 34 1.1.8 Ensure nosuid option set on /var/tmp partition (Scored) ....................................... 35 1.1.9 Ensure noexec option set on /var/tmp partition (Scored) ...................................... 36 1.1.10 Ensure separate partition exists for /var/log (Scored) .......................................... 37 1.1.11 Ensure separate partition exists for /var/log/audit (Scored) ............................. 39 1.1.12 Ensure separate partition exists for /home (Scored) .............................................. 41 1.1.13 Ensure nodev option set on /home partition (Scored) ........................................... 42