free
/
freedombone
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
8,526 Commits 5 Branches 0 Tags 125 MiB
Commit Graph

59 Commits

Author SHA1 Message Date
Bob Mottram 1de2c88d04 Include static analysis in tests 2018-03-02 19:34:44 +00:00
Bob Mottram 8112c240ae Tidying 2018-03-02 19:17:02 +00:00
Bob Mottram 94053f6bed Tidying wifi command 2018-02-25 11:04:13 +00:00
Bob Mottram 3f59c12af7 Dates 2018-02-21 19:32:13 +00:00
Bob Mottram 2e72583677 Detect potential ssh login attacks 2018-02-14 12:11:50 +00:00
Bob Mottram 7e5401e8cc Tidying 2017-09-01 12:24:56 +01:00
Bob Mottram ca5428ca33 Remove xinetd when fixing stig tests, since it causes a violation 2017-09-01 11:05:05 +01:00
Bob Mottram 9741890691 stig test for tripwire database 2017-07-15 11:10:40 +01:00
Bob Mottram 054c452d71 Not using aide 
Check for tripwire cron entry instead
 2017-07-15 10:30:02 +01:00
Bob Mottram 5f8faa36e2 Additional stig test descriptions 2017-06-29 13:04:34 +01:00
Bob Mottram e634287f32 Avoid nfs altogether 2017-06-27 10:32:46 +01:00
Bob Mottram 4a8144e335 Test is not relevant because systemd is being used 2017-06-26 15:26:25 +01:00
Bob Mottram 4305bb71d1 Test the password system 2017-06-23 11:06:09 +01:00
Bob Mottram c9a1c8b510 ME might affect many x86 installs, so instead of stopping the show just remove the interface, which reduces risks a little 2017-05-02 17:35:23 +01:00
Bob Mottram cbddf8308f Check for AMT within tests, because it could get turned on after installation 2017-05-02 11:03:25 +01:00
Bob Mottram 95702debd8 stig tests option to lockdown permissions 2017-03-18 10:50:52 +00:00
Bob Mottram 1c392150aa Show passes and fails 2016-12-01 10:47:04 +00:00
Bob Mottram 3ae78c3765 Optionally show all stig test passes 2016-12-01 10:38:23 +00:00
Bob Mottram cf74c113cb Null passwords not permitted 2016-11-30 20:40:32 +00:00
Bob Mottram b0ed59de5f Remove messages when running STIG 2016-11-30 20:21:58 +00:00
Bob Mottram 0e47f66928 Test STIG separately and with no output if all tests pass 2016-11-30 20:20:13 +00:00
Bob Mottram 8f11ab2102 Don't check bluetooth 
In most cases it doesn't exist and if it does it gets turned off in the config
 2016-11-30 19:36:01 +00:00
Bob Mottram fa9c3b6f22 Prefer bettercrypto cyphers 2016-11-30 19:16:27 +00:00
Bob Mottram 28e8155750 Modules aren't installed anyway 2016-11-30 18:27:07 +00:00
Bob Mottram b872f429c6 Invert logic 2016-11-30 18:08:58 +00:00
Bob Mottram 496f3cd4f2 Not needed, handled by unattended upgrades 2016-11-30 18:02:50 +00:00
Bob Mottram 05a6efe365 This only applies in a typical server scenario where there are lots of users on one machine 2016-11-30 17:48:31 +00:00
Bob Mottram e6d4f1af0c Logging is already minimised by default 2016-11-30 17:37:53 +00:00
Bob Mottram b9ad7e57a3 ipv6 can be used 2016-11-30 16:26:05 +00:00
Bob Mottram 01c8ac8b60 Passwords are usually random so this doesn't apply 2016-11-30 14:00:44 +00:00
Bob Mottram e51e1a9ce2 Help option 2016-11-30 09:36:12 +00:00
Bob Mottram a76a4d22f9 Disk encryption is optional 2016-11-29 23:13:36 +00:00
Bob Mottram 83ef278c13 Done via control panel 2016-11-29 22:13:03 +00:00
Bob Mottram 4a4fd7899f root mail 2016-11-29 22:12:02 +00:00
Bob Mottram 7a66ad8571 Use tripwire 2016-11-29 20:17:00 +00:00
Bob Mottram 2fb341b487 In most cases the boot loader isn't grub 2016-11-29 19:34:24 +00:00
Bob Mottram b8b0637e13 Set maximum login attempts 2016-11-29 16:31:07 +00:00
Bob Mottram 5e7a01f193 Not applicable for random passwords 2016-11-29 15:36:46 +00:00
Bob Mottram f9d646cb31 Not applicable to random passwords 2016-11-29 15:34:51 +00:00
Bob Mottram de1eb3fe2c Passwords are randomly generated 2016-11-29 15:34:12 +00:00
Bob Mottram d6323eeaa8 Doesn't apply with this system 2016-11-29 15:32:56 +00:00
Bob Mottram f20c6aebf3 Ignore bogons 2016-11-29 15:31:50 +00:00
Bob Mottram a3e4aaa57b Removing x11-common would remove some essential stuff, including emacs 2016-11-29 13:36:20 +00:00
Bob Mottram 4add2899d7 Don't use postfix 2016-11-29 13:18:46 +00:00
Bob Mottram e5b04a2d1f Don't lock inactive accounts 2016-11-29 13:07:47 +00:00
Bob Mottram bc6f387506 Don't disable avahi 2016-11-29 12:42:01 +00:00
Bob Mottram aa38f141c6 Not using postfix 2016-11-29 12:40:02 +00:00
Bob Mottram 1f0ac1f3ce Security Technical Implementation Guide tests based upon RHEL/hardenedlinux 2016-11-29 12:37:48 +00:00
Bob Mottram 0147cadc53 xmpp password changes 2016-11-20 11:23:56 +00:00
Bob Mottram 1f5173d13d Test that onion ports are unique 2016-11-18 11:21:50 +00:00